Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.mft
File: tz2I10aK9gGvFMXh7ZA8TzbK9fo.mft (raw, json)
Hash identifier: tMaVZWgCVNIq/mKfk9+zADPzq/3BFwkGhFwYFMG3n5w=
Subject key identifier: 33:30:86:4D:7C:68:BC:AE:24:24:5D:9C:93:50:9F:5D:90:D8:D0:4F
Authority key identifier: B7:3D:88:D7:46:8A:F6:01:AF:14:C5:E1:ED:90:3C:4F:36:CA:F5:FA
Certificate issuer: /CN=b73d88d7468af601af14c5e1ed903c4f36caf5fa
Certificate serial: 019CAD59ED8CB737FF913EDEEE4C96E2E9B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tz2I10aK9gGvFMXh7ZA8TzbK9fo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.mft
Manifest number: 1843
Signing time: Mon 02 Mar 2026 07:01:17 +0000
Manifest this update: Mon 02 Mar 2026 07:01:17 +0000
Manifest next update: Tue 03 Mar 2026 07:01:17 +0000
Files and hashes: 1: tz2I10aK9gGvFMXh7ZA8TzbK9fo.crl (hash: 7XdKAXFKTNQDMfaCVU+yQzEfqv+yZYA140cacUt06Es=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tz2I10aK9gGvFMXh7ZA8TzbK9fo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:ed:8c:b7:37:ff:91:3e:de:ee:4c:96:e2:e9:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b73d88d7468af601af14c5e1ed903c4f36caf5fa
Validity
Not Before: Mar 2 07:01:17 2026 GMT
Not After : Mar 3 07:01:17 2026 GMT
Subject: CN=3330864d7c68bcae24245d9c93509f5d90d8d04f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1d:bd:4b:c1:a7:47:9c:b5:b9:0e:d7:1a:51:
59:85:cb:f9:18:3c:0d:45:87:37:6a:f8:39:21:87:
0f:d5:fe:2f:6c:6e:88:a0:da:de:3b:54:e1:56:f6:
b4:02:85:8a:35:61:ee:e6:cb:f4:83:b4:b4:b6:e1:
53:d4:d4:69:99:e5:ea:98:fd:b8:e5:57:63:e9:13:
cb:ad:39:b6:0d:b0:ff:20:4b:8b:1b:e2:0b:aa:2f:
ae:55:78:61:8f:f5:0e:da:45:8e:09:f8:82:37:8a:
c4:3c:4f:1a:18:e6:3a:1a:3a:36:b5:2f:48:b0:a5:
ab:1e:6d:57:87:bb:0f:4e:78:9d:da:74:5b:e8:4b:
75:fd:29:5c:7f:c0:0e:05:3a:e7:64:03:3c:c9:16:
ab:e1:13:28:e2:a5:bf:05:a8:66:63:66:bd:59:a6:
c3:22:1a:01:b0:2d:89:4a:c2:ff:c2:18:13:3e:8b:
ae:24:29:42:7c:c8:8e:c1:95:29:82:94:3e:5d:df:
be:27:9e:b7:5f:74:9b:25:f2:9e:e4:3a:1f:9f:b7:
18:94:2e:7e:4c:ed:ec:ae:c7:bc:16:f6:33:09:12:
7d:ff:21:91:0f:1a:f9:e9:92:5c:cc:e6:3d:4a:5f:
61:54:85:22:f8:b5:d4:d6:5c:10:0b:85:1c:dd:ab:
98:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:30:86:4D:7C:68:BC:AE:24:24:5D:9C:93:50:9F:5D:90:D8:D0:4F
X509v3 Authority Key Identifier:
keyid:B7:3D:88:D7:46:8A:F6:01:AF:14:C5:E1:ED:90:3C:4F:36:CA:F5:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tz2I10aK9gGvFMXh7ZA8TzbK9fo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/19c93b-c9a1-494b-9bc0-0f2b540eca08/1/tz2I10aK9gGvFMXh7ZA8TzbK9fo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:0e:c4:10:18:2c:7f:67:8f:16:6a:d9:c7:a3:dd:4d:a0:78:
38:45:5a:f9:c2:fe:80:74:70:69:b8:40:9f:d2:ab:d1:be:be:
92:52:42:63:3d:50:62:20:85:5b:96:07:44:22:08:b0:d3:ac:
90:a7:e4:8e:75:73:e1:dc:d1:c8:57:0f:9f:02:10:50:3d:52:
c2:8d:18:99:c0:c4:cf:d4:71:b8:6e:b4:c0:1e:48:48:39:4e:
96:f9:40:22:af:70:80:e8:6d:b5:be:87:6a:0e:00:95:96:d2:
02:fb:55:fd:75:ba:b3:53:ea:26:0c:4a:7b:af:10:31:e4:2b:
dd:87:2c:15:fb:dd:94:1c:d2:24:ba:07:83:b7:f5:56:93:89:
5c:16:81:46:51:61:b7:11:32:0a:0f:bd:53:a5:82:a4:7a:b1:
fc:a2:08:39:b7:29:b4:75:07:82:48:3a:7b:b9:ea:bb:55:60:
e4:89:49:e0:e6:73:9a:b1:a6:6e:85:9e:2e:f7:68:a8:09:99:
a8:80:80:02:86:4b:bf:87:19:6e:22:a5:c4:e8:10:5b:1e:e1:
0b:86:c1:79:48:87:ce:23:38:f6:f9:f2:db:1e:fa:18:41:4f:
ff:30:14:13:2a:9a:36:14:9c:0c:41:71:1b:0a:1a:9f:e5:56:
a2:0f:b4:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:51:39 2026 by rpki-client