Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.mft
File: TqWy83Ukw9ONyApx2PAB7SxF6Jw.mft (raw, json)
Hash identifier: Wc6NnN0qxxkqq7OsfBsR812C8D2p5+rU30X2TOQ5aWI=
Subject key identifier: 42:B8:AC:9A:BE:4B:72:25:5C:0D:39:6E:5B:6D:CF:A3:B7:6D:EE:4A
Authority key identifier: 4E:A5:B2:F3:75:24:C3:D3:8D:C8:0A:71:D8:F0:01:ED:2C:45:E8:9C
Certificate issuer: /CN=4ea5b2f37524c3d38dc80a71d8f001ed2c45e89c
Certificate serial: 019CADC75F243176216C8BAE1A4CC4D8CFA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TqWy83Ukw9ONyApx2PAB7SxF6Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.mft
Manifest number: 160D
Signing time: Mon 02 Mar 2026 09:00:50 +0000
Manifest this update: Mon 02 Mar 2026 09:00:50 +0000
Manifest next update: Tue 03 Mar 2026 09:00:50 +0000
Files and hashes: 1: EsxGV6HNAZhI_jTvKSDp3GvEjeo.roa (hash: 4ivM9pnea86yeynpy0V6DIdtMIbuYViF3rSNVv2i8Js=)
2: TqWy83Ukw9ONyApx2PAB7SxF6Jw.crl (hash: dpaUTVWjCFHkXVvbnWnBBA5RtGVcuJqj021Vt3LpoGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TqWy83Ukw9ONyApx2PAB7SxF6Jw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:5f:24:31:76:21:6c:8b:ae:1a:4c:c4:d8:cf:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ea5b2f37524c3d38dc80a71d8f001ed2c45e89c
Validity
Not Before: Mar 2 09:00:50 2026 GMT
Not After : Mar 3 09:00:50 2026 GMT
Subject: CN=42b8ac9abe4b72255c0d396e5b6dcfa3b76dee4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7b:e4:ed:d5:8b:cc:f6:24:f3:4f:56:5b:7d:
d6:1f:80:06:25:af:c6:d4:71:ba:42:7b:ec:ae:c1:
5d:cc:36:ae:1f:8b:78:b7:22:19:60:ec:fc:9d:aa:
d8:42:d2:61:cb:ff:3f:3b:cb:86:01:5e:66:cf:ca:
9d:30:c7:df:a2:f9:0a:fc:88:e0:c4:b2:70:83:01:
61:13:8a:a6:86:fd:9e:95:59:f8:32:f0:2f:7e:da:
e4:c4:35:4a:4a:bb:15:d2:d1:5d:ca:25:97:5b:dd:
fe:21:49:eb:58:13:ad:80:5b:b9:a5:b5:03:8e:d5:
3e:cd:82:0a:25:9e:03:4d:e0:70:c0:fc:f1:47:b5:
64:d0:62:bb:cb:8d:2c:e2:0f:75:ba:32:a6:66:8b:
da:fe:96:79:f8:2f:fa:e7:11:5c:08:56:0a:b4:1f:
6b:c4:7b:3e:3e:f1:8a:b4:8c:57:ff:e8:36:6b:41:
3a:1d:97:0f:90:c9:6e:1a:69:83:2f:a5:fa:b7:1f:
11:04:10:62:44:af:c8:37:e9:ea:7a:27:78:e2:46:
fc:5b:c1:ec:4a:48:50:d5:e6:ab:14:8a:c0:1e:a6:
f1:d6:12:f6:4b:4b:90:15:e7:64:f8:7b:76:26:5b:
4f:f0:2e:b1:82:65:0f:74:ce:03:97:1d:ce:8b:ce:
2a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:B8:AC:9A:BE:4B:72:25:5C:0D:39:6E:5B:6D:CF:A3:B7:6D:EE:4A
X509v3 Authority Key Identifier:
keyid:4E:A5:B2:F3:75:24:C3:D3:8D:C8:0A:71:D8:F0:01:ED:2C:45:E8:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TqWy83Ukw9ONyApx2PAB7SxF6Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/9041b7-f543-4c63-8e2b-366a9761ea20/1/TqWy83Ukw9ONyApx2PAB7SxF6Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:56:bc:b5:09:c8:8f:6e:6d:fa:83:9b:c5:38:f3:d8:a9:71:
c1:e8:ad:74:29:14:f1:1a:c1:bb:1e:76:9e:27:a4:d2:0f:a6:
ac:90:8e:3b:5b:b3:fb:c7:3c:4f:14:fb:65:24:ab:5f:ee:0d:
56:a5:e0:88:fd:66:4f:d8:75:ca:a7:22:be:2e:94:1e:22:12:
b2:c8:61:f1:3d:68:db:00:80:ce:42:f3:d6:ef:fa:68:be:ef:
fd:06:7c:ad:c5:f3:3d:15:1e:29:f5:7c:0c:39:a2:f4:fc:07:
09:83:ad:37:51:d6:ad:20:a1:13:7f:de:cf:df:6b:0c:9e:21:
7e:bc:43:50:5b:3e:4f:01:9b:87:c7:15:ce:4a:df:b8:20:2e:
73:85:d9:22:dd:2c:3d:db:e4:3d:22:12:8b:f7:53:00:2c:b5:
db:3a:98:06:f6:4c:76:29:97:ee:91:cf:11:61:a9:6c:0f:92:
c6:70:ff:a3:56:eb:c7:0e:cf:eb:b2:9d:db:97:4e:e1:a9:e1:
9f:82:45:0e:d8:52:c9:2d:15:ba:e2:c8:52:bf:d8:e9:69:f7:
13:e1:b0:d2:22:70:68:5b:60:31:be:0f:95:55:7d:64:cb:74:
56:c9:fc:47:9a:b8:b1:68:d4:da:16:91:28:4d:06:7a:be:bb:
ac:c6:e2:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:42:18 2026 by rpki-client