Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
File: TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft (raw, json)
Hash identifier: rSVsY1oDrLxL3akL+BqAB5V2bVOZQaET+m8yW++6okk=
Subject key identifier: 19:37:2E:0A:7A:B2:D0:D1:1E:EE:40:68:D3:5C:E2:CE:3A:CF:AA:44
Authority key identifier: 4C:3C:66:5E:51:CC:4C:B5:CA:F0:5B:82:94:84:3E:27:33:A1:3D:EE
Certificate issuer: /CN=4c3c665e51cc4cb5caf05b8294843e2733a13dee
Certificate serial: 019CADFDF9D8D7D46AE32B3F9C5E1CAF5E59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
Manifest number: 0290
Signing time: Mon 02 Mar 2026 10:00:28 +0000
Manifest this update: Mon 02 Mar 2026 10:00:28 +0000
Manifest next update: Tue 03 Mar 2026 10:00:28 +0000
Files and hashes: 1: TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl (hash: pBtVqSHAJwp2ZGEwvKNmIb444B6+/VvYSNRpsdzLImE=)
2: an0UggxMVOLMbfkQRZg-oFGpksM.roa (hash: RrOytt0pmrmZwpnV5VgzGRGQLeTwpMRDbcMRpSijJI4=)
3: frya0jA5P_fi8uygo2aIO2RW1ZQ.roa (hash: V1yhc9udgYV2uaOOmzTxwzsxFa2raTN+Q6jBXM4XvRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 10:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fd:f9:d8:d7:d4:6a:e3:2b:3f:9c:5e:1c:af:5e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3c665e51cc4cb5caf05b8294843e2733a13dee
Validity
Not Before: Mar 2 10:00:28 2026 GMT
Not After : Mar 3 10:00:28 2026 GMT
Subject: CN=19372e0a7ab2d0d11eee4068d35ce2ce3acfaa44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ad:2d:8d:01:97:e5:2e:74:5b:e7:3f:1d:0c:
a8:e8:05:11:da:ab:aa:42:22:f9:1f:53:ef:ca:18:
09:38:43:b0:98:23:05:e8:9d:b8:7b:f2:46:a4:ae:
3a:5d:24:d1:f6:ee:ff:4f:40:4b:b7:0d:0f:a1:8f:
70:ce:8c:dd:dd:75:96:14:68:b7:fb:64:a6:ec:1b:
67:06:21:48:9f:dd:76:9a:4b:95:a1:05:be:9f:cb:
7a:47:e6:98:f1:de:64:4f:c7:64:f0:b7:a8:94:88:
25:57:61:d5:e9:ad:96:f7:80:2e:63:53:82:4c:91:
83:14:b6:ec:74:23:25:5f:f4:05:db:74:60:5b:ac:
55:fa:d2:bf:76:21:20:aa:82:73:48:37:f8:19:43:
07:bd:85:63:d0:04:79:9d:fa:a2:00:ca:d8:54:f2:
30:79:06:f1:5f:e8:61:d0:40:08:a6:4a:c5:9a:c2:
c2:a9:df:85:9a:73:be:aa:53:a2:ec:20:8a:f8:69:
bd:84:4a:22:0c:73:65:51:ae:80:cd:26:c6:9c:65:
99:7e:b0:71:a3:f6:51:02:b3:b1:ca:06:01:4d:44:
81:ad:0b:55:07:a3:e9:c4:47:ae:7f:8b:9f:3b:fa:
b6:a6:e4:7f:48:e7:f9:65:92:82:54:77:3a:13:12:
c3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:37:2E:0A:7A:B2:D0:D1:1E:EE:40:68:D3:5C:E2:CE:3A:CF:AA:44
X509v3 Authority Key Identifier:
keyid:4C:3C:66:5E:51:CC:4C:B5:CA:F0:5B:82:94:84:3E:27:33:A1:3D:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:20:40:af:e6:76:04:fd:45:06:c7:a2:97:3d:16:aa:13:06:
b5:fc:a3:bd:9e:4b:08:d8:f9:57:96:13:08:6b:4d:10:2f:f8:
01:0a:db:bc:48:48:7f:e2:78:1d:92:cc:11:9b:61:86:6e:da:
f4:ac:b9:ec:b0:7b:50:ae:76:18:e9:c8:89:86:c0:d4:37:b9:
78:98:6c:23:cb:ea:91:1c:47:30:90:a6:28:6f:16:44:02:83:
2f:6a:cc:05:28:e6:af:0d:38:b9:cd:9f:f3:d1:4e:43:c0:d4:
0f:a9:a6:b3:06:21:51:00:df:da:66:de:90:36:79:17:f6:33:
d7:b5:b5:2e:ce:96:e0:3c:2c:b3:53:7b:9b:01:75:8c:1b:8c:
2d:e1:4d:8f:0f:cc:21:ce:fd:19:9d:9c:87:36:62:b6:11:5d:
7f:6a:03:d4:fe:aa:92:41:3f:4b:3d:d0:4b:40:aa:ed:8f:be:
d5:38:23:ea:bc:48:f0:66:ad:94:9c:3c:11:da:91:3d:cf:b1:
76:d5:27:35:c5:99:12:57:a0:fa:5f:d6:45:c3:61:1a:7b:c3:
64:de:ec:ea:53:53:7a:a0:8f:72:43:a0:56:5c:38:dd:f4:5b:
3d:5e:af:5a:10:8f:f8:cd:94:4c:15:ff:ba:1a:ea:b9:37:2f:
4c:aa:7f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:51:57 2026 by rpki-client