Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json)
Hash identifier: 34pf0ymlfyi8OPi1NLn3xCCcr171flHglVTgo2vDvKo=
Subject key identifier: 76:E0:60:8B:28:7F:A8:9E:95:E9:6A:58:26:59:10:EA:D3:B4:BF:83
Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Certificate serial: 019CA97C92D3F20F4575AD3F6C08CFFC8B9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
Manifest number: 1848
Signing time: Sun 01 Mar 2026 13:00:39 +0000
Manifest this update: Sun 01 Mar 2026 13:00:39 +0000
Manifest next update: Mon 02 Mar 2026 13:00:39 +0000
Files and hashes: 1: N79dGcqXOAWTraGm-dUGr_n7g5o.roa (hash: izRmr4QFMP3HYYiVhDYKTcRuMtp1aQuZsgseKcKqny4=)
2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: UV70Lrz0f3S5T9F31gjuzluiueDrBVxsgp+ymtu/a2w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7c:92:d3:f2:0f:45:75:ad:3f:6c:08:cf:fc:8b:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Validity
Not Before: Mar 1 13:00:39 2026 GMT
Not After : Mar 2 13:00:39 2026 GMT
Subject: CN=76e0608b287fa89e95e96a58265910ead3b4bf83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b1:9c:08:61:1b:8f:99:3d:a3:17:53:d1:3b:
70:21:21:98:dc:aa:b9:96:7a:6a:80:a6:ba:bc:01:
d8:7f:80:73:d9:24:69:a8:9f:4a:70:7e:8f:7e:7f:
cc:5c:70:81:3b:35:e5:1c:5f:69:c5:ba:c9:bf:aa:
8a:51:1e:91:75:29:2a:8b:e6:b3:5c:f7:71:99:e7:
ca:75:c1:cf:a6:6f:1f:9a:40:e1:f3:fe:24:0e:c2:
8f:12:59:fc:4e:18:53:ac:81:1a:78:65:31:d0:a3:
ab:74:91:a2:19:25:bf:e3:29:11:c2:83:b8:01:77:
0e:8b:24:73:a9:14:17:85:80:50:bf:ab:0f:9b:5a:
11:71:52:7e:42:78:cb:e8:49:5f:cf:06:b4:c6:44:
d3:ec:b0:52:68:22:dd:86:28:cf:7a:ac:b4:8c:03:
c6:2d:9c:95:35:76:22:72:e5:43:60:ee:0f:83:0e:
b4:d0:87:0e:e1:b4:f9:e3:bb:6a:d1:4b:cf:c6:51:
46:56:9e:dc:21:61:a0:ee:97:29:4b:0f:ec:2c:fc:
2e:3a:bb:36:11:0d:47:53:f0:2d:91:21:f3:6a:98:
8e:3f:66:8f:eb:94:b2:7c:76:35:e6:88:53:b7:bc:
47:0a:26:54:0d:3a:47:4e:be:a2:6b:80:41:1f:bb:
20:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E0:60:8B:28:7F:A8:9E:95:E9:6A:58:26:59:10:EA:D3:B4:BF:83
X509v3 Authority Key Identifier:
keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:75:52:5c:57:27:67:ed:65:5a:ec:88:6b:81:e9:5f:66:69:
56:9f:20:f0:56:bb:c6:14:f1:b4:8b:88:52:99:c6:19:e9:5d:
86:be:6c:f3:d6:cc:12:2c:c6:82:2f:7d:2c:03:92:8f:84:93:
2b:1a:0c:2e:1c:eb:ce:25:cd:73:78:42:cc:58:69:80:7e:17:
e4:55:02:6a:a6:5f:6d:2b:f8:be:7c:b9:c5:1f:fe:94:93:af:
ae:e8:17:98:29:41:4b:20:42:f0:02:bd:ec:65:ad:99:43:2c:
ba:f5:d6:60:7c:f6:27:17:70:bb:0d:65:62:22:cf:be:8e:ab:
39:a3:5b:00:71:b2:76:f2:0a:c2:69:b4:10:5d:48:eb:ed:e4:
b4:3c:d5:4a:d9:f9:19:30:d5:93:df:86:88:d0:ac:c9:b8:3f:
ef:53:4e:68:0b:e0:e6:c9:d5:f5:f6:67:4a:99:5c:11:4d:5b:
30:85:fa:ac:b9:8d:4b:a9:e9:19:13:8c:de:b2:9c:c0:95:d4:
73:4f:2f:c6:e0:82:da:b0:93:f6:79:ab:05:db:98:cb:10:80:
a4:c0:d8:62:db:f3:a5:14:8d:65:8f:a8:cf:3c:49:f9:84:05:
82:33:24:65:10:e7:de:3c:af:ab:ae:83:0d:b5:12:d7:60:69:
af:42:91:d5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZypfJLT8g9Fda0/bAjP/IudMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0M2I5N2ExZDIxZjYzN2I1NDkxMzBmMDg1N2E2ODFjYzdm
Njg4NGMwHhcNMjYwMzAxMTMwMDM5WhcNMjYwMzAyMTMwMDM5WjAzMTEwLwYDVQQD
Eyg3NmUwNjA4YjI4N2ZhODllOTVlOTZhNTgyNjU5MTBlYWQzYjRiZjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5rGcCGEbj5k9oxdT0TtwISGY3Kq5
lnpqgKa6vAHYf4Bz2SRpqJ9KcH6Pfn/MXHCBOzXlHF9pxbrJv6qKUR6RdSkqi+az
XPdxmefKdcHPpm8fmkDh8/4kDsKPEln8ThhTrIEaeGUx0KOrdJGiGSW/4ykRwoO4
AXcOiyRzqRQXhYBQv6sPm1oRcVJ+QnjL6Elfzwa0xkTT7LBSaCLdhijPeqy0jAPG
LZyVNXYicuVDYO4Pgw600IcO4bT547tq0UvPxlFGVp7cIWGg7pcpSw/sLPwuOrs2
EQ1HU/AtkSHzapiOP2aP65SyfHY15ohTt7xHCiZUDTpHTr6ia4BBH7sguQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHbgYIsof6ielelqWCZZEOrTtL+DMB8GA1UdIwQY
MBaAFLQ7l6HSH2N7VJEw8IV6aBzH9ohMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0Yjkt
MDQ2NGU5NDVmMWNjLzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS81NDU0YWQtNmNmMy00ZWU1LWE0YjktMDQ2NGU5NDVmMWNj
LzEvdER1WG9kSWZZM3RVa1REd2hYcG9ITWYyaUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGnVSXFcn
Z+1lWuyIa4HpX2ZpVp8g8Fa7xhTxtIuIUpnGGeldhr5s89bMEizGgi99LAOSj4ST
KxoMLhzrziXNc3hCzFhpgH4X5FUCaqZfbSv4vny5xR/+lJOvrugXmClBSyBC8AK9
7GWtmUMsuvXWYHz2Jxdwuw1lYiLPvo6rOaNbAHGydvIKwmm0EF1I6+3ktDzVStn5
GTDVk9+GiNCsybg/71NOaAvg5snV9fZnSplcEU1bMIX6rLmNS6npGROM3rKcwJXU
c08vxuCC2rCT9nmrBduYyxCApMDYYtvzpRSNZY+ozzxJ+YQFgjMkZRDn3jyvq66D
DbUS12Bpr0KR1Q==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:30 2026 by rpki-client