Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
File: tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft (raw, json)
Hash identifier: qwrkYqiVBx50zVhKRecKIrBUdV7cl5ZHjAkobnK5pqY=
Subject key identifier: B6:43:DC:41:CF:A8:8D:92:A6:AE:58:14:5D:34:87:F7:68:17:A3:8B
Authority key identifier: B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
Certificate issuer: /CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Certificate serial: 019CAC1052A84254AD168CE484FFF3B02A5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
Manifest number: 156E
Signing time: Mon 02 Mar 2026 01:01:16 +0000
Manifest this update: Mon 02 Mar 2026 01:01:16 +0000
Manifest next update: Tue 03 Mar 2026 01:01:16 +0000
Files and hashes: 1: sqJAuTtHjJofashtrpYrfv2Lqkc.roa (hash: tKvEHWVGuDg8Tn8ekoHOsKqzA2uvyPQd/TrrxC4QRzA=)
2: tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl (hash: GEULSLHD7ZXBBeS80+LKtgnnfvnpDj1f4HJAW0AyQYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:52:a8:42:54:ad:16:8c:e4:84:ff:f3:b0:2a:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Validity
Not Before: Mar 2 01:01:16 2026 GMT
Not After : Mar 3 01:01:16 2026 GMT
Subject: CN=b643dc41cfa88d92a6ae58145d3487f76817a38b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d1:a0:e9:c1:62:96:23:8b:76:ad:01:22:f7:
a6:4c:e9:61:8e:84:7e:b7:03:df:31:37:75:4b:63:
60:43:b7:7a:9c:de:99:86:24:f2:b4:74:c8:9a:2d:
cc:4f:b5:44:e8:b7:ef:4d:f4:b7:95:f8:63:c3:37:
3d:f7:b3:92:64:4f:cd:15:3a:2d:31:b1:1e:8d:56:
7f:c0:ef:97:48:fd:a2:f3:b9:54:b1:98:4d:31:6e:
a6:a2:e8:df:8a:d9:a4:56:38:8f:cf:66:cc:27:42:
0d:e8:74:3d:de:bf:8d:8f:13:36:4d:fb:51:9f:d8:
89:6c:eb:e5:fe:b9:59:fe:f5:a7:dd:2f:e5:0a:b4:
60:b8:38:e4:e9:7f:4e:29:44:5d:97:85:b1:0e:13:
d2:7d:f7:a1:04:dc:0c:d9:4a:5b:be:1f:d4:35:21:
90:7a:c6:40:3a:85:aa:76:62:cd:d6:dd:ae:31:ce:
a5:ed:a4:b9:80:d6:1d:99:be:ce:ad:18:51:6a:04:
77:f2:e2:cd:e8:4b:dc:fc:60:89:32:1b:24:da:fa:
6a:0b:aa:d5:4b:9f:20:10:c7:be:9d:61:3a:5c:a2:
91:64:9c:3c:ff:95:14:44:a0:25:89:02:ed:39:ec:
a5:1a:d8:64:3b:c5:1d:d4:5e:93:d9:01:f1:6e:9d:
94:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:43:DC:41:CF:A8:8D:92:A6:AE:58:14:5D:34:87:F7:68:17:A3:8B
X509v3 Authority Key Identifier:
keyid:B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:ba:c4:62:8c:df:2e:e2:86:23:ec:0d:08:ee:42:0c:6d:4b:
04:44:37:10:1c:dd:f4:63:c6:0a:a1:00:98:b1:de:d5:4e:74:
5f:3a:14:41:fc:29:38:db:a6:a1:ce:15:3f:85:c1:71:c2:93:
3d:d2:dd:9d:17:63:85:3b:ce:8e:04:88:fa:97:ac:86:38:70:
6c:7b:5e:d7:ef:a5:30:d9:8a:26:ae:1b:33:4c:0d:e0:e8:ae:
51:e1:f6:5a:72:b9:f5:af:7a:92:37:f2:eb:05:2b:8c:99:37:
f8:de:05:bc:49:bd:28:a4:2e:74:ee:f4:b6:22:e0:4a:79:f8:
5d:8e:e7:28:6c:dc:6c:d7:94:02:7b:97:a4:be:76:da:35:be:
00:ab:64:92:39:5d:1e:76:71:ca:35:0a:83:3c:53:43:62:13:
f8:c8:47:b4:6a:60:88:85:7e:50:bc:ae:1a:4b:01:f1:a9:4c:
37:d5:02:31:21:ed:a5:29:37:7b:00:94:35:d6:e7:67:55:d0:
95:a1:1f:7f:14:51:9d:26:5c:09:92:09:7b:f0:8c:9f:17:e7:
af:5e:b5:83:07:df:a3:c8:71:4c:f4:68:1e:0f:5b:f6:20:50:
a8:7e:04:44:8f:ef:19:c2:d8:7d:ca:d8:b4:25:fe:f9:01:cd:
42:22:c1:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:57:52 2026 by rpki-client