Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
File: thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft (raw, json)
Hash identifier: PcOu7/Hn2VFpTFzFLgdEdqFp6jTP5a1ePSTYRbeOZSo=
Subject key identifier: 44:70:50:7B:F3:3A:71:C2:7C:33:99:DA:65:32:1A:65:26:4B:BA:92
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 019CAC7E0F23CC60C58B34DDD4A9E58405C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
Manifest number: 0C8C
Signing time: Mon 02 Mar 2026 03:01:08 +0000
Manifest this update: Mon 02 Mar 2026 03:01:08 +0000
Manifest next update: Tue 03 Mar 2026 03:01:08 +0000
Files and hashes: 1: 4HE55QqTfljWCn4cZ1ai8cvlh4Q.roa (hash: Urls4Wea48yb11KMoVdUctKI04Yz3x+qj0Xh8gfQ8ic=)
2: ZI0XBxKngNfebDmdNmRzMmhs3_c.roa (hash: QNWQmpn8TQdq4xaJXKJjh0gyorKFkSra2zQiLtm/C4o=)
3: gbhgQ3B2uQKFPVeFw6hdlGGc7-M.roa (hash: G0Tz2y63qfWHb3YGepEYqUMgHFr/+KkjDltfUYTk6fM=)
4: thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl (hash: mxv2OHBpCDSlPowj4uZJ6zYYNanJaweYsXmAsqcQwzQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:0f:23:cc:60:c5:8b:34:dd:d4:a9:e5:84:05:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Mar 2 03:01:08 2026 GMT
Not After : Mar 3 03:01:08 2026 GMT
Subject: CN=4470507bf33a71c27c3399da65321a65264bba92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c4:8e:16:bf:89:98:fc:10:e1:9e:d8:8f:8b:
11:4c:89:64:29:50:3a:17:88:2e:a7:8d:f0:e3:b5:
70:c9:bf:cb:e3:78:0b:21:cc:6a:5b:38:5d:86:f1:
4a:49:17:ef:81:03:bc:fa:f5:79:30:f8:6e:7b:65:
b5:6c:b3:2f:22:3c:43:ea:9b:a3:7c:52:8d:52:cd:
2a:f8:12:80:07:a6:13:d1:49:01:9a:18:ba:41:ba:
ac:48:5d:14:66:94:46:47:3e:69:1f:8c:c0:fd:5b:
bf:cc:7c:0d:19:f9:b5:b2:ab:1f:d4:e2:0f:45:7d:
f1:71:ce:2d:a5:a6:c3:0f:8a:b8:a3:ba:39:6d:e2:
6f:30:9f:94:cd:0a:8f:e9:63:a0:e2:a9:d9:d1:20:
7b:9b:08:2d:f6:d6:d6:96:20:a3:f4:06:4d:1f:eb:
df:32:c8:d1:01:81:3a:ec:87:28:b2:7e:3b:7b:f7:
bf:f7:50:c8:31:0f:62:a5:d8:69:e6:d7:f0:2d:b0:
a1:31:73:46:a9:2a:cb:1c:43:57:c8:77:03:92:27:
9a:1c:25:b9:c5:61:54:c4:1d:43:20:05:35:e1:70:
42:22:f1:7f:0c:df:e6:49:81:06:80:de:8c:b2:fd:
12:aa:d7:a8:19:4f:b3:5c:ce:d4:dd:0d:b8:6b:1c:
78:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:70:50:7B:F3:3A:71:C2:7C:33:99:DA:65:32:1A:65:26:4B:BA:92
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:20:08:ae:01:66:69:d8:87:f0:86:36:e1:14:2e:1b:c3:8e:
06:9f:50:d4:2b:3b:03:48:dc:06:4e:d7:7d:86:05:bf:6f:5d:
bb:77:90:41:66:4b:ed:16:b3:2c:df:f3:1a:a1:7d:c8:a4:71:
51:55:5d:68:ff:80:48:2d:c2:90:f8:08:9b:9d:bb:36:d3:cc:
95:83:9b:c6:87:af:7b:91:75:23:63:b7:23:26:df:60:58:28:
9e:51:4b:be:b3:4a:a2:ef:e8:fe:37:4b:1d:b3:34:4a:bb:0c:
9e:bb:60:31:8c:47:ad:7c:ca:99:51:e2:96:32:cd:4c:50:46:
c4:af:1e:37:2f:38:7c:4b:b0:c4:3e:9c:87:3a:b4:eb:e0:45:
d3:ff:42:6e:bd:58:6f:a4:64:29:2f:7d:e6:c6:f4:97:19:a6:
6d:af:8c:df:29:54:35:5d:8b:f1:07:07:fa:f4:cc:ea:42:1c:
27:49:9b:10:82:12:ef:86:6a:8a:9c:13:56:56:1d:bc:a5:8a:
ca:82:24:a2:e9:4d:b3:fe:c6:3c:95:ad:cf:03:22:71:e6:19:
62:93:2f:c5:a8:71:aa:c1:83:0e:96:d6:b5:6a:3f:4b:01:3e:
8a:29:75:16:70:5d:b8:c8:cf:80:ac:8f:15:20:a1:a8:d1:aa:
6d:fb:f2:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:38:59 2026 by rpki-client