Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json)
Hash identifier: C8er8+he4sC9LiDVhb/8Ukcb5ox/n/qGlmr2BAxuTtU=
Subject key identifier: 5E:90:D4:F2:FA:C8:0F:5E:D5:C5:9F:22:D3:0C:A2:3A:AA:A4:AE:9D
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 019CA9EAB4E24C23F486E451852B953E5AD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
Manifest number: 1119
Signing time: Sun 01 Mar 2026 15:00:57 +0000
Manifest this update: Sun 01 Mar 2026 15:00:57 +0000
Manifest next update: Mon 02 Mar 2026 15:00:57 +0000
Files and hashes: 1: jWxX2tMKxMJdIFHBL77hb_xE7Lk.roa (hash: ZabLLdJJR9GqGbqwCz27PSZyCvB4TLOCdk9dPP8Hc2Q=)
2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: n/nY9MT7Ps/dJXDjiOMjll2S3q62if6GdhoxxxAd4rY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:ea:b4:e2:4c:23:f4:86:e4:51:85:2b:95:3e:5a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Mar 1 15:00:57 2026 GMT
Not After : Mar 2 15:00:57 2026 GMT
Subject: CN=5e90d4f2fac80f5ed5c59f22d30ca23aaaa4ae9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3a:b9:ee:fa:67:64:26:0e:35:37:71:b3:15:
7e:b9:6c:c3:94:87:1d:d2:65:77:97:6d:bc:09:3a:
60:c7:2e:f3:86:c2:0e:17:8c:f3:3f:59:bb:7c:27:
84:43:2e:d2:e4:1b:d7:80:ac:b9:56:e9:b5:f4:c1:
76:3d:61:8a:45:dd:2f:0a:b4:4b:31:a4:5b:8d:8f:
15:67:13:43:6e:c4:39:d8:bc:80:f0:70:b0:e7:56:
05:2a:bd:e3:ba:5c:78:ab:f8:51:7b:00:2a:a5:4a:
0d:55:fb:4b:8b:d6:30:9e:db:4b:bb:f9:61:f7:13:
b9:61:37:a6:0b:40:14:14:e8:b5:fc:76:0d:35:c7:
98:ff:2c:29:a4:ea:e5:46:55:25:64:ce:3d:85:2d:
2e:0b:e1:64:99:fb:6d:fd:79:60:3c:b7:18:98:ea:
a8:68:59:d3:a1:17:83:70:46:d9:57:10:1d:39:62:
6e:8e:a6:17:05:da:0d:d8:d6:9c:63:e1:9f:3b:56:
d8:60:23:97:1b:20:43:39:15:bc:51:00:57:ac:e5:
2b:6a:9e:ab:4b:e4:8b:f6:ec:a7:6f:ab:a6:78:8d:
0c:d2:e5:a3:c8:75:7c:36:c8:7e:3d:d4:7c:81:a8:
eb:8f:f5:48:9f:53:d9:41:d7:ec:01:99:05:c3:ec:
c7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:90:D4:F2:FA:C8:0F:5E:D5:C5:9F:22:D3:0C:A2:3A:AA:A4:AE:9D
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:b4:a8:6e:3c:9a:4f:4c:8c:1e:f1:aa:f8:bf:23:f4:21:63:
d8:f8:54:08:e9:cd:c0:58:09:a7:6c:79:18:ac:da:3f:4d:d2:
49:e8:bf:7f:68:56:27:01:47:14:df:85:48:40:2d:7d:00:52:
bb:9e:3c:f8:50:83:3e:1e:fa:4c:24:46:be:e6:87:20:46:83:
8c:6a:62:d5:73:59:7c:21:84:07:1c:54:b4:e3:ca:1b:45:3c:
71:b2:7a:30:af:00:b5:43:8f:ac:33:8c:ed:31:0b:27:8a:d5:
05:86:f6:52:6f:d1:39:7c:f8:0a:fd:ca:61:88:74:9b:e0:d5:
f0:e7:d0:68:21:18:ad:83:57:b0:ff:ea:b0:cb:45:b1:34:06:
d5:ba:f2:b0:c0:7c:24:ce:df:21:be:a6:a8:f4:0b:ef:f8:d4:
dc:39:32:bd:54:26:c1:85:02:81:1d:0e:77:11:9b:d5:30:2c:
17:db:92:bc:30:c4:8f:a6:c1:3b:83:78:31:5f:9b:39:bb:a6:
3e:ea:5c:20:73:bf:32:2a:ce:5b:19:1b:a4:97:d3:08:3f:49:
f7:62:3f:cd:63:90:2b:ce:25:09:27:21:51:9a:60:4f:67:f0:
45:ad:d3:1d:4c:81:0a:87:52:d2:3d:db:80:10:7b:e1:16:03:
21:4f:e9:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:35:38 2026 by rpki-client