Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
File: txRZXFDDUZIbDemldUChXlwcYYo.mft (raw, json)
Hash identifier: J2FEau7dLPdyhWfYpNF3SJD3LurgjRmmKqJRoiXtqzs=
Subject key identifier: 53:0E:86:2C:55:02:26:00:D6:46:0B:EC:F5:EA:C2:5C:86:20:21:7C
Authority key identifier: B7:14:59:5C:50:C3:51:92:1B:0D:E9:A5:75:40:A1:5E:5C:1C:61:8A
Certificate issuer: /CN=b714595c50c351921b0de9a57540a15e5c1c618a
Certificate serial: 019CAAFD5A840E5090B82049461EF0208FF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
Manifest number: 12A8
Signing time: Sun 01 Mar 2026 20:00:56 +0000
Manifest this update: Sun 01 Mar 2026 20:00:56 +0000
Manifest next update: Mon 02 Mar 2026 20:00:56 +0000
Files and hashes: 1: GuWBmwhJapEp_BmmuNbZSMGsF-Y.roa (hash: XKoJ/kEd+7q2jht4EhlLR7+g4VG6e/EP//UCSF6Kcuw=)
2: txRZXFDDUZIbDemldUChXlwcYYo.crl (hash: 9OUVg/SK8aF30Ob56UHWi1RydAzofJs0ILInmk2/VHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:5a:84:0e:50:90:b8:20:49:46:1e:f0:20:8f:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b714595c50c351921b0de9a57540a15e5c1c618a
Validity
Not Before: Mar 1 20:00:56 2026 GMT
Not After : Mar 2 20:00:56 2026 GMT
Subject: CN=530e862c55022600d6460becf5eac25c8620217c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f2:b9:9d:ba:41:81:10:3f:6e:6d:b7:92:c0:
36:d3:ac:e9:f9:a6:f3:46:3f:d5:fc:17:24:c3:22:
b4:ba:65:1d:63:47:d3:ac:94:83:db:00:43:8a:ce:
3b:79:fc:57:10:56:c6:ca:e4:00:cf:bb:a7:d0:c1:
89:45:1d:5a:50:f6:17:63:d8:ef:18:a3:5a:68:6e:
da:5c:4c:c7:ce:88:80:5a:6d:14:27:35:35:52:d4:
b9:d0:95:74:2f:a3:a2:19:43:83:ba:d9:1c:46:ed:
d5:5c:0d:cd:76:a5:cb:d1:b1:c7:0f:67:46:bb:8f:
14:b9:46:3c:19:1b:88:96:70:d9:c7:a0:84:00:95:
dc:d8:00:f4:75:88:42:cf:ec:0d:9c:82:3f:ef:46:
13:1e:93:87:a4:34:46:09:3e:84:1c:6c:91:f9:48:
9b:c0:49:db:7b:59:15:2d:fe:d0:9d:23:33:c3:ec:
d4:83:db:54:d1:20:a2:35:82:c7:84:ae:1a:e5:dc:
b5:96:6b:86:c2:5c:a7:a2:93:e8:fc:44:ab:13:dc:
53:fb:db:e2:b8:95:ac:a1:58:f5:3a:83:96:52:df:
9c:4e:e8:d1:16:30:be:0a:52:dc:2f:a9:5a:4d:f2:
da:8c:a0:7f:e6:68:30:dd:bd:c2:e9:45:7c:be:34:
80:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:0E:86:2C:55:02:26:00:D6:46:0B:EC:F5:EA:C2:5C:86:20:21:7C
X509v3 Authority Key Identifier:
keyid:B7:14:59:5C:50:C3:51:92:1B:0D:E9:A5:75:40:A1:5E:5C:1C:61:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:2f:6b:46:63:a0:4c:52:96:dd:ec:98:97:48:30:3e:5b:9e:
30:8f:a8:b8:26:fa:0e:29:d0:2c:e2:83:52:2f:3b:71:fb:eb:
5d:b0:4e:c0:25:46:36:54:4e:8f:ef:f3:4f:71:65:ab:81:00:
ca:5e:90:5f:f5:44:c4:6d:10:a1:a6:9b:44:3a:98:74:96:c3:
08:af:b9:5b:1e:2b:1f:77:28:f9:70:67:13:7e:2a:5f:74:b6:
86:71:4f:ba:51:f3:17:b0:31:60:78:d9:47:a6:1e:3f:e2:3c:
96:c2:82:f1:a2:2a:60:99:be:63:35:ad:46:d6:fb:22:ce:fc:
f0:cd:63:6d:a7:71:2d:7e:e5:19:f7:ff:ff:cd:25:2e:e8:09:
17:cf:9a:43:c7:82:36:3b:d9:72:2b:20:e6:aa:8a:9e:2b:9e:
10:b9:4f:97:e5:de:6e:56:2f:27:b2:35:39:ed:51:46:b0:83:
ca:af:03:90:c3:e9:ac:23:30:7a:3f:d2:37:09:dd:06:f6:e2:
01:94:31:ee:23:e8:e8:dd:d2:53:83:85:6c:02:8b:33:1a:f5:
81:23:c2:9b:b8:74:b8:05:e6:5a:eb:12:12:a3:f0:ec:4b:0e:
42:d5:4b:d9:3e:f3:79:c2:bf:25:4a:7a:d5:a0:c0:8f:40:f0:
85:a8:7a:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:41:45 2026 by rpki-client