Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
File: tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft (raw, json)
Hash identifier: V/ZyqksvYlOvHWO6m06plDccqCbtqUVnCH2dKinMHa8=
Subject key identifier: 5C:BD:E0:6E:EA:1E:CD:1B:4F:BD:ED:44:23:4E:CE:E2:AA:8A:5F:B1
Authority key identifier: B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
Certificate issuer: /CN=b414b09beeab905ff41e6813256054b182294297
Certificate serial: 019DA453E4607051B54D412862478E4B83D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
Manifest number: 0E29
Signing time: Sun 19 Apr 2026 06:00:54 +0000
Manifest this update: Sun 19 Apr 2026 06:00:54 +0000
Manifest next update: Mon 20 Apr 2026 06:00:54 +0000
Files and hashes: 1: 1-nh-wIZbYRM-66D8NvIzY99bdjc.roa (hash: jemes9VVp08HKRuLT5Tahcqefuga/fZeQJPFwphMPVk=)
2: UBFh1GOJKwfHfVNROX0pySkrhLg.roa (hash: 9aS+pDbF/kRsEGF17ZAi+LnIZ4KLD6/VT70cttfQen8=)
3: tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl (hash: Ey1qL9HNN6tA4z0kykyP6q+XKLR2xvaLi264mrFjdQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:e4:60:70:51:b5:4d:41:28:62:47:8e:4b:83:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b414b09beeab905ff41e6813256054b182294297
Validity
Not Before: Apr 19 06:00:54 2026 GMT
Not After : Apr 20 06:00:54 2026 GMT
Subject: CN=5cbde06eea1ecd1b4fbded44234ecee2aa8a5fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:02:93:f8:c8:ff:3d:5e:7d:89:c8:b5:d2:0e:
93:62:49:45:66:30:d1:80:74:87:eb:fd:0d:1b:36:
d6:0d:94:62:f7:5c:02:1a:13:6d:4c:f2:52:27:f6:
7b:88:8d:63:dd:de:fb:db:bc:78:b5:4c:4e:38:7f:
69:d3:7c:24:70:42:d7:37:0c:21:e3:f2:ca:e9:b5:
04:bb:c0:7a:f9:3a:d4:ca:11:4c:8c:e2:a2:5c:9d:
11:18:1c:b9:7e:fd:50:d7:3e:05:0d:b4:36:eb:53:
3a:01:fa:6d:45:ee:b6:94:37:4a:fd:1b:82:a4:09:
12:f3:e5:ab:41:0b:b8:df:ef:92:7b:6a:30:48:05:
4e:4d:9e:e9:11:35:41:e7:ef:ed:aa:8d:5a:f2:c9:
ff:a8:d6:b3:e1:44:48:70:fd:17:e1:0a:2d:99:ad:
1f:95:f9:c9:60:f7:c9:b9:00:3e:1e:9e:f5:1a:a8:
e1:bf:84:2d:d6:66:a0:fe:8d:cf:84:5e:c2:8e:4c:
7e:20:13:df:0d:80:f6:2b:dc:61:85:48:b1:3d:81:
0b:d2:1a:c9:35:a1:23:a3:07:12:e2:59:a3:43:51:
0c:a3:ee:7f:2d:59:b7:d1:da:4f:8d:56:05:00:c3:
8e:b7:67:6c:75:e3:29:05:51:c5:d3:f1:68:b9:80:
8c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BD:E0:6E:EA:1E:CD:1B:4F:BD:ED:44:23:4E:CE:E2:AA:8A:5F:B1
X509v3 Authority Key Identifier:
keyid:B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:33:a0:cf:03:60:06:1d:55:73:67:22:f8:45:ff:55:11:bf:
0e:53:6a:64:dc:e1:4d:c6:1f:a7:72:c1:d5:b1:23:32:fb:e1:
45:c3:15:42:38:d5:03:a8:65:4a:31:98:25:ab:eb:08:44:d4:
83:c3:ba:9b:2f:12:9f:3f:11:d0:d7:ee:30:25:8f:90:df:3e:
a3:96:8d:d8:49:2b:9b:a8:80:12:20:b8:22:85:b5:e5:11:7f:
6d:d3:aa:e4:34:14:af:a4:1d:5b:ca:f8:c1:2c:11:16:57:14:
5a:42:f9:42:c5:30:70:50:04:12:4f:ec:e0:3a:67:c6:ca:a1:
b6:48:f5:9f:6c:94:d4:09:2f:90:e5:46:34:20:75:e0:1d:2c:
e6:97:46:f5:43:e8:3c:95:c5:8d:c2:d0:c1:64:12:86:cd:ba:
26:d2:34:57:59:e8:4c:13:93:0e:f6:9c:c4:34:3d:03:db:a8:
a6:1f:1f:f7:c7:bf:f6:bc:6b:df:dc:92:ab:77:dd:3a:41:34:
ba:d9:c8:26:30:d8:c8:82:18:92:3a:93:44:81:c5:58:f2:c5:
d0:4c:4e:7a:d6:bc:57:67:b1:21:81:96:e9:0f:57:04:17:3e:
1d:3c:c3:a7:8f:e3:d9:d9:b6:c7:74:aa:11:f7:c5:78:d6:a0:
04:7d:ad:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:07:19 2026 by rpki-client