Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
File: tLC71kRVeO28e6a1v3ypNo0kF78.mft (raw, json)
Hash identifier: GWpkOd7MJvtr9++LLHQCSRivRWfaOTobqzjO/VqYjGY=
Subject key identifier: 25:11:6D:47:2E:5A:49:84:A6:3B:4A:59:F6:E6:FF:44:0D:A8:15:2C
Authority key identifier: B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
Certificate issuer: /CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Certificate serial: 019D39AEB4C219590B3D856DC93B1A64A96B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
Manifest number: 0EF3
Signing time: Sun 29 Mar 2026 13:00:43 +0000
Manifest this update: Sun 29 Mar 2026 13:00:43 +0000
Manifest next update: Mon 30 Mar 2026 13:00:43 +0000
Files and hashes: 1: BdxIgcii9AZbDowEljfzUYckHC8.roa (hash: ILwiF18gnTvRp3a0NE/1xK+Rukgr4WGOEG3uBi/izZY=)
2: FWYPQ6WC8Y-fg5sSQlXizSCkIiw.roa (hash: iqx9LdajD80FLscZZE0m7wFZ2v4e15gazl5hqYdyNRs=)
3: sU_POJ-9-KK9BmUg6PP2VC4cLx4.roa (hash: us+W7jv9HagK4mb3PNct2IPVT5f0kZEDdiyJO04+BcU=)
4: tLC71kRVeO28e6a1v3ypNo0kF78.crl (hash: qr1szPRexE7vl05ktd6nlifkucU9J1UVxnRsjsPAJP0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:b4:c2:19:59:0b:3d:85:6d:c9:3b:1a:64:a9:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4b0bbd6445578edbc7ba6b5bf7ca9368d2417bf
Validity
Not Before: Mar 29 13:00:43 2026 GMT
Not After : Mar 30 13:00:43 2026 GMT
Subject: CN=25116d472e5a4984a63b4a59f6e6ff440da8152c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b8:f3:41:a4:aa:ab:1a:1f:d3:53:34:51:65:
77:02:42:45:85:91:82:8d:87:84:93:59:16:49:ec:
55:6b:a9:86:19:35:4d:69:c1:e6:de:72:c9:f6:c4:
2b:fc:30:57:e8:8f:6e:e2:98:9b:c7:5a:cd:3c:b6:
35:e6:17:34:d1:80:18:8f:5f:20:95:f4:4d:39:4f:
ec:f3:8c:ac:08:4e:47:c5:56:73:a2:7d:f2:91:05:
d7:6e:83:6e:b3:1b:7a:6f:49:c7:4c:52:95:9f:d3:
9c:30:e0:9f:cb:b6:12:78:b5:46:e0:ce:57:3d:4e:
7e:a1:45:52:95:49:b6:ae:a2:29:ab:7d:54:37:9e:
5e:43:d1:52:79:38:01:e1:9b:54:8c:a5:4b:4c:70:
08:9e:97:4c:b6:ea:83:6d:de:57:31:b4:1f:68:82:
87:a2:c5:c2:c1:e2:de:24:17:9e:b6:46:f4:64:38:
b1:91:b9:a0:57:62:92:a9:84:71:9c:12:f0:89:5a:
42:d4:eb:ef:25:fa:81:56:75:d8:90:4d:88:d8:a0:
a5:74:b2:f5:d0:9b:38:8d:83:6f:5e:47:43:29:87:
73:a6:f0:3e:a5:e9:38:20:bb:88:c0:a2:78:47:6a:
18:97:f3:58:33:44:ba:78:03:7b:74:e4:1c:1c:f9:
33:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:11:6D:47:2E:5A:49:84:A6:3B:4A:59:F6:E6:FF:44:0D:A8:15:2C
X509v3 Authority Key Identifier:
keyid:B4:B0:BB:D6:44:55:78:ED:BC:7B:A6:B5:BF:7C:A9:36:8D:24:17:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLC71kRVeO28e6a1v3ypNo0kF78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/3502fc-d9f7-4fa8-baf6-77d529be53d7/1/tLC71kRVeO28e6a1v3ypNo0kF78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:b4:75:95:f4:83:7f:72:94:1a:2b:ce:5b:10:58:fe:1b:02:
58:b9:6a:d8:d6:98:19:98:86:7c:c3:ea:9b:05:d8:65:b7:e2:
ff:c8:d1:ec:a7:03:f0:bc:cc:8e:64:12:91:8f:88:4a:29:49:
17:cb:c5:a4:5e:b7:8f:1f:72:5c:56:73:a8:c2:bf:a3:8b:55:
dd:e2:cc:03:83:10:da:f7:82:bb:1a:71:d6:00:c3:9d:6e:f0:
8e:d8:60:80:43:36:84:03:bb:5d:d6:99:78:65:a7:ee:f3:e7:
d5:a8:ef:c8:58:b4:39:16:95:8d:7b:fe:6c:86:51:96:12:64:
e7:09:6d:ff:6a:66:d5:3c:31:2e:4f:52:6e:5a:80:65:88:61:
a8:19:af:24:21:fd:d5:44:3e:bc:37:ff:e0:c7:bf:ea:f6:6f:
c4:b9:ae:79:6e:3b:36:42:41:dd:d3:4a:2f:b4:2b:99:4f:cc:
1f:22:c6:81:0a:92:61:df:f9:cc:06:0b:db:29:71:db:da:e6:
97:ac:92:96:4b:c1:bf:37:89:e0:a6:1f:6a:8a:f0:bf:f0:c9:
07:c9:6a:e2:7e:6b:6e:0d:38:22:84:44:55:55:0a:5a:6f:c1:
8d:b8:c1:20:88:9d:30:b1:ef:89:8d:7f:20:af:96:fc:3a:e1:
8c:80:24:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:46:16 2026 by rpki-client