Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
File: tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft (raw, json)
Hash identifier: K86kTFuX13dkzkqyYeAvgvhQAsahxABwj70z9m8EEf8=
Subject key identifier: 2A:84:A2:24:A2:A6:AD:6B:93:A2:AB:CB:8D:EA:71:26:E2:41:FA:E8
Authority key identifier: B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
Certificate issuer: /CN=b4dd6d658e14571e839f7813da31f2217422818e
Certificate serial: 019CB05AF2C4EF633899F43666E0CF48D021
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 21:01:16 +0000
Manifest this update: Mon 02 Mar 2026 21:01:16 +0000
Manifest next update: Tue 03 Mar 2026 21:01:16 +0000
Files and hashes: 1: YwaTWFoU_sclTYJB9JwjIcKav1Y.roa (hash: Eu+5SivPrsHncNTTaLf6fSyoRwG5oxFjSNJBm3PvsI0=)
2: tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl (hash: xsL+gUYdFvPEbq0gZs0MAJPHtTHW52FQSv22Eo7TPM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 21:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:5a:f2:c4:ef:63:38:99:f4:36:66:e0:cf:48:d0:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4dd6d658e14571e839f7813da31f2217422818e
Validity
Not Before: Mar 2 21:01:16 2026 GMT
Not After : Mar 3 21:01:16 2026 GMT
Subject: CN=2a84a224a2a6ad6b93a2abcb8dea7126e241fae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:36:c4:24:4e:cd:65:da:05:a3:7d:58:85:78:
3b:72:29:34:94:36:44:ce:dc:99:f5:e0:c0:f7:39:
a1:7f:2e:0c:89:f5:86:f5:4b:82:3f:6a:c6:9d:46:
0d:1d:57:99:bb:6b:d5:8f:ea:f3:d8:a2:bc:d0:6c:
2a:f2:ee:e6:db:87:10:69:3e:97:cc:36:60:df:d1:
f7:25:69:07:04:66:90:60:ea:df:48:8a:ce:fa:11:
0c:56:e9:18:27:aa:b0:7d:b3:aa:3d:28:39:7b:4d:
1c:b0:1b:a0:5a:5c:16:05:00:65:7e:6e:17:7d:2a:
21:5f:aa:25:8e:d9:bd:ee:97:78:ef:c9:8d:b9:06:
f3:4e:9f:40:4b:95:20:c1:c9:17:fd:80:e7:a2:62:
46:09:8f:65:45:9e:5b:d9:0c:6c:65:0b:2a:17:fa:
d6:47:b0:ad:d4:cc:69:cb:13:6f:86:b1:93:71:64:
9a:6a:87:a9:e1:5d:88:24:73:a3:41:e2:bc:ac:b0:
f2:59:e3:13:10:9f:d5:a6:87:15:13:fa:60:cf:ec:
68:0d:2d:ce:f6:e7:7c:ee:e1:12:7f:b2:a3:bb:86:
55:bd:ea:95:52:5c:7e:51:b4:0a:41:ed:58:86:fc:
45:ad:47:8d:08:b6:b4:dd:21:81:3f:98:1f:c5:f8:
42:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:84:A2:24:A2:A6:AD:6B:93:A2:AB:CB:8D:EA:71:26:E2:41:FA:E8
X509v3 Authority Key Identifier:
keyid:B4:DD:6D:65:8E:14:57:1E:83:9F:78:13:DA:31:F2:21:74:22:81:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tN1tZY4UVx6Dn3gT2jHyIXQigY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/264934-2a7f-428b-afe5-81d214edf298/1/tN1tZY4UVx6Dn3gT2jHyIXQigY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:8f:b4:11:7d:1f:16:4e:4f:9d:d1:f6:88:fd:74:a0:e1:15:
f3:37:f7:e6:3e:39:bb:d6:d5:8d:82:29:98:32:06:63:bd:73:
0b:99:d1:99:95:13:7d:e9:cc:cc:fa:48:b8:5b:b1:c0:5c:ce:
e0:8c:5a:12:97:ac:17:0f:3e:37:c5:05:2c:9d:79:e4:89:41:
a3:27:9f:f5:b5:21:ac:a8:3f:f3:da:63:4b:95:af:74:a7:92:
a3:1f:0f:5a:84:41:9e:e1:a0:3a:4b:91:1e:f4:e0:b1:80:28:
c2:e7:97:4c:c0:54:78:a4:51:8b:1b:e3:ee:f6:97:2f:dc:ca:
45:ac:10:22:64:79:c2:b6:12:5f:9b:d2:d8:0f:71:fb:ac:5d:
c9:c8:c6:28:20:f4:3b:27:cc:cd:e3:33:7e:f4:29:c1:8b:e3:
21:13:30:96:d7:19:0e:1f:a0:82:58:4c:8a:03:2a:48:4b:7d:
af:e7:fe:67:fb:8b:32:50:9f:42:9a:ae:4c:2a:67:7b:2a:77:
00:c0:3b:56:77:44:e2:3f:be:dd:01:56:68:7c:a0:20:b7:47:
0a:86:13:fa:50:98:a4:e1:55:45:4e:cd:61:d4:ed:5a:fc:a7:
de:3b:4a:17:68:20:44:01:d2:4e:c0:99:ae:e3:3e:85:ae:7b:
78:9b:ad:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 04:26:05 2026 by rpki-client