Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
File: tIENfJv8WLngoeWRacPdMi3p9zc.mft (raw, json)
Hash identifier: c8RHW9fUqjUl8Ko718WfTg4Dsumt3GM5UyNfuApvIIM=
Subject key identifier: FB:04:5D:FC:05:CB:37:AC:B2:7B:AC:8F:89:5A:CF:76:6D:DD:FC:C9
Authority key identifier: B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
Certificate issuer: /CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Certificate serial: 019CA97C96E335F9ACFA2EE6D824C08DF601
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 13:00:40 +0000
Manifest this update: Sun 01 Mar 2026 13:00:40 +0000
Manifest next update: Mon 02 Mar 2026 13:00:40 +0000
Files and hashes: 1: sBKm5lh9pFW6Bx5UfqBwJxTOW-c.roa (hash: fm7BpsPCc0ljnRZ7PGXN1/E5kbFIYol2cEhLrnlX2S0=)
2: tIENfJv8WLngoeWRacPdMi3p9zc.crl (hash: SSKhwq/LRlrgFYktbbXbH/A7Mb27CKTitMYo43lk6DU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7c:96:e3:35:f9:ac:fa:2e:e6:d8:24:c0:8d:f6:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4810d7c9bfc58b9e0a1e59169c3dd322de9f737
Validity
Not Before: Mar 1 13:00:40 2026 GMT
Not After : Mar 2 13:00:40 2026 GMT
Subject: CN=fb045dfc05cb37acb27bac8f895acf766dddfcc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:73:4d:17:4f:d3:8d:44:db:d4:1f:6e:28:5f:
d2:e9:c6:7d:0e:a1:bf:1c:53:fa:dd:1d:97:39:df:
3a:e0:54:67:ca:e6:19:63:4a:6f:53:09:ca:a5:74:
56:e2:0b:a8:78:fb:da:80:03:59:ed:92:cb:e4:b6:
21:d0:9c:33:79:6a:7d:f4:09:d5:f1:b0:cf:e1:4d:
c4:3c:a7:78:67:8f:ff:38:5d:8c:11:29:a0:e5:08:
85:a7:2c:28:35:ec:82:5d:c2:f6:86:33:c4:f2:1a:
bc:f7:4d:73:03:a5:40:51:61:5c:5d:b6:49:7d:78:
15:ad:39:74:b9:6f:dd:8d:8b:9c:5c:9e:ba:85:9d:
a6:29:dc:45:51:fe:7a:7e:15:f3:90:ce:42:ff:db:
f4:7a:5f:bb:5a:4a:c1:b6:30:69:48:17:fb:b8:d2:
da:3f:b5:95:da:8f:19:6f:b9:f0:e1:35:ba:7c:7b:
df:0c:de:73:f6:7e:78:1f:8f:ad:c9:06:61:e6:cd:
e9:ce:75:f1:e4:c0:4f:b5:4e:d2:e6:94:59:03:54:
f6:0f:6b:f8:e7:f9:86:f0:62:e7:e4:93:1b:db:fa:
57:05:05:fa:47:3b:c8:28:f2:8e:c8:66:d0:55:33:
97:17:c1:80:6f:8d:aa:c4:a1:8b:52:2d:79:63:fb:
7d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:04:5D:FC:05:CB:37:AC:B2:7B:AC:8F:89:5A:CF:76:6D:DD:FC:C9
X509v3 Authority Key Identifier:
keyid:B4:81:0D:7C:9B:FC:58:B9:E0:A1:E5:91:69:C3:DD:32:2D:E9:F7:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIENfJv8WLngoeWRacPdMi3p9zc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/3d4c46-7545-4b3d-8f1c-2a63402bec66/1/tIENfJv8WLngoeWRacPdMi3p9zc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:96:d7:0d:37:5c:f1:2e:a8:9a:a5:5f:b1:d6:74:b1:fc:a5:
fc:51:1b:b7:85:8a:cd:19:1a:81:ce:56:bc:6b:10:05:3f:06:
63:86:90:25:08:22:69:b0:c8:ef:8c:77:55:df:c0:ef:7c:ef:
89:d7:51:35:ad:6e:53:a4:62:5f:de:74:ea:29:8b:b4:9b:9d:
46:25:c6:d9:70:0d:72:bc:d4:ce:5f:71:88:4b:b3:d7:85:4f:
79:86:f1:e3:c1:84:da:1a:99:3a:fc:7a:f6:9c:35:12:2c:90:
c9:18:92:27:a4:1e:16:ac:b6:5d:89:90:4f:95:a8:15:c9:c3:
db:91:c8:0e:5a:68:8a:0d:56:2d:b4:47:d5:15:a0:9d:b2:f4:
c0:7d:9c:32:76:6c:f3:70:4a:6e:65:49:2d:62:cf:8a:db:47:
9d:14:61:16:3a:86:51:84:d8:c0:b7:9e:7b:eb:f5:a6:41:a9:
f0:47:67:b0:1d:af:43:95:b9:d4:d7:6d:81:3d:ec:5d:85:34:
7d:7d:73:87:0f:29:1d:20:8f:ca:dc:51:f3:eb:4c:ed:b6:6e:
70:21:a8:4a:2a:06:d4:89:97:4c:6d:07:3b:7f:66:82:74:40:
af:03:e9:4e:bb:6d:69:de:bc:4a:7c:18:1f:92:11:a4:07:c1:
79:46:ae:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:52 2026 by rpki-client