Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
File: tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft (raw, json)
Hash identifier: I2NZdeYQWlIj8TqqnEm2c1NlGxr5bMfwBW0cmlc2Axk=
Subject key identifier: B8:95:EC:B3:EF:55:A7:5F:E5:A8:D8:A2:31:2B:C5:27:E5:BE:FC:84
Authority key identifier: B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64
Certificate issuer: /CN=b473167913af73e4f6374170c4f945f8b0dd7d64
Certificate serial: 019D38D2C63B6D7A55E53FEA0E455C8C5559
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
Manifest number: 0EF4
Signing time: Sun 29 Mar 2026 09:00:30 +0000
Manifest this update: Sun 29 Mar 2026 09:00:30 +0000
Manifest next update: Mon 30 Mar 2026 09:00:30 +0000
Files and hashes: 1: DgrTVtP0jXJ4OGfuPKYULY4Onk4.roa (hash: 8Lr7Jf5noSRWbE2rMCrFS+5F3tinLkNtJ9p8Cr6DKmI=)
2: tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl (hash: WQmYJlVh+cPtu+hnFd/SQXao4Ol+GrghY/YxK3UCHPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:c6:3b:6d:7a:55:e5:3f:ea:0e:45:5c:8c:55:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b473167913af73e4f6374170c4f945f8b0dd7d64
Validity
Not Before: Mar 29 09:00:30 2026 GMT
Not After : Mar 30 09:00:30 2026 GMT
Subject: CN=b895ecb3ef55a75fe5a8d8a2312bc527e5befc84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:37:17:fc:b7:24:e7:04:0a:ce:49:ec:ef:33:
7e:e8:ec:81:91:c5:a1:cc:43:ee:e1:cf:76:5e:2b:
7f:c0:de:98:96:5a:a3:28:7c:ab:88:b4:2b:e5:15:
a8:ae:01:1c:6b:d4:18:b8:96:56:5b:f6:a8:45:0e:
59:80:a5:a8:3c:de:66:0e:cb:8f:e1:8a:99:08:39:
d1:09:10:83:64:bf:49:fe:26:d3:81:2f:7a:bc:29:
d6:0d:bd:ef:93:84:29:ee:4a:38:58:8a:91:dd:f1:
79:6a:3f:21:cf:b9:e8:64:b0:23:01:b7:cc:ec:cc:
08:f8:b7:50:0a:85:f5:8f:e7:06:48:ad:0f:9a:15:
e2:55:a3:c9:fb:b6:64:a4:ca:9e:76:43:46:00:7f:
90:f9:f4:8a:f2:f2:22:8a:53:ec:29:6b:99:ed:ab:
d5:a6:89:7d:8e:75:52:bc:37:56:62:61:35:0d:34:
5d:74:1c:06:ff:2b:c9:c0:59:81:39:b1:c6:5b:0d:
66:90:52:56:e6:a4:73:f9:33:4d:9d:a3:8c:e0:c1:
58:0e:13:c9:9d:6d:00:a0:39:b6:65:2d:86:5d:ae:
73:36:36:e6:27:14:25:89:0c:38:3a:3c:33:89:7c:
35:5a:f4:9a:d4:b6:61:db:92:ee:14:4c:8b:5b:87:
10:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:95:EC:B3:EF:55:A7:5F:E5:A8:D8:A2:31:2B:C5:27:E5:BE:FC:84
X509v3 Authority Key Identifier:
keyid:B4:73:16:79:13:AF:73:E4:F6:37:41:70:C4:F9:45:F8:B0:DD:7D:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHMWeROvc-T2N0FwxPlF-LDdfWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/e56d41-5bb8-4a91-a4f0-f86dcaad8c49/1/tHMWeROvc-T2N0FwxPlF-LDdfWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:57:50:16:17:6c:91:a6:04:3b:87:55:c6:61:19:16:39:58:
53:72:7e:30:52:92:c6:fe:5c:f0:dc:0e:68:6d:4b:cb:93:66:
62:be:e2:87:56:b9:ae:41:6d:e0:70:2a:b1:1c:21:fe:f7:43:
c4:fc:e4:cc:85:57:da:70:6e:40:20:0c:1a:c9:2a:79:5f:18:
0f:d6:70:bb:e0:aa:fc:22:cc:c6:dc:eb:ec:f8:32:2b:f3:ad:
3c:a5:b9:f4:51:48:d0:67:57:db:dc:68:f8:37:a5:e6:a5:d9:
7b:e9:eb:3d:99:63:8b:82:da:8c:82:74:b4:06:ec:70:3d:9e:
c7:be:01:b9:23:87:38:1e:45:d8:7a:ae:21:23:8b:ed:da:5f:
86:0a:34:8f:5a:58:ba:6b:da:df:02:35:a8:66:83:47:8c:e5:
e5:cd:41:78:f9:9c:91:0b:e7:ca:5f:4f:da:1a:ec:07:98:6b:
15:26:d7:9b:e4:9c:40:43:ff:6a:9d:0f:85:5c:e7:32:8e:7b:
46:f5:b9:2c:a6:80:40:a0:04:e6:4e:12:64:c1:d6:1e:7c:0a:
7a:c0:8c:36:5d:86:76:da:7e:8e:f8:28:d1:9f:fb:29:cf:33:
76:97:ea:64:5a:4e:d0:44:89:27:25:cc:63:c8:5c:72:48:39:
fd:98:1b:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:46 2026 by rpki-client