Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
File: tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft (raw, json)
Hash identifier: IDynwCouFm/zkA3je5g/xcRPJbzbvSxqrBUIhsnoDpI=
Subject key identifier: 6C:57:1A:26:0D:19:23:B9:38:C5:D1:9B:78:92:92:D8:37:24:99:BA
Authority key identifier: B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
Certificate issuer: /CN=b4dd6d658e14571e839f7813da31f2217422818e
Certificate serial: 019CAE6BECC4EE73F49CECD53349F45F158A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 12:00:34 +0000
Manifest this update: Mon 02 Mar 2026 12:00:34 +0000
Manifest next update: Tue 03 Mar 2026 12:00:34 +0000
Files and hashes: 1: YwaTWFoU_sclTYJB9JwjIcKav1Y.roa (hash: Eu+5SivPrsHncNTTaLf6fSyoRwG5oxFjSNJBm3PvsI0=)
2: tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl (hash: XCdvE1tLkww8HJ9QKx1bYnweXVuVFcBCLmih6S+aecU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6b:ec:c4:ee:73:f4:9c:ec:d5:33:49:f4:5f:15:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4dd6d658e14571e839f7813da31f2217422818e
Validity
Not Before: Mar 2 12:00:34 2026 GMT
Not After : Mar 3 12:00:34 2026 GMT
Subject: CN=6c571a260d1923b938c5d19b789292d8372499ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:42:b8:c7:dc:f6:bc:ae:e8:e9:c7:ab:ae:c1:
a4:41:46:26:27:ea:3c:2c:78:29:12:0d:0a:c5:3c:
fe:d5:ba:a1:14:e3:e2:28:aa:87:b4:b2:e3:75:fb:
90:f0:91:c7:9e:ee:aa:5e:74:d1:63:f8:20:ee:b9:
70:9c:bc:cb:1c:30:1f:1b:78:aa:d9:bb:e8:b9:fc:
f3:0a:47:61:82:a2:e0:0d:e2:92:75:5d:dd:f8:57:
ab:91:e9:77:1d:3c:0f:8b:b3:74:af:1a:50:ac:a4:
c9:d1:82:f8:14:60:7a:a4:83:45:ea:2b:7c:a9:42:
2a:61:e1:bd:b0:61:2b:0e:4d:21:60:f4:0b:90:f8:
00:b7:60:87:3a:e0:33:bb:f8:3e:39:11:95:ab:c0:
c9:74:56:1f:b1:fb:95:ed:73:2d:c8:33:19:ac:d8:
aa:e0:c3:4a:39:8e:b8:1b:12:ac:cc:60:3b:c9:1a:
26:c8:74:b0:ca:2e:93:c2:df:78:fd:d2:83:e4:e2:
93:05:34:95:b4:b8:3e:ed:5b:e3:e1:bb:b3:fc:10:
fb:6f:d9:8e:e8:46:ec:f9:32:7c:36:2b:15:d5:31:
e2:a5:a3:a0:d9:6f:f6:50:b6:bd:ba:48:68:8c:f4:
67:ab:9d:14:c0:d3:97:92:15:1e:ad:d3:da:9d:d8:
b2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:57:1A:26:0D:19:23:B9:38:C5:D1:9B:78:92:92:D8:37:24:99:BA
X509v3 Authority Key Identifier:
keyid:B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:2b:1e:f0:2d:41:ee:4a:9a:52:d6:2b:c0:32:40:d6:29:78:
5c:97:88:30:27:58:a8:7b:97:8f:37:c4:06:93:8d:20:63:d7:
bc:b0:e8:62:28:fc:7e:c3:82:25:3a:7b:69:c7:5d:42:ff:54:
81:5d:65:89:59:bb:ce:7a:19:4d:e4:17:13:5e:19:b0:4b:b8:
fb:47:1e:8c:bd:3a:88:45:8d:cd:ae:70:51:44:67:85:a6:c6:
b2:46:55:ed:7a:8b:ea:d1:64:8e:45:f6:08:49:36:e4:2e:f7:
b3:bb:ff:f2:d3:88:bb:cf:ca:79:cd:18:22:66:7a:c1:87:43:
e1:34:65:99:1e:d8:65:97:2e:b6:34:be:e9:3a:7b:49:ff:fa:
53:7b:d6:1c:03:11:82:7b:fd:35:d2:b7:f2:c4:6c:ff:9e:9e:
cf:a9:9a:f3:e5:83:47:7f:c3:a0:17:41:df:44:04:e0:db:58:
4b:f2:1f:8e:5c:9d:2f:a9:d6:e9:ab:64:4c:63:61:d7:ad:bf:
00:da:00:98:19:ae:20:95:df:34:61:6c:91:ba:20:6f:a1:7e:
2d:0b:37:3e:73:14:c9:ab:d4:77:d3:54:44:4e:08:45:20:e2:
9f:b8:1c:7e:26:13:30:1e:79:52:1a:17:e6:f7:ba:64:80:99:
8c:f6:fb:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyua+zE7nP0nOzVM0n0XxWKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZGQ2ZDY1OGUxNDU3MWU4MzlmNzgxM2RhMzFmMjIxNzQy
MjgxOGUwHhcNMjYwMzAyMTIwMDM0WhcNMjYwMzAzMTIwMDM0WjAzMTEwLwYDVQQD
Eyg2YzU3MWEyNjBkMTkyM2I5MzhjNWQxOWI3ODkyOTJkODM3MjQ5OWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEK4x9z2vK7o6cerrsGkQUYmJ+o8
LHgpEg0KxTz+1bqhFOPiKKqHtLLjdfuQ8JHHnu6qXnTRY/gg7rlwnLzLHDAfG3iq
2bvoufzzCkdhgqLgDeKSdV3d+Ferkel3HTwPi7N0rxpQrKTJ0YL4FGB6pINF6it8
qUIqYeG9sGErDk0hYPQLkPgAt2CHOuAzu/g+ORGVq8DJdFYfsfuV7XMtyDMZrNiq
4MNKOY64GxKszGA7yRomyHSwyi6Twt94/dKD5OKTBTSVtLg+7Vvj4buz/BD7b9mO
6Ebs+TJ8NisV1THipaOg2W/2ULa9ukhojPRnq50UwNOXkhUerdPandiy7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGxXGiYNGSO5OMXRm3iSktg3JJm6MB8GA1UdIwQY
MBaAFLTdbWWOFFceg594E9ox8iF0IoGOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdE4xdFpZNFVWeDZEbjNnVDJqSHlJWFFpZ1k0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8yNjQ5MzQtMmE3Zi00MjhiLWFmZTUt
ODFkMjE0ZWRmMjk4LzEvdE4xdFpZNFVWeDZEbjNnVDJqSHlJWFFpZ1k0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8yNjQ5MzQtMmE3Zi00MjhiLWFmZTUtODFkMjE0ZWRmMjk4
LzEvdE4xdFpZNFVWeDZEbjNnVDJqSHlJWFFpZ1k0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfSse8C1B
7kqaUtYrwDJA1il4XJeIMCdYqHuXjzfEBpONIGPXvLDoYij8fsOCJTp7acddQv9U
gV1liVm7znoZTeQXE14ZsEu4+0cejL06iEWNza5wUURnhabGskZV7XqL6tFkjkX2
CEk25C73s7v/8tOIu8/Kec0YImZ6wYdD4TRlmR7YZZcutjS+6Tp7Sf/6U3vWHAMR
gnv9NdK38sRs/56ez6ma8+WDR3/DoBdB30QE4NtYS/IfjlydL6nW6atkTGNh162/
ANoAmBmuIJXfNGFskbogb6F+LQs3PnMUyavUd9NURE4IRSDin7gcfiYTMB55UhoX
5ve6ZICZjPb7sg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 15:34:39 2026 by rpki-client