Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json)
Hash identifier: wgLIFrTbIBH8jjg3Sw9SBhCGEAIZzMnWB9bH5ImgF10=
Subject key identifier: CD:40:E1:BE:0D:5E:05:CF:9A:86:FB:E1:1A:D7:A2:C6:02:A1:9E:34
Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Certificate serial: 019D386663A3493EB3A25D9B2BCD36998761
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 07:02:07 +0000
Manifest this update: Sun 29 Mar 2026 07:02:07 +0000
Manifest next update: Mon 30 Mar 2026 07:02:07 +0000
Files and hashes: 1: sBKm5lh9pFW6Bx5UfqBwJxTOW-c.roa (hash: fm7BpsPCc0ljnRZ7PGXN1/E5kbFIYol2cEhLrnlX2S0=)
2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: t6rjCpfJ1vmSR4K46ydqy3IVmrBnB41ub9ihQMRr9vE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:63:a3:49:3e:b3:a2:5d:9b:2b:cd:36:99:87:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Validity
Not Before: Mar 29 07:02:07 2026 GMT
Not After : Mar 30 07:02:07 2026 GMT
Subject: CN=cd40e1be0d5e05cf9a86fbe11ad7a2c602a19e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:09:29:ab:66:9c:1e:46:e7:11:e8:e8:b7:66:
a9:08:bc:c2:f7:90:36:52:aa:74:f4:21:4a:fd:ef:
49:dc:70:59:f7:5f:ac:99:f4:fc:5b:32:8f:a5:61:
01:e0:9c:49:9a:38:76:82:cf:63:4e:75:40:16:8b:
98:82:cc:b2:4f:c5:26:a9:1e:56:5a:dd:32:1e:75:
3c:60:a1:78:ca:96:60:85:97:b2:e5:4a:86:6a:c8:
f5:4e:36:b5:86:c7:f1:f4:e3:83:3a:01:4c:82:07:
ac:ed:11:3a:8f:20:96:7d:13:6b:bb:7b:19:6d:5c:
ca:67:b8:d9:7f:76:58:93:8c:1d:3b:f0:7e:37:14:
a5:59:4f:f1:b6:26:a3:4b:7e:3c:04:60:f0:c9:d5:
87:9d:15:d3:f0:e4:f1:ab:49:1e:32:b5:47:48:8d:
c3:40:e5:58:ad:df:87:42:95:dd:5d:2d:8d:e1:91:
31:a9:a3:70:b4:b2:82:f1:35:1b:27:6e:7e:d3:0d:
a2:79:ca:90:a8:11:dd:07:39:88:0b:d7:e3:5e:76:
1f:c2:81:b1:18:ef:a9:b0:00:d7:3d:ed:46:75:03:
79:f0:aa:37:f1:83:76:f4:c2:76:d4:22:84:ae:4c:
66:7d:b6:76:04:74:8e:32:20:50:56:54:e9:6d:47:
c8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:40:E1:BE:0D:5E:05:CF:9A:86:FB:E1:1A:D7:A2:C6:02:A1:9E:34
X509v3 Authority Key Identifier:
keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:76:34:ee:84:39:62:dc:ba:70:66:8f:47:e9:f1:fc:26:19:
d7:6b:e8:50:0c:cf:2c:87:95:e6:c8:d3:bd:8d:08:a5:af:a6:
98:08:8b:7c:c9:7b:ff:73:aa:c8:73:23:02:34:67:ae:f1:6c:
48:fd:9c:09:0e:08:a5:02:32:e2:9b:54:c8:66:b2:73:20:90:
ba:35:23:42:11:4e:f3:b3:05:47:e2:f6:a9:a8:f7:e1:99:3a:
9e:9f:90:c8:4a:39:20:21:4f:c2:d7:64:4d:7f:0d:36:2d:55:
29:d5:20:f5:b8:1a:ba:e8:97:d5:b6:a2:7e:a6:1e:ce:27:db:
5c:e9:cd:95:eb:0b:c2:f2:40:d7:44:5e:44:26:dc:50:75:b2:
8f:1e:29:c8:e9:c4:59:85:fd:63:d1:e7:25:3e:31:8a:eb:df:
f1:bf:f8:5e:fc:51:3f:f3:2e:c0:4d:74:1f:a8:ae:71:9f:7e:
19:18:df:91:57:97:f3:bd:e5:7f:65:77:f8:4a:97:66:e8:0a:
e2:07:f3:1a:3a:cd:a5:14:70:e9:55:53:9f:ec:60:d6:2a:4c:
e5:4e:58:98:ad:82:96:d6:79:24:69:2f:84:7c:06:a3:2d:fa:
0e:ed:c5:12:23:88:13:0e:7b:9a:10:c9:86:79:64:6e:49:b5:
10:3e:e7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:05 2026 by rpki-client