Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
File: TzvVbotU5tonu-ZiLaxny_Aqgeo.mft (raw, json)
Hash identifier: Yd43AkSt4Ayg5WjNq477mO3EkDngERIlBRN8VN+JQ5Y=
Subject key identifier: 13:BB:21:E2:1E:A0:20:DD:5B:E0:D1:50:24:4B:D1:E7:6B:D4:D8:B1
Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
Certificate issuer: /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Certificate serial: 019D37C0B94C9480EBC308ECDD33C0D5789D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 04:01:10 +0000
Manifest this update: Sun 29 Mar 2026 04:01:10 +0000
Manifest next update: Mon 30 Mar 2026 04:01:10 +0000
Files and hashes: 1: 6h3DLRd0aoO08FWkuvK-DIL1TAI.roa (hash: QbNhinBRvnYOWmudxD6YkQ5YvTv3wj3nF5VH2568D0c=)
2: TzvVbotU5tonu-ZiLaxny_Aqgeo.crl (hash: nWhMNywDdV3Ufxy3vb97plKiontHNnCRuAXxOAP2mb0=)
3: kzYQmwQKzbuQvS3iB2mDUlnw91Y.roa (hash: bz4ecHp+kkkRf1WW8soaqZgJTcHf8FiOXW+H4gSzf48=)
4: lv8af-jyuveaHC9x_OKdx2NgSxI.roa (hash: qC6P7LJylLpMoNR/tNemeZF9+aw6XACba3yU1fASXaI=)
5: wMLINqfRL31emUgeWzPrQ7en_WU.roa (hash: 28WktakjRSH95PtqAXbEMoIgPvxQiYsWki+RGQe70G0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:b9:4c:94:80:eb:c3:08:ec:dd:33:c0:d5:78:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Validity
Not Before: Mar 29 04:01:10 2026 GMT
Not After : Mar 30 04:01:10 2026 GMT
Subject: CN=13bb21e21ea020dd5be0d150244bd1e76bd4d8b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:3a:f3:3b:f7:9e:15:58:11:06:62:e0:a6:dc:
0e:6a:68:d0:d4:71:01:2e:69:02:79:57:8b:d6:32:
3f:54:2e:2c:61:df:b8:35:b5:43:e8:94:7c:c5:a2:
99:5a:76:8d:40:76:5d:19:b0:4a:63:18:8b:81:86:
a6:11:8d:77:b2:b0:f9:9b:8c:14:8e:12:4a:86:dc:
c2:7e:db:26:33:2a:ef:95:5f:10:b1:b6:de:7b:fa:
4b:9b:d7:b3:18:e6:78:90:ce:21:30:b8:bd:0e:f4:
71:6a:71:c3:d7:60:fa:18:21:3d:cb:7c:a0:14:94:
fc:b1:d9:5e:92:7f:fd:ea:97:63:70:41:bb:9a:7b:
d6:1e:37:1f:61:d7:90:2d:bb:9c:4b:44:83:b5:90:
0e:b9:0f:68:95:ca:61:cc:7a:4b:c0:71:87:e6:46:
b2:28:2b:a4:dc:6a:7f:8a:24:87:54:74:fe:f5:29:
05:1c:27:98:d8:a5:66:e9:57:7f:74:2d:b4:1b:52:
47:85:06:0a:6e:8b:3c:48:89:4b:e2:40:74:3a:90:
33:79:69:8c:3b:b0:f9:0b:58:cf:a2:fd:85:8b:f9:
81:f6:d6:4d:25:2c:1c:fd:12:cc:84:81:98:dc:85:
54:9a:bf:b5:8c:ed:b0:8f:28:e4:cd:38:2c:bc:85:
75:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:BB:21:E2:1E:A0:20:DD:5B:E0:D1:50:24:4B:D1:E7:6B:D4:D8:B1
X509v3 Authority Key Identifier:
keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:0b:e1:dc:c4:86:a5:0d:93:89:72:ef:9f:7b:3b:9c:cd:15:
5f:c4:36:3f:59:b1:2f:0b:a7:99:34:4d:4a:47:c4:5b:53:4e:
0c:5e:5e:c2:33:b1:b2:b6:18:8f:78:ec:1b:79:46:7d:46:84:
c8:28:48:21:c6:00:53:9a:54:19:42:06:3e:f5:f3:74:39:ec:
93:1a:22:11:75:8b:27:ae:f5:83:ea:9a:bf:1f:fc:d6:a7:c5:
df:62:2c:48:c9:94:75:09:6a:ce:d1:66:a6:f9:77:e7:08:a9:
32:2d:ab:83:48:08:a6:f7:59:57:8d:4e:3d:87:77:b8:9c:9a:
b6:e6:25:fb:65:05:2c:e7:f0:16:1a:09:57:85:6e:f1:7c:37:
2d:0e:01:00:7a:d7:4d:cc:f2:8d:22:0b:e0:29:f3:ea:1d:00:
7b:4c:3e:13:6d:3b:80:84:6b:5a:fe:ab:29:68:90:56:df:9f:
72:e6:05:05:78:7b:bb:7d:d4:7e:eb:a0:7e:73:af:6f:9b:a0:
6b:9a:64:b0:e5:e4:5e:40:67:36:49:e2:7d:94:40:fd:f7:fa:
5a:e5:0e:e5:48:26:0e:eb:dd:1e:32:bb:24:7c:b7:8c:ed:b9:
57:54:15:37:84:8f:52:b3:2a:58:3c:ea:37:b6:03:f0:dc:8c:
3c:54:03:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:29 2026 by rpki-client