Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
File: TBdAzvl0ncKw9fiM3xA02oHWBtw.mft (raw, json)
Hash identifier: xi5znzcsR5YsNMJJ5IPK1uF4mCOVqzT0UtaaJqflmK8=
Subject key identifier: 3E:44:35:F5:30:15:A2:6D:CB:C1:07:B6:C6:92:76:0F:F1:1B:01:EB
Authority key identifier: 4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
Certificate issuer: /CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Certificate serial: 019CAAC70B5FDFC03726ACAE7771F147A24A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
Manifest number: 11C5
Signing time: Sun 01 Mar 2026 19:01:37 +0000
Manifest this update: Sun 01 Mar 2026 19:01:37 +0000
Manifest next update: Mon 02 Mar 2026 19:01:37 +0000
Files and hashes: 1: TBdAzvl0ncKw9fiM3xA02oHWBtw.crl (hash: G5kGT4IbIMgET2PAFiPR+4FTgHp/Pb8YRDiXf3ukZWc=)
2: YVsXJWPnPlqWMFeltxgBZhUCs4Q.roa (hash: q9sjXMHf5vLLJ+Iss0xTQC2tfqQnUkneeNz0HcAGC9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c7:0b:5f:df:c0:37:26:ac:ae:77:71:f1:47:a2:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Validity
Not Before: Mar 1 19:01:37 2026 GMT
Not After : Mar 2 19:01:37 2026 GMT
Subject: CN=3e4435f53015a26dcbc107b6c692760ff11b01eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:46:99:ff:5a:6c:ab:35:1f:2b:80:7e:82:3d:
6a:b6:82:5e:33:7b:69:a2:f0:95:82:c4:53:5c:f3:
7d:bc:a6:ca:c1:75:f6:db:a7:8a:5c:13:48:3a:bf:
5f:c5:79:2d:6a:f0:bd:be:1b:bf:cb:34:a7:e0:54:
4e:7d:85:1b:59:4f:53:28:84:d4:0a:fe:01:65:e9:
a2:80:d6:1d:a2:9b:24:a8:7a:31:1d:aa:ad:7f:ee:
c8:7d:f4:ea:3c:7c:a4:fd:b7:4e:26:23:30:b0:c8:
6f:41:ee:d9:ee:b8:d1:d8:58:1a:2e:16:f8:dd:b8:
27:bd:2e:48:e3:7d:68:fb:18:d6:39:42:ae:9c:4b:
e8:7f:84:7c:3a:0f:34:79:9b:9f:94:0f:d6:e8:b3:
36:a3:84:a7:26:18:95:f1:7e:64:b4:77:d7:a7:5e:
0e:c6:b8:6d:ca:09:ca:02:9d:8c:db:e2:5d:d8:fb:
e3:3f:9c:d2:ce:92:c7:ae:e7:51:aa:e1:b5:67:b5:
78:e2:c0:62:30:bd:af:7f:50:3f:d2:aa:68:9e:24:
46:ee:39:70:e9:1d:f0:10:29:3c:c5:c7:f2:b4:5a:
52:b9:82:b7:e0:60:24:86:74:1a:99:60:d0:91:80:
99:84:0e:33:de:71:8f:d9:dd:77:99:37:5e:e0:0b:
4a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:44:35:F5:30:15:A2:6D:CB:C1:07:B6:C6:92:76:0F:F1:1B:01:EB
X509v3 Authority Key Identifier:
keyid:4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:30:3b:f8:50:75:73:f9:96:67:52:65:88:5b:e2:49:0b:fd:
5f:14:9b:20:f0:c6:5e:78:0b:27:dc:42:8b:4c:17:07:c1:03:
ad:92:b5:2b:62:95:20:96:74:2a:4e:01:3c:3f:e0:79:da:99:
35:ad:9c:59:7c:40:10:f7:5b:51:12:52:9e:60:32:75:ff:53:
88:dd:6b:85:59:d6:de:34:13:15:96:53:f1:dd:1d:a1:bd:a5:
26:fd:59:06:84:da:b1:44:5d:54:c8:54:11:6f:37:0e:90:6b:
d4:9c:d4:ad:e1:39:cb:dc:e1:2a:1f:07:c0:b6:c4:13:6c:72:
4e:34:b8:f6:df:c5:0f:00:e3:47:d0:8d:10:1e:7a:c2:5b:2b:
6c:55:35:87:7e:57:53:12:48:65:e6:56:a3:f9:45:bd:b8:f0:
f4:10:a4:27:fa:0d:a0:a7:06:7a:ab:53:5a:1c:18:9c:13:1f:
35:ce:93:7e:0c:ef:9f:21:a8:03:9c:3f:16:28:46:fc:84:4b:
7f:9f:5e:35:50:73:81:56:b4:33:54:1c:9f:35:23:52:1a:b9:
d3:ac:9e:e8:03:98:89:d1:42:9c:1e:96:45:84:fa:f2:6b:20:
2c:3b:4d:8e:11:18:2d:ec:47:b7:1a:35:2e:38:f7:4a:1f:e1:
29:cd:ed:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:56:11 2026 by rpki-client