Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: 1bAZiWwBSWXgrhBp1+6ZoEVM0yy2U2xF5MVAmbDTauI=
Subject key identifier: 94:08:63:A4:06:11:D7:8B:F3:2B:10:87:DA:55:4F:2A:FA:6D:EE:4E
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 019CAC7DD89F43D558F9A6EB57DE7083DD99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 03:00:54 +0000
Manifest this update: Mon 02 Mar 2026 03:00:54 +0000
Manifest next update: Tue 03 Mar 2026 03:00:54 +0000
Files and hashes: 1: UPwsUnhe4MrjeZvPRYpIDhPDKiI.roa (hash: gTNgkF2m3yFT5Gp1TKn07e+49JHxGZGWx9toGyIkemc=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: r0weRbLbEaTO6syVCZlraeTWIfLloiCRjZWPJHs1lYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 03:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7d:d8:9f:43:d5:58:f9:a6:eb:57:de:70:83:dd:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Mar 2 03:00:54 2026 GMT
Not After : Mar 3 03:00:54 2026 GMT
Subject: CN=940863a40611d78bf32b1087da554f2afa6dee4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e7:f9:1e:f9:c0:a0:a3:dd:c2:33:c0:49:fd:
bd:e8:5b:57:ce:a2:b9:42:57:5f:6a:06:89:fb:f7:
11:8f:3c:d7:8b:bf:a7:d9:8e:4e:1d:a4:63:c5:82:
a3:63:44:2b:c5:bc:c4:62:52:06:48:bb:0e:a1:2f:
f1:ff:a4:aa:7d:b8:a1:73:83:45:03:a2:89:a2:ab:
e6:8d:63:a1:b5:7c:93:46:30:b2:b8:7c:5f:31:b4:
04:60:be:0d:3b:2c:5a:da:14:5d:e7:21:0e:9f:a0:
6e:f8:12:c8:e4:fb:94:46:b6:7e:28:36:d3:91:58:
76:96:57:d3:7f:d3:a2:cc:e5:63:b6:ec:be:a3:6c:
39:44:99:30:f4:c2:13:cf:3f:21:4b:fb:d8:f4:e6:
88:4a:50:2b:a6:b7:e2:f9:3c:b8:63:cc:d6:a3:6f:
1a:6c:50:62:13:3d:00:71:63:3c:7c:72:76:46:67:
e2:db:90:6d:f0:7f:c9:de:19:1c:07:21:43:1a:4b:
84:93:8a:f9:97:29:84:0c:48:a7:3d:9b:18:d8:74:
61:85:cf:88:a7:48:da:75:8b:8e:6b:4c:0f:03:64:
3b:38:4f:cd:31:18:c0:01:3b:ed:fb:c1:58:ec:52:
a5:45:e8:2b:7f:db:33:2c:82:98:8a:3f:54:f3:2e:
2b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:08:63:A4:06:11:D7:8B:F3:2B:10:87:DA:55:4F:2A:FA:6D:EE:4E
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:d9:f5:bc:08:34:2b:ee:2a:06:7d:48:4f:e1:cf:7d:89:11:
d6:13:15:9d:d0:a9:66:e6:cd:0a:5f:f9:4f:d5:44:7f:4f:20:
59:aa:09:30:16:b3:61:40:63:f5:a8:f3:13:ec:92:dc:1e:00:
76:b1:d8:6e:37:ad:17:31:33:eb:6a:f9:70:b5:67:c1:e9:66:
73:ae:9a:f1:0e:f1:7f:5f:fa:09:6e:98:72:42:61:8c:87:98:
cd:51:28:68:a9:bf:17:20:fa:c7:dc:ca:63:ec:89:0d:2d:45:
c3:08:cd:7c:c1:7d:3b:39:a2:0d:56:e1:3f:66:a2:b7:f4:9c:
95:d8:ca:08:38:de:e0:ca:57:db:31:32:06:ca:6d:0b:99:c5:
6c:3f:7c:8f:8b:69:8c:bf:a9:c0:a7:e2:40:e7:a9:9b:53:d8:
ad:24:15:50:8f:56:d9:d8:d7:eb:a9:88:19:60:16:92:35:5d:
bf:e9:88:bf:7d:18:7d:89:cd:60:f3:51:44:8a:dc:f1:3b:ea:
06:df:b9:b9:31:56:a6:99:26:91:e3:f3:4b:db:74:b6:1a:65:
8c:d3:00:46:88:d1:70:a4:e9:62:73:7b:41:70:77:9c:98:b9:
90:d3:d5:9c:05:46:fa:b5:a3:4c:7e:45:0f:61:ce:e5:c3:00:
6d:14:bc:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:50:19 2026 by rpki-client