Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.mft
File: TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.mft (raw, json)
Hash identifier: Vo/nNAmvTK9MBqbMmGGMTYKynrwpOFEMvt7J2y3F9lk=
Subject key identifier: 24:51:47:AB:90:A7:AE:E4:21:AF:C2:52:1E:BF:37:17:EC:E6:7F:2D
Authority key identifier: 4D:0F:2E:E7:76:21:EA:25:C2:81:9D:4E:AC:95:C5:81:87:7E:30:CD
Certificate issuer: /CN=4d0f2ee77621ea25c2819d4eac95c581877e30cd
Certificate serial: 019CACEBDED7AAA7C86847427335E158FEAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.mft
Manifest number: 0FA3
Signing time: Mon 02 Mar 2026 05:01:05 +0000
Manifest this update: Mon 02 Mar 2026 05:01:05 +0000
Manifest next update: Tue 03 Mar 2026 05:01:05 +0000
Files and hashes: 1: 5shtjSwYY1wV6rWlUfcIKGn6yqo.roa (hash: VOmUNnvEDlqDrfQ2raf9GqtN9WB6Ae56gIOAstRWDXQ=)
2: TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.crl (hash: e2L5op8KjAq6NVSbu/fajnHe6NU4uf0/8jvbv0l1Iz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:de:d7:aa:a7:c8:68:47:42:73:35:e1:58:fe:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0f2ee77621ea25c2819d4eac95c581877e30cd
Validity
Not Before: Mar 2 05:01:05 2026 GMT
Not After : Mar 3 05:01:05 2026 GMT
Subject: CN=245147ab90a7aee421afc2521ebf3717ece67f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fc:15:7b:80:ef:0a:12:1f:7f:c8:c6:6e:96:
78:02:43:d9:e0:68:54:f1:13:d8:d5:46:a8:dc:48:
be:7c:f7:46:d1:4e:d0:e9:47:c4:99:b8:49:19:b0:
f4:a7:90:d8:0d:24:c4:b9:8d:86:36:b4:9f:64:05:
fb:b8:27:55:39:3f:fe:4e:8d:1b:a8:2f:66:9a:14:
a9:39:15:c2:b7:78:43:73:57:48:35:8b:a6:c3:cd:
e6:d4:ed:a6:e3:aa:31:aa:d2:20:72:ec:6f:fb:4e:
b3:e0:84:63:93:bb:87:43:9e:cd:86:56:aa:28:b4:
06:69:1d:c7:4b:f8:6d:ea:f2:c0:b0:b4:96:f2:2a:
c9:3e:02:6b:4d:af:d5:65:91:76:b6:a2:a9:38:fe:
4d:a3:e1:03:e4:b5:d0:5d:c2:df:6a:cf:f9:3d:ca:
6d:bd:a3:48:e2:5f:a1:67:29:23:1e:75:59:a2:7a:
a6:f5:64:47:ad:14:fd:df:fd:91:97:58:70:1e:22:
f7:a8:be:f5:4a:b8:b6:bf:7b:de:68:29:b6:3f:fd:
10:d0:ff:7e:ef:9e:e9:91:4a:ff:40:a8:23:79:a9:
0a:9b:08:78:06:b2:f1:24:f5:1d:79:1a:e3:d4:89:
bd:4a:df:68:47:57:05:03:bc:3b:b3:08:07:60:cc:
c7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:51:47:AB:90:A7:AE:E4:21:AF:C2:52:1E:BF:37:17:EC:E6:7F:2D
X509v3 Authority Key Identifier:
keyid:4D:0F:2E:E7:76:21:EA:25:C2:81:9D:4E:AC:95:C5:81:87:7E:30:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/e828b7-b1d8-4f40-bd30-7c0497913af0/1/TQ8u53Yh6iXCgZ1OrJXFgYd-MM0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:ed:88:30:ea:68:c3:19:9d:f6:53:f4:ec:c9:ca:0e:91:99:
a4:4e:bb:2a:a3:d2:5a:96:b7:2d:af:7c:d0:a7:2d:77:0f:7a:
16:c7:bd:24:99:57:eb:f3:ae:83:06:62:c9:42:b8:45:7c:cf:
cc:1e:14:62:17:a1:33:12:42:d9:cc:78:81:4b:50:97:f3:2d:
76:c9:6a:3d:d5:89:23:2e:c8:be:74:91:3f:cd:4a:d4:0c:69:
ae:48:8a:da:92:0b:8e:bf:21:55:69:f8:7b:98:5a:4e:62:98:
98:3e:58:33:2d:5a:70:88:d6:2f:cc:34:79:65:e0:04:7c:4a:
7b:da:76:bb:96:24:ee:33:0d:86:3a:ff:61:26:98:84:ed:6c:
b0:95:e8:24:ec:24:c3:77:8a:a3:3e:7a:96:63:34:77:45:2a:
c0:46:c8:be:3e:fe:ac:77:17:45:65:03:2d:b1:e0:38:af:3b:
b7:2d:49:10:7f:59:91:14:ff:85:57:d3:fa:e8:08:b9:26:71:
73:3d:47:cb:df:5d:d4:49:8c:9d:bd:03:0e:af:04:9a:ff:aa:
04:bb:c0:4c:ad:8c:2b:bf:e8:4c:94:00:ab:14:7d:f7:ff:a4:
8a:48:76:85:23:13:27:8e:7d:e6:e1:7d:79:cc:05:40:9d:3f:
16:88:13:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:03:06 2026 by rpki-client