Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
File: tRhBzcn2NZTd3CulmkATMYK1efo.mft (raw, json)
Hash identifier: +PtEAWkaDIJ/VWudfcbOQTJ/nY7nxb9GzXbS1EDvlSk=
Subject key identifier: 07:36:06:A9:4C:77:5E:EE:B2:DB:F9:70:0C:55:1F:FE:FD:C6:4E:62
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 019CAC0FAFB06DE33674446F4C08EF88BB07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 01:00:34 +0000
Manifest this update: Mon 02 Mar 2026 01:00:34 +0000
Manifest next update: Tue 03 Mar 2026 01:00:34 +0000
Files and hashes: 1: gn4_joE3Kg7Iuvtn8_CsNV3N_rY.roa (hash: inZ7mhN1iTFUjJSaH+6rFZpFzgOqpsU8gKqes5JxewU=)
2: tRhBzcn2NZTd3CulmkATMYK1efo.crl (hash: CHiecK6b25HS9c8HdHJ7SLRsRE5m2IzbclS6xuil6+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:af:b0:6d:e3:36:74:44:6f:4c:08:ef:88:bb:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: Mar 2 01:00:34 2026 GMT
Not After : Mar 3 01:00:34 2026 GMT
Subject: CN=073606a94c775eeeb2dbf9700c551ffefdc64e62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7d:04:4d:93:da:00:fa:38:89:dd:51:2c:d4:
1c:56:a3:91:a3:fb:2e:4c:d4:86:45:f4:75:9c:45:
25:ad:44:fb:62:44:56:39:35:41:9d:9d:db:bb:93:
81:f7:a9:9d:cf:f9:e6:9c:e2:cd:4c:a9:53:43:52:
81:0b:27:a2:00:3a:06:a3:26:e9:3a:7b:7e:ab:99:
99:51:d7:52:93:36:8a:8d:dd:6c:5e:dd:b7:ab:4e:
68:99:b8:9c:79:4b:95:c6:bb:4c:60:dd:76:69:35:
27:23:64:08:9d:63:6a:72:8f:8a:2f:02:97:f4:1b:
0d:29:a2:f3:b9:db:4d:c4:91:2e:13:42:59:8d:f2:
c6:68:a4:3e:12:1b:af:ba:4e:cc:c2:09:58:b3:88:
c9:c8:d9:bc:ec:cd:62:db:ce:43:b7:6c:83:3b:00:
05:9d:c2:52:a4:aa:ed:59:3c:b3:a9:ee:d6:9b:9d:
a6:4d:cf:7f:49:fe:e9:41:c2:e3:08:51:33:e3:99:
d5:ba:de:f6:d0:ac:36:e7:3a:f7:72:5a:e1:3f:62:
b3:3b:39:d6:02:11:1b:eb:7c:0a:8a:69:27:6c:a4:
25:cc:2b:b4:7b:76:4f:ae:97:41:f5:b1:09:3d:4c:
89:7b:31:78:06:eb:fc:20:e3:fc:b0:05:52:2d:a5:
0e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:36:06:A9:4C:77:5E:EE:B2:DB:F9:70:0C:55:1F:FE:FD:C6:4E:62
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:fb:bc:6f:8d:6c:13:c4:24:4a:86:9f:02:55:17:0f:c8:c4:
9b:f8:1a:2b:52:09:24:cc:f7:82:a7:83:39:be:5b:a9:d2:d4:
1a:e8:63:d4:ee:52:c6:33:7b:37:d3:37:41:11:b4:94:b6:d5:
d3:9b:0f:52:52:ea:ea:99:c7:74:c0:8f:8c:ae:97:71:b8:38:
a5:90:4d:9d:31:76:20:72:52:59:14:a0:52:bb:66:76:5a:d9:
bd:69:38:e4:35:99:73:fb:f5:75:20:07:76:42:83:55:ce:64:
40:df:22:ba:6e:75:bb:4f:72:0d:17:40:07:79:07:9b:29:f6:
9e:3c:8b:4e:05:6e:ef:53:9b:5d:21:af:51:61:da:10:8e:1b:
7c:32:9b:17:2d:43:39:22:41:49:e0:9c:d2:08:cf:41:61:d8:
20:cd:95:38:47:bc:3d:17:00:2a:1e:ae:16:15:58:04:e5:2a:
ac:26:4e:0d:3e:bf:4c:da:89:49:d7:6e:46:4f:23:1a:ff:9d:
5c:b9:89:02:26:11:5c:fc:83:a4:bf:79:99:2b:0e:79:ea:1b:
01:68:19:64:5c:1d:77:c6:ed:ca:15:ef:ac:2b:71:7d:cd:3b:
a0:b8:63:db:99:07:98:44:48:78:c7:c8:e0:75:7f:13:5b:c8:
48:e7:a4:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:13:03 2026 by rpki-client