Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
File: tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft (raw, json)
Hash identifier: XIHUpBaGnIwTXkSVZXYz/XrF67W09JwX8FdCtW5JjTM=
Subject key identifier: 58:77:85:4B:F7:88:4A:5E:2E:AF:4F:5C:2E:A9:89:CA:F3:DC:79:A3
Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Certificate serial: 019CE4EC6695A50D8F2071A956F89E24FA03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
Manifest number: 1869
Signing time: Fri 13 Mar 2026 02:00:23 +0000
Manifest this update: Fri 13 Mar 2026 02:00:23 +0000
Manifest next update: Sat 14 Mar 2026 02:00:23 +0000
Files and hashes: 1: RNoONMgjC7AI9bUiPXHJnoNxdw4.roa (hash: EyX2BbVopJ5hjqPnGfS3gH2lJBH+hCeBYJzhz4A8ggc=)
2: nUF12WZsvpoiPI9C00eeFdJfaVo.roa (hash: 9SbxvhyRlkdpKS3ff2WOCyOa7It2KK0x1wSPI6mJgOw=)
3: tNl2UUnZ4217WSLfqRDSI0O_BWU.roa (hash: TJsFtOL6bWviF8Z8b9ypqKLo31djdrQdvLmCXkT7uLQ=)
4: tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl (hash: 6WF9dxb4FKUDQkApbMPsBCbLAjeTnB3DNYz+7F3Vfnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:ec:66:95:a5:0d:8f:20:71:a9:56:f8:9e:24:fa:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Validity
Not Before: Mar 13 02:00:23 2026 GMT
Not After : Mar 14 02:00:23 2026 GMT
Subject: CN=5877854bf7884a5e2eaf4f5c2ea989caf3dc79a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:08:d6:bf:e9:ee:d7:dd:a9:21:48:53:b4:62:
18:6c:a2:1b:a6:c8:64:4b:e8:b7:95:43:2e:d6:49:
70:56:38:ce:5a:74:78:32:45:6c:54:d0:22:9b:8e:
8f:8f:fa:74:f0:ea:2b:87:a9:07:30:a3:ee:b2:f4:
1c:37:0f:59:b4:ef:5d:a7:32:4d:f3:7c:0b:4e:0e:
cf:70:d4:74:1a:f1:2d:72:4c:e2:5c:07:34:1a:37:
20:5d:b1:f5:62:ea:50:09:14:29:1d:3e:8a:e2:e6:
ff:53:51:f6:ca:49:bd:b0:e0:fd:e6:40:b8:c2:d6:
52:83:81:42:99:f6:88:97:6e:fb:a5:ce:ef:c9:af:
ec:b9:b3:73:e2:c2:4c:d6:5f:bd:e5:0f:f6:f0:b7:
53:4a:ff:48:61:15:d9:25:82:68:d9:b8:27:2b:d5:
64:4d:88:75:28:bb:35:25:c3:94:87:98:04:5c:95:
c9:ce:3c:01:aa:85:a9:77:27:00:ab:39:d2:d3:a8:
8e:91:67:9c:1a:a6:ff:cb:b0:4d:ff:0e:2c:5a:a8:
6e:b6:a6:ef:96:bf:0b:b1:65:be:d4:d2:8c:9a:ed:
5a:0c:39:2e:fd:3f:0d:e1:f6:04:9e:74:a1:d3:17:
f3:7e:29:56:b3:86:2c:0e:55:61:3b:4b:b9:00:33:
95:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:77:85:4B:F7:88:4A:5E:2E:AF:4F:5C:2E:A9:89:CA:F3:DC:79:A3
X509v3 Authority Key Identifier:
keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:1c:a5:54:2d:c9:10:05:77:cc:7c:ff:90:31:db:ed:e2:61:
10:e5:f7:9f:90:3b:c1:ee:9f:6c:57:c8:11:7c:31:cb:da:8d:
d9:6b:52:b8:4c:69:df:e2:13:3a:c0:df:f7:af:49:a8:5d:4c:
91:c2:38:28:20:ef:05:b3:57:88:6e:7d:b1:4d:3c:06:ce:4c:
2e:7d:38:c9:87:72:24:1e:24:d9:7a:c5:4c:1e:73:d4:5d:e1:
9f:59:b0:9e:14:10:f1:40:b5:83:61:51:70:58:f2:ec:68:a8:
8c:c6:7a:a6:a4:4f:86:1a:89:96:16:3e:81:c9:98:06:0c:91:
9e:e5:cd:67:a4:3a:61:fb:72:01:88:fd:f3:60:86:27:0b:a6:
69:bd:18:73:d8:e6:9f:fa:2a:cc:83:82:b4:78:ed:33:a6:a4:
6b:b4:3c:37:7a:95:e7:c7:48:7c:a9:88:30:09:7f:37:21:fc:
cc:48:9f:16:a6:d7:b7:d4:bb:60:46:6b:2c:d3:31:d4:e5:5f:
3e:21:d9:4f:d4:71:1f:73:a4:fc:eb:31:22:3c:a6:89:da:9e:
7e:5f:e5:44:e9:81:14:a2:8c:9f:f5:ac:12:e9:56:34:41:ec:
fe:a1:d3:fa:12:40:fc:80:5b:93:16:51:52:c5:9c:33:a8:47:
8d:65:74:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 09:58:20 2026 by rpki-client