Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: R092MeidXlWRE8ehf9rUgs89pIlnwlKCvstBxHhiEoY=
Subject key identifier: E2:9E:6B:20:C3:AD:51:3A:AA:38:55:F8:BC:0F:21:F8:27:4D:71:AD
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 019CEDB8D279D7C3380E83D1CDEFEF2D0022
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 1412
Signing time: Sat 14 Mar 2026 19:00:38 +0000
Manifest this update: Sat 14 Mar 2026 19:00:38 +0000
Manifest next update: Sun 15 Mar 2026 19:00:38 +0000
Files and hashes: 1: R_zL9EhetPG627p64jnL_1AQk_k.roa (hash: /ASm15I9YtFuL/r1IrLrMNiCv/23kZabo3hMsyygvPM=)
2: Zx2Ej29t4Sy3ugAdSAEr8wgh-eI.roa (hash: 6qePl3E6/9bWQI3GzNjE+NBTWrA6JE82fp1zkkf+j8o=)
3: gPytstS2H2DCx0G35K4nAVksneE.roa (hash: I34ZNFgqBn6ft829pIhUL9qJ7ZwAtJssKpKV0YYtJmI=)
4: hL4U-26oJ-d8CY7a6r3Udux4pFM.roa (hash: 8nT0Nid1k0WCSq4dufjGbFyrf1TbKzMQQr3veAEfmRs=)
5: jJ74mpm8B1pyvT1MNhCtSe0cxRk.roa (hash: OKs2X6l4NJ7txPZTz3RUzDrNyB2I3km6f/sNQFkFGUQ=)
6: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: 813UE9Vd1ySKYVvtiq7WQVP0In+o3c7Zy2vtAnyhWHw=)
7: v_CzW-gEtbdZtpCnpKHVty7BP7s.roa (hash: FK1HiNTHGuvdh1/S7hYfIVoOC1e1CT6RxRS6KDmNYRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 19:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ed:b8:d2:79:d7:c3:38:0e:83:d1:cd:ef:ef:2d:00:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: Mar 14 19:00:38 2026 GMT
Not After : Mar 15 19:00:38 2026 GMT
Subject: CN=e29e6b20c3ad513aaa3855f8bc0f21f8274d71ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f1:05:54:fb:8c:67:f3:9a:80:37:0a:e3:52:
41:d4:14:17:f5:c9:6e:71:fa:f4:eb:92:e7:10:b6:
f9:62:11:09:81:43:a7:43:78:ab:33:54:55:26:6c:
35:6c:19:f1:4b:45:af:9f:30:8c:02:2f:3c:f1:51:
08:2b:89:39:5f:1c:1e:e7:26:60:0d:97:62:e2:ac:
9f:c1:d8:81:4f:c4:3f:39:35:7a:f6:ef:af:9f:c1:
24:1e:0e:13:8a:b3:cd:1f:d2:0e:49:ac:b7:2b:69:
fc:e3:2d:af:63:cc:f1:39:3e:0c:df:c2:7e:79:af:
4b:d1:a6:35:2d:65:d1:bf:9e:b2:dc:78:2f:46:92:
05:b3:95:e4:c6:9b:b6:64:af:c6:cf:03:48:42:a2:
f9:22:64:f7:3a:22:bd:20:ca:3c:2c:4a:36:bc:1e:
cd:cc:e7:58:ca:fc:03:12:17:59:7d:8a:23:14:12:
d8:9f:1c:79:36:14:60:ab:ed:34:ad:a4:6b:05:f7:
60:19:1f:93:06:09:5c:ab:81:e4:31:b2:30:b4:68:
fc:c4:8f:04:e0:ef:35:2e:2c:c4:7b:62:3c:cc:ba:
d4:6d:b4:99:05:96:05:ba:d3:80:48:48:76:a9:bd:
f2:25:9c:82:a8:af:c2:11:f0:9b:d7:e4:70:1a:88:
8e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:9E:6B:20:C3:AD:51:3A:AA:38:55:F8:BC:0F:21:F8:27:4D:71:AD
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:e5:a5:f8:ec:cd:25:06:9e:b3:43:99:47:ea:99:08:16:c4:
1c:4f:74:91:f4:09:19:fe:b4:4a:1c:6a:ae:82:02:7f:cc:5b:
0c:d2:b0:82:14:86:2b:fc:d2:46:92:3b:07:06:ef:ad:00:0a:
3b:ad:69:84:13:9f:ac:84:5c:52:37:6e:08:28:24:28:7b:ed:
4c:82:41:bb:af:69:04:00:2a:97:fa:2c:37:df:1a:90:10:f6:
90:fd:83:97:6c:2b:42:2b:3d:ae:f4:15:3d:8a:db:4c:d0:2c:
5d:8d:1f:53:10:4e:e1:ce:5b:69:55:0c:01:5a:fe:01:fb:88:
7d:ca:aa:fe:8c:e3:4b:a6:f9:21:96:9d:6f:0a:04:e7:d8:eb:
e5:14:6f:5b:20:11:f3:79:e5:b1:ae:c7:98:94:24:2c:c8:9d:
71:8b:bb:82:a2:ef:f4:a7:8e:97:a0:d4:48:0e:5f:48:26:91:
fb:96:e9:56:8c:40:e3:a0:54:1d:eb:8f:01:29:85:cf:8b:00:
51:91:91:64:54:20:fc:24:1f:36:55:c9:91:aa:d7:31:f4:32:
40:fa:9f:be:a9:41:d9:75:1e:24:7e:7d:ae:43:5d:d9:8b:ee:
c3:5c:0d:98:9f:90:9e:b3:2d:17:55:9d:5a:08:ba:35:60:05:
97:38:53:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 15 02:56:19 2026 by rpki-client