Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier: LDozucEUu12ZPzmdxD2nFfYDcySigugvwERuS6n4Jew=
Subject key identifier: 09:3E:B0:20:BC:18:A4:9B:DB:91:3F:83:91:21:D3:3F:18:8C:B9:E9
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial: 019D38D294F97A078ADCA8E6FE1C5DBCE1A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number: 0D91
Signing time: Sun 29 Mar 2026 09:00:17 +0000
Manifest this update: Sun 29 Mar 2026 09:00:17 +0000
Manifest next update: Mon 30 Mar 2026 09:00:17 +0000
Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: AkOuOi2Rg49vvcLgnNWgWqi4UCnGJrG8aJ6p6qnPOzI=)
2: yqbwyn5sfCL6hbkLZAJdRWAyPBM.roa (hash: ZWKRKB/jnik25oPS/+Y2ymZERk+OEa7DBYYnhwqGBQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:94:f9:7a:07:8a:dc:a8:e6:fe:1c:5d:bc:e1:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
Validity
Not Before: Mar 29 09:00:17 2026 GMT
Not After : Mar 30 09:00:17 2026 GMT
Subject: CN=093eb020bc18a49bdb913f839121d33f188cb9e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:53:58:23:a2:b6:d3:20:c7:1f:a1:f5:f1:f6:
7f:9c:25:c3:1e:58:ca:1d:6d:57:f2:d2:bc:ca:72:
aa:0e:41:94:cb:9e:aa:0d:77:38:55:34:35:8d:bb:
63:b5:cd:18:69:46:a1:dc:43:c3:b1:7c:54:27:44:
10:2b:17:5d:44:96:41:af:75:ca:0b:fa:b0:f2:84:
83:89:de:d8:8a:a7:3a:8d:38:b2:2b:9b:39:bf:e7:
1c:bb:49:e3:0d:51:1c:f0:41:db:4c:81:8d:be:f4:
8b:5e:63:04:06:dd:f6:95:e9:d5:16:bb:6d:bc:ca:
c4:6b:2f:10:84:8c:26:8f:54:e6:dd:ad:ca:84:ce:
c3:e5:6e:be:2f:f7:00:06:62:9c:90:16:16:09:20:
8b:85:5e:13:c7:dc:82:0b:4c:85:f4:87:ec:06:ff:
e7:c8:cb:b7:09:db:c4:09:a4:50:de:23:f5:bf:54:
0b:c2:59:0e:a7:f4:e8:7a:c7:63:43:d0:79:fc:e4:
2f:94:f9:e6:45:17:5a:d4:b9:09:39:b8:3a:dd:c6:
42:ff:e9:76:39:60:f8:85:dd:9c:de:63:57:58:24:
62:09:8b:51:de:cd:9e:b7:38:22:4c:75:d4:bd:2e:
a7:0f:d1:22:9b:a2:43:24:f7:09:0d:27:ae:4a:a1:
e9:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:3E:B0:20:BC:18:A4:9B:DB:91:3F:83:91:21:D3:3F:18:8C:B9:E9
X509v3 Authority Key Identifier:
keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:bf:86:f5:e7:e7:04:6e:95:e6:39:8b:79:0b:31:b6:d4:ba:
81:b2:b4:2b:da:76:08:28:18:4a:92:7f:37:13:6e:49:f6:13:
d1:06:8b:88:fd:04:9d:3a:87:0e:5b:4f:34:a8:7b:f3:e3:7c:
a1:60:59:e6:ee:b9:c7:b2:cb:23:0a:45:8a:e2:1e:ac:ca:46:
6c:4a:7e:6c:67:60:6a:26:77:8c:14:11:1b:d5:1f:0c:f4:41:
b7:73:3f:8f:4c:ec:a7:38:c5:b2:54:d5:4b:40:69:17:0d:17:
c6:66:c9:dd:b9:e3:5d:36:06:4b:e0:2c:7a:ba:24:a1:87:64:
ea:e7:43:ff:6c:3d:de:b8:a0:2e:aa:55:ed:af:c2:2c:f9:da:
99:0b:8d:85:a0:ad:d8:ed:e3:28:7d:27:96:fa:ad:8c:27:04:
ca:c1:5b:34:90:d4:a1:0d:56:2c:33:e6:2e:0d:14:8a:06:d9:
6f:1f:ec:18:e2:02:f9:b9:68:5b:21:a7:ea:43:53:0d:37:87:
68:bc:f7:ed:80:e1:c1:20:f9:bb:b9:95:8a:ca:88:19:d8:dc:
64:5d:da:54:17:50:5c:23:f7:8d:64:94:d0:c0:d9:12:38:51:
bb:f0:34:58:10:3d:62:99:5b:a7:bd:89:a8:2e:79:71:5e:d9:
df:6f:a3:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:58 2026 by rpki-client