Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
File: tDpxymDXTkXSuXSKsQZlKf0BM34.mft (raw, json)
Hash identifier: Fzos0b+PJzllklQUhmH87XWYpxslZiRX8ht5GsJ8uVs=
Subject key identifier: DA:2D:63:67:F4:83:81:78:AF:4C:1F:5F:19:3B:58:A4:55:F6:EE:1D
Authority key identifier: B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
Certificate issuer: /CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Certificate serial: 019D37C060F213AF0123B020251676376DD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 04:00:47 +0000
Manifest this update: Sun 29 Mar 2026 04:00:47 +0000
Manifest next update: Mon 30 Mar 2026 04:00:47 +0000
Files and hashes: 1: ZcHXLBJSx_Tt6F_s5FsMwgXSk6E.roa (hash: DXyT/IUpWKmwacoz1gYsfpWFfm80bfOxmbXLHhHgltY=)
2: tDpxymDXTkXSuXSKsQZlKf0BM34.crl (hash: hSAttk6sD9XC/uLbQwwyr/5CSZUr2XSrJ0hbYXhwo2k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:60:f2:13:af:01:23:b0:20:25:16:76:37:6d:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43a71ca60d74e45d2b9748ab1066529fd01337e
Validity
Not Before: Mar 29 04:00:47 2026 GMT
Not After : Mar 30 04:00:47 2026 GMT
Subject: CN=da2d6367f4838178af4c1f5f193b58a455f6ee1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e7:61:e0:30:30:c9:95:46:57:19:3f:c4:9f:
b6:d8:3a:a8:2b:f6:57:03:38:fa:60:4b:b8:d5:36:
40:2d:b7:9a:40:c6:21:11:14:83:e6:1e:7c:29:38:
19:90:c9:44:c9:50:c0:b6:ea:0f:99:fe:1d:b4:d6:
3d:23:92:20:b5:e7:b6:d2:b3:4a:e5:33:7b:2b:1a:
7d:7a:cb:db:02:e5:99:62:f5:23:65:2a:ea:54:3c:
a0:1e:32:96:df:09:2f:d1:09:16:0e:a4:35:a1:43:
9b:e8:23:9d:d1:e4:49:fb:27:a2:26:0b:0b:86:c7:
78:00:50:91:06:07:07:d1:6e:d1:1a:14:c3:6f:8d:
bc:28:62:8f:aa:9c:30:d6:22:36:a7:1e:57:df:a0:
84:01:bd:fa:72:f0:80:6a:91:fe:82:56:f2:e1:37:
b7:51:c8:7a:5d:d7:b8:72:ce:51:ee:90:fe:02:0f:
6a:26:b0:0e:3f:51:37:6a:b6:fa:41:27:1d:4f:aa:
21:d2:3d:d7:43:17:d3:e8:86:24:8b:06:37:5f:f0:
54:84:31:ed:e7:cf:99:17:57:12:c8:59:ef:5d:cd:
42:59:b0:ef:7c:36:8c:68:ae:6d:41:1a:60:4c:7d:
7a:05:cc:b3:5f:0a:8d:1b:c3:5e:99:5e:32:6a:f8:
b3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:2D:63:67:F4:83:81:78:AF:4C:1F:5F:19:3B:58:A4:55:F6:EE:1D
X509v3 Authority Key Identifier:
keyid:B4:3A:71:CA:60:D7:4E:45:D2:B9:74:8A:B1:06:65:29:FD:01:33:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDpxymDXTkXSuXSKsQZlKf0BM34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8cef6f-fe09-4ef6-8bf1-798ac4928ed6/1/tDpxymDXTkXSuXSKsQZlKf0BM34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:0a:37:5f:99:90:e3:97:91:68:c2:50:3f:d3:77:6b:33:1e:
29:7c:b4:5c:75:bf:1a:13:59:67:39:fa:89:ee:9f:c8:23:03:
2e:a7:58:50:5b:ac:53:21:2a:ad:0b:b9:dc:3f:aa:2a:fa:17:
90:a6:61:74:4c:b8:25:e4:16:47:8c:09:8e:85:29:4b:5f:60:
6f:95:88:6f:4c:b8:05:b5:52:54:4d:c9:3d:21:da:48:ca:86:
c0:82:62:83:20:91:70:29:8a:63:9c:67:67:4c:4b:6d:50:83:
8b:b6:92:23:5e:21:78:1c:28:2a:ce:69:b7:b0:7e:26:e1:14:
75:1b:1a:8f:30:16:31:b6:63:e6:a8:98:a1:ef:b8:be:52:21:
36:ac:36:7c:90:1d:a9:79:34:05:ed:04:89:b4:b6:24:ce:d7:
57:b0:73:c0:e8:99:a4:e0:c8:89:8d:d0:6b:74:90:60:74:22:
ba:23:47:3e:3e:a9:0b:d2:47:2d:db:e9:64:88:29:2e:8b:5f:
64:ba:fc:1a:4a:4c:da:f8:78:e7:9d:7a:67:f9:da:db:24:2e:
43:2d:b5:0f:b8:29:57:2a:30:7b:98:1b:e3:40:3c:94:c7:ab:
5f:f0:8d:76:ff:76:d1:02:2f:f4:4c:c0:dc:7c:86:b8:30:af:
fa:15:38:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:39 2026 by rpki-client