Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: R7L3m4IoDqcQsN9fmXkbT8gohUYZ5rbP6wAbSgzz8Ws=
Subject key identifier: 1A:11:82:BA:4F:F8:A2:D8:77:08:EC:8F:FF:17:A5:7F:47:C2:EF:6B
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 019CACEBD7637AE12CBDECED6750BF857FAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 098A
Signing time: Mon 02 Mar 2026 05:01:02 +0000
Manifest this update: Mon 02 Mar 2026 05:01:02 +0000
Manifest next update: Tue 03 Mar 2026 05:01:02 +0000
Files and hashes: 1: n3LXa0-xioBb1QsCYTVot6eV2ZE.roa (hash: n4raPKw8IwbnWXJNFwCqDhVOg3Y+1y9CxDz8k7+MVtI=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: qKcDVLKETxUwW9WNDtuhotlT51yo4FxN50Phzvv9nr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:d7:63:7a:e1:2c:bd:ec:ed:67:50:bf:85:7f:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Mar 2 05:01:02 2026 GMT
Not After : Mar 3 05:01:02 2026 GMT
Subject: CN=1a1182ba4ff8a2d87708ec8fff17a57f47c2ef6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:10:91:cb:87:22:7e:b1:f5:a3:a8:65:e7:ce:
ec:61:f8:a4:a6:27:c2:e2:87:b7:72:48:c6:d2:6c:
bb:a6:f2:17:95:c8:f6:73:22:1d:a9:87:88:c9:0c:
76:23:a1:c9:fe:3b:55:45:de:4c:cd:de:cb:84:d0:
30:7b:24:ae:af:33:24:a7:52:f6:e1:d2:eb:ab:09:
ef:64:8a:23:25:26:0c:8b:45:bb:56:2d:0a:26:74:
6a:cf:00:ae:d5:fb:78:f9:09:ac:1c:92:14:98:d6:
f3:e8:96:86:dc:84:27:de:fa:42:de:33:d1:01:74:
cb:2e:ad:f2:ea:3b:0a:80:d3:f4:14:bf:96:11:84:
c2:7d:fc:dc:40:57:28:a0:97:32:65:ce:9e:bf:b2:
be:98:94:51:e8:00:23:73:30:45:f0:56:ba:8b:20:
b4:f0:05:cc:f3:dd:0a:8e:0d:f9:a8:83:8d:3d:8e:
f4:3c:3d:87:66:57:a2:2a:d3:63:75:41:c3:30:08:
54:5b:d6:eb:a4:53:7e:89:a9:e2:92:3f:94:b0:d1:
c5:77:3d:c4:df:25:f6:d3:85:25:dd:6d:ec:9d:98:
42:4d:34:3e:36:8e:f4:52:79:b7:b6:0a:d8:4b:8b:
b6:80:3a:aa:af:14:91:ef:b3:93:6e:a8:04:93:ad:
50:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:11:82:BA:4F:F8:A2:D8:77:08:EC:8F:FF:17:A5:7F:47:C2:EF:6B
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:ac:09:07:86:01:00:fa:04:3e:77:58:f4:69:83:d0:4c:2e:
84:47:07:c7:d8:ac:7a:9e:4a:36:02:87:92:57:93:ed:4f:08:
bd:5d:63:2c:38:50:a6:8a:5c:1d:df:d1:87:1f:cc:5e:c3:c9:
c5:65:cf:18:76:4e:77:c4:ee:39:df:90:75:54:5f:3b:da:d5:
fa:b3:59:22:00:1d:c6:e2:1e:3a:2f:3f:47:bc:cf:b9:85:41:
9d:96:10:11:ed:cb:4b:ec:6c:7d:6c:2c:bb:d9:15:87:8f:f5:
88:ac:64:3c:b3:b9:8b:72:2e:b6:9f:be:d8:f0:30:5b:7f:94:
34:5f:92:56:5f:c1:f9:22:39:41:dc:ad:cc:3f:bf:7d:25:e0:
ce:66:29:27:ba:54:fa:73:f9:ca:81:ca:19:ab:92:86:97:68:
55:5c:13:52:60:a6:27:8f:58:98:51:15:e9:57:69:cd:92:b7:
31:2a:8d:d4:9b:3f:e2:4b:55:e3:2c:f1:d2:fe:b6:b0:17:9b:
43:a9:be:01:e8:b1:d4:f4:91:5e:c1:16:56:d2:98:f0:ce:be:
19:2c:bb:38:bc:a0:b6:41:bf:35:cd:83:30:81:c1:e5:9c:56:
a3:4e:b1:2e:7e:8c:bf:c6:31:b1:69:fe:db:da:db:14:0c:e1:
d0:af:8e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:09:03 2026 by rpki-client