Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
File: tRhBzcn2NZTd3CulmkATMYK1efo.mft (raw, json)
Hash identifier: +2j89YjhMebQCYwq53Fyc1zeqOE4gg0XGseqq6ICkFM=
Subject key identifier: 59:B0:49:F0:F2:F1:C7:21:EC:F4:14:12:84:89:A8:80:DA:9A:84:40
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 019EC1118ECD7A068B34C0734C7BDAC87144
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
Manifest number: 195E
Signing time: Sat 13 Jun 2026 13:00:13 +0000
Manifest this update: Sat 13 Jun 2026 13:00:13 +0000
Manifest next update: Sun 14 Jun 2026 13:00:13 +0000
Files and hashes: 1: gn4_joE3Kg7Iuvtn8_CsNV3N_rY.roa (hash: inZ7mhN1iTFUjJSaH+6rFZpFzgOqpsU8gKqes5JxewU=)
2: tRhBzcn2NZTd3CulmkATMYK1efo.crl (hash: Cb5K+Q9aLnaougBeUnH9GqhwUuKGXgeEjeVqTmFiw+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 13:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:11:8e:cd:7a:06:8b:34:c0:73:4c:7b:da:c8:71:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: Jun 13 13:00:13 2026 GMT
Not After : Jun 14 13:00:13 2026 GMT
Subject: CN=59b049f0f2f1c721ecf414128489a880da9a8440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:f8:1b:33:9f:4d:b6:94:5e:a6:6e:71:1a:22:
aa:0b:67:f7:a6:ec:aa:33:6f:f9:a1:c6:b8:93:9b:
8d:e4:02:88:18:3a:90:11:42:ed:6c:c9:37:10:e4:
81:cb:5b:38:e4:e5:3b:c0:39:b3:a3:26:d6:1e:42:
bf:74:27:ce:cc:2a:03:ce:a2:3a:6a:27:45:44:67:
16:e8:b3:a3:5c:e0:3c:04:fd:61:31:72:82:2a:86:
f3:9d:9b:03:b1:79:68:b3:8b:99:3c:c0:68:52:2c:
54:25:58:76:4f:86:b7:4f:42:3c:c7:12:73:7d:e2:
d4:75:09:e8:29:15:15:40:aa:0d:27:ad:2b:1c:fe:
b7:84:6e:c3:04:3a:08:c5:eb:7e:ef:e5:25:b8:14:
b6:a6:70:a1:c0:e6:99:a2:aa:45:24:32:ae:06:50:
a6:39:4e:1b:6a:ab:26:e1:60:f0:e0:d0:4a:e3:fe:
6f:76:b7:56:26:61:be:a2:99:5a:9d:22:b1:a8:9e:
59:e3:6c:3b:57:19:6e:8d:1a:93:16:8a:dc:3c:6b:
d4:a3:cf:d7:db:0f:a2:6c:ac:c1:83:f8:36:a1:66:
cf:52:9d:db:0b:90:74:a7:02:83:2c:06:9d:09:03:
ff:90:cb:f4:50:d6:cb:8c:c2:a5:21:c5:ec:70:3f:
61:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B0:49:F0:F2:F1:C7:21:EC:F4:14:12:84:89:A8:80:DA:9A:84:40
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:b0:d2:cb:99:d9:90:c9:99:ee:b5:f0:36:c0:0c:c6:40:6a:
c3:03:14:15:22:86:71:92:ad:bd:87:1c:6c:a5:96:2b:fd:b7:
19:a1:82:9e:4a:7e:25:bb:5d:30:53:83:0a:7a:7a:ca:1c:29:
b5:34:33:29:54:d1:c4:3a:36:00:63:0a:84:ad:94:fb:22:20:
db:f7:61:c2:61:ac:c6:96:9f:97:dc:a4:1e:30:ba:76:18:98:
d0:f1:15:e6:83:14:ba:03:1f:a4:71:53:31:4f:2a:90:4f:ee:
d4:b2:8b:3d:31:89:c6:56:7a:69:41:df:8a:1d:e5:f6:7e:a3:
e8:c0:09:d2:a3:c5:89:05:5c:a3:b0:15:36:ba:e9:2b:21:38:
3b:19:0e:c6:3b:17:50:2c:bd:f8:cf:e8:17:bc:cb:2c:cd:7b:
0f:87:f5:ca:dc:c1:10:6d:80:f0:99:1b:a7:91:4b:9e:62:94:
b3:31:58:dc:45:77:90:62:49:a8:bf:6c:bb:13:9b:ce:94:01:
d6:f4:e8:00:84:70:02:f5:36:26:14:a3:22:28:3e:b0:67:f2:
cb:81:60:be:ce:6a:bb:1a:d5:91:45:36:50:f3:95:ae:55:51:
f2:35:05:eb:6c:f1:e1:f5:29:f7:76:4e:83:6f:cd:b9:73:1e:
5c:da:94:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:57:19 2026 by rpki-client