Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
File: tgcVWH7cyzJajXwPWkLY8EOHHbc.mft (raw, json)
Hash identifier: oq86Km+dohBu//BKF6QMF62aRP2P9ccilLgtyu9P+Pc=
Subject key identifier: 98:72:AF:C2:A8:1A:CD:FC:6D:D3:BC:9F:1A:B7:B2:26:AE:23:81:AD
Authority key identifier: B6:07:15:58:7E:DC:CB:32:5A:8D:7C:0F:5A:42:D8:F0:43:87:1D:B7
Certificate issuer: /CN=b60715587edccb325a8d7c0f5a42d8f043871db7
Certificate serial: 019CAFEC6E52906041F87EFF8C693109D458
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
Manifest number: 036E
Signing time: Mon 02 Mar 2026 19:00:33 +0000
Manifest this update: Mon 02 Mar 2026 19:00:33 +0000
Manifest next update: Tue 03 Mar 2026 19:00:33 +0000
Files and hashes: 1: eB4gEEpPyWFq6clsUK7vv51vvfQ.roa (hash: vOzaKzOf/nV2cWIeYZMZ7vTHjq9ov1FtZCm3hsoyh/8=)
2: tgcVWH7cyzJajXwPWkLY8EOHHbc.crl (hash: 5Sro1AqLeUu187K1alc+pkWAxl4lA9ij8fGhUsbpbDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:ec:6e:52:90:60:41:f8:7e:ff:8c:69:31:09:d4:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60715587edccb325a8d7c0f5a42d8f043871db7
Validity
Not Before: Mar 2 19:00:33 2026 GMT
Not After : Mar 3 19:00:33 2026 GMT
Subject: CN=9872afc2a81acdfc6dd3bc9f1ab7b226ae2381ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:14:db:b0:45:76:21:1c:21:31:81:cc:e9:a6:
ff:35:a7:38:64:84:98:76:6e:4a:cd:08:2f:74:86:
68:b5:16:42:de:a2:80:61:c3:55:3a:09:38:b9:59:
3a:ac:fb:92:5b:1c:cf:03:dd:44:81:f9:1e:58:93:
81:76:d3:69:6d:43:b0:17:91:d0:00:70:5b:99:9a:
f7:86:fc:1c:2e:6e:34:40:4e:53:ee:2c:52:9e:3c:
9a:54:64:75:c5:cd:27:d5:d8:96:11:cc:8b:6e:bb:
ea:63:47:a9:0b:23:e3:4f:cd:b4:e2:91:a2:83:2b:
fc:86:33:7c:8b:be:b3:f2:59:21:fa:64:e3:06:1e:
04:9f:5e:83:af:10:35:e5:25:f9:6a:b2:c7:5a:1e:
7e:fe:7d:49:7b:06:d3:83:7a:d8:ae:09:be:87:f2:
6f:97:5b:6a:cf:42:0c:ae:2a:f8:ed:7f:f1:8f:4a:
7f:11:d8:0d:e2:23:65:9e:18:0d:aa:ba:4c:5c:db:
b2:df:e3:9a:52:50:ed:57:b3:9f:4e:b0:74:98:d0:
3d:b9:c3:f9:b3:b6:42:78:19:4e:99:ef:7d:2e:7e:
b0:a0:d6:7e:07:35:e8:3a:4a:83:d2:d0:34:b8:fe:
cf:fe:44:b8:bb:e7:f9:e8:c2:51:14:f2:be:42:fc:
b9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:72:AF:C2:A8:1A:CD:FC:6D:D3:BC:9F:1A:B7:B2:26:AE:23:81:AD
X509v3 Authority Key Identifier:
keyid:B6:07:15:58:7E:DC:CB:32:5A:8D:7C:0F:5A:42:D8:F0:43:87:1D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:27:a6:d9:fa:b7:23:89:88:32:d5:c9:b4:b1:3e:87:d2:15:
75:c5:03:b3:dc:d6:f2:da:9c:79:d2:50:12:cd:ce:ea:5d:97:
37:9c:2e:00:18:13:62:e0:8c:5c:c1:d3:bc:60:7f:7d:7e:a8:
09:a0:c9:9e:2a:5e:6e:72:4c:af:08:97:b7:ef:87:15:5e:ab:
53:94:a3:b9:fd:d0:67:c1:e2:b9:6d:b1:c1:46:83:7c:25:c1:
50:7f:94:af:d1:1b:42:99:eb:63:95:cd:55:7c:fd:e0:8e:00:
a8:83:d0:3c:3b:73:72:85:fc:76:24:e6:62:b9:61:7d:c6:a1:
96:0b:6b:95:2c:b2:a8:01:49:c2:69:43:01:33:c8:81:f9:3c:
98:51:65:ac:7c:64:9d:49:a6:02:a0:3c:62:99:3f:3b:00:8e:
35:2d:1b:15:9e:67:c5:61:72:5e:1c:91:94:f3:f4:41:5c:2e:
04:dc:42:e7:c1:5b:69:d5:0a:b8:b3:ba:55:b4:73:d7:1e:f6:
1a:cb:cd:4e:af:01:60:45:c5:8a:33:f9:cd:60:91:dc:2b:7e:
b6:d0:81:6a:f0:a6:5d:d9:1e:b1:46:7e:56:ac:75:0b:09:20:
18:20:74:26:92:da:a6:88:25:74:85:f0:a0:2b:60:75:78:9a:
cf:e3:2e:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 22:34:32 2026 by rpki-client