Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
File: tm6nNZIhwbd9bMAG97ZwapqQgpk.mft (raw, json)
Hash identifier: lc2pk/6A+74AUkYz1oOrojnI6GvUxL3tYfh0rpxVEJ0=
Subject key identifier: 3D:20:38:B3:21:A2:76:3C:9D:99:AF:49:B5:46:FB:A3:0A:1F:66:89
Authority key identifier: B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99
Certificate issuer: /CN=b66ea7359221c1b77d6cc006f7b6706a9a908299
Certificate serial: 019D382E5E2C190763DC89CD54B6DF7F554F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
Manifest number: 18A1
Signing time: Sun 29 Mar 2026 06:00:55 +0000
Manifest this update: Sun 29 Mar 2026 06:00:55 +0000
Manifest next update: Mon 30 Mar 2026 06:00:55 +0000
Files and hashes: 1: PPMSN5ftVbVmFA7MLiS8HWouZbQ.roa (hash: HtUbwNMUWX3DsqRNwPU8T/yihNDfkh2LcL+11x+HCT8=)
2: tm6nNZIhwbd9bMAG97ZwapqQgpk.crl (hash: dAroayNPLj7Njccf68wel7Xa3HARb/MV0qdn4BkvbrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:5e:2c:19:07:63:dc:89:cd:54:b6:df:7f:55:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b66ea7359221c1b77d6cc006f7b6706a9a908299
Validity
Not Before: Mar 29 06:00:55 2026 GMT
Not After : Mar 30 06:00:55 2026 GMT
Subject: CN=3d2038b321a2763c9d99af49b546fba30a1f6689
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ce:d8:7c:c2:65:a4:23:7e:dc:53:81:e6:06:
31:11:b3:69:4c:51:b3:82:31:76:22:91:23:bf:13:
59:b1:39:9e:8d:11:ad:52:ff:c6:54:a2:a1:f7:8d:
ce:58:33:bb:dd:60:5e:59:c3:86:69:01:ca:a1:1f:
c8:d8:8d:7f:df:96:43:d9:1b:cb:fa:4b:d6:2f:9e:
c9:73:c1:a0:aa:a7:91:14:d2:2f:04:a8:57:54:a7:
e9:74:4a:6b:08:62:42:7f:fc:80:a1:6f:2d:4b:d1:
a0:67:e0:5e:f5:08:1a:16:d9:91:a4:bf:f2:b5:84:
73:1a:53:4e:46:eb:da:2f:24:28:90:1b:fc:55:50:
2b:b3:24:8d:e1:d8:8e:7b:f0:b9:a2:9e:b6:7d:fc:
9a:09:ff:c2:e4:f9:1d:51:89:4a:43:66:cf:35:43:
d8:41:2a:af:a8:8c:6c:36:c4:3f:db:47:e7:55:8e:
d3:fd:e4:a0:eb:59:6d:6e:dd:11:0f:67:b4:16:27:
94:27:db:be:1d:1c:4c:96:55:e6:c4:30:54:71:96:
10:2d:44:4d:90:72:00:41:cc:92:d4:8f:29:08:38:
5d:d4:cd:7a:08:02:b9:d8:ce:31:d1:d5:65:65:08:
64:0d:65:2a:53:b2:2f:eb:04:52:0d:95:d5:98:9f:
76:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:20:38:B3:21:A2:76:3C:9D:99:AF:49:B5:46:FB:A3:0A:1F:66:89
X509v3 Authority Key Identifier:
keyid:B6:6E:A7:35:92:21:C1:B7:7D:6C:C0:06:F7:B6:70:6A:9A:90:82:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tm6nNZIhwbd9bMAG97ZwapqQgpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/f87a2e-46b1-4a66-a90c-699835c92bfe/1/tm6nNZIhwbd9bMAG97ZwapqQgpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:ac:76:46:b1:09:9d:04:46:1b:a7:23:b0:16:46:f8:6f:71:
15:28:fa:53:3e:58:b2:34:36:ba:23:4e:3b:41:d5:32:ca:79:
66:8d:57:28:a8:29:61:37:0d:d3:b0:a3:61:b2:08:5e:33:28:
59:2c:22:e8:4e:c9:fb:de:1c:55:d0:50:26:a5:d1:07:20:a4:
05:62:8b:2a:8d:dc:87:3e:f7:a4:db:e0:73:47:5f:2a:ec:ba:
60:4a:41:b8:ec:45:22:31:d6:a2:cb:c2:f8:3f:8e:a6:89:75:
ff:84:de:d4:61:c2:71:4d:81:e1:2f:74:0f:03:e0:1d:bf:62:
8f:88:67:71:c5:d0:8a:e7:8e:d1:4a:28:f0:a7:d4:2c:65:5a:
87:47:e4:7f:6b:1f:73:d9:e7:9a:0a:3b:ab:5a:6a:af:ed:f7:
6b:8b:2a:fb:8a:99:2a:ad:2d:60:a5:28:7e:3f:67:88:1c:60:
c9:b9:4d:98:09:2e:c5:b3:85:ac:8d:aa:22:10:d8:47:59:2f:
98:94:f0:2c:a0:c4:12:a6:0d:82:eb:c6:4b:5b:0e:41:fc:1a:
28:41:a9:0c:c0:03:18:9b:f6:49:1c:39:97:ce:1f:5f:2e:40:
29:89:cb:20:fa:26:ca:d2:0c:7d:68:0c:bb:96:49:b6:19:e2:
7a:a1:c7:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:28 2026 by rpki-client