Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
File: TfkmWGAQlO1kmFxkxpUr40FjAc4.mft (raw, json)
Hash identifier: 1lfmvwuc1P2FMSeXak/O4Z9pw8IEPL+jFzUZfgCf88Y=
Subject key identifier: 9D:54:4E:16:AB:10:5F:4C:18:F2:22:09:AC:DA:19:AE:87:B6:71:17
Authority key identifier: 4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
Certificate issuer: /CN=4df92658601094ed64985c64c6952be3416301ce
Certificate serial: 019CACB588F3D913433B8BF4C68E5983F823
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
Manifest number: 0AB2
Signing time: Mon 02 Mar 2026 04:01:43 +0000
Manifest this update: Mon 02 Mar 2026 04:01:43 +0000
Manifest next update: Tue 03 Mar 2026 04:01:43 +0000
Files and hashes: 1: TfkmWGAQlO1kmFxkxpUr40FjAc4.crl (hash: yQdoaGHQAyay6OmpVhm0zaURl74ZEJOo1Dhg4rxuyaE=)
2: bgZQ4UEqqc2nBoH6BoGbh94tqMI.roa (hash: TI3RmrhW13Nq6yDFyJTeXpPjioYudBC6EapBtlWy/gA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:88:f3:d9:13:43:3b:8b:f4:c6:8e:59:83:f8:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df92658601094ed64985c64c6952be3416301ce
Validity
Not Before: Mar 2 04:01:43 2026 GMT
Not After : Mar 3 04:01:43 2026 GMT
Subject: CN=9d544e16ab105f4c18f22209acda19ae87b67117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:fa:7e:30:8e:3c:8f:95:b1:f4:20:cb:c5:43:
e3:67:ff:48:7b:26:46:60:dd:41:b0:26:b8:9e:a3:
15:72:b2:cf:17:be:ec:91:5e:80:e9:4f:1d:c2:41:
1f:1f:85:cd:32:7f:39:86:49:43:18:2e:2a:ae:6c:
86:c8:49:c4:f4:51:3f:9a:72:66:18:50:df:a6:81:
1a:f9:9c:32:a4:9c:3d:5c:31:73:fe:3f:f9:4a:d2:
ba:e9:8f:f0:45:13:69:e3:25:c4:b2:37:22:87:af:
e2:17:88:10:ed:1e:01:af:72:80:86:b3:bb:f7:ab:
a7:b1:d6:be:b7:6d:01:4c:3b:95:4f:12:26:73:8d:
18:23:86:51:5b:6e:ba:1a:78:2c:79:a8:67:4c:bf:
ae:15:90:a2:5c:65:1e:5b:72:25:c5:5f:b4:13:bd:
58:f6:e5:8c:cf:6a:b2:b6:0b:9b:d4:07:cb:8b:6b:
24:99:7e:73:58:37:9c:46:cc:fa:6c:a6:24:2e:75:
4c:10:41:24:15:0f:7e:88:e0:8a:fd:91:95:42:32:
7a:28:b4:07:d8:4a:f1:28:72:80:94:e9:84:85:35:
ac:55:58:6f:26:16:19:89:7c:ae:08:fc:18:26:14:
19:15:bb:20:35:1e:be:56:de:23:e6:1d:e4:14:0a:
1c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:54:4E:16:AB:10:5F:4C:18:F2:22:09:AC:DA:19:AE:87:B6:71:17
X509v3 Authority Key Identifier:
keyid:4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:54:e2:67:89:3a:cd:49:1d:6a:e3:12:9e:59:69:81:69:89:
49:0c:aa:20:28:3a:d3:62:e3:1b:81:a9:08:61:18:f8:4e:09:
dc:a6:6a:54:f3:66:d7:82:db:08:1c:14:65:d7:f8:33:f0:1b:
fc:e5:40:7b:78:ed:fb:da:8d:fc:bb:d7:6b:21:a2:b4:8a:97:
5e:14:78:4f:c4:c6:20:72:9e:b8:9a:43:0b:7f:0c:45:69:45:
73:a4:8d:dd:0d:59:af:10:a8:a2:d2:c5:3d:60:7b:17:3e:ac:
c6:d1:41:1b:50:ec:8e:3a:33:b9:6f:5c:69:da:32:c6:45:88:
6f:36:08:1b:f1:16:df:56:59:d9:c3:a1:dc:c1:2d:6b:01:de:
04:57:12:a4:54:37:96:e4:5b:8b:d6:f8:99:39:5d:6f:6e:44:
4e:7d:bb:4e:db:05:d4:30:18:38:4b:46:cf:48:3a:4a:ea:30:
d7:b7:74:6c:04:a5:66:19:b4:2f:d2:7d:83:9a:7b:0b:cb:02:
2b:e3:9e:d9:fb:82:a5:fd:25:86:bd:e1:8e:4f:ef:0f:b1:70:
e1:22:fc:d9:b3:4e:e3:18:51:49:8f:82:2e:c6:ba:bb:b2:f3:
1d:b8:c7:47:79:6a:c7:9f:da:61:48:a0:b8:c6:75:75:04:0b:
e1:4d:1b:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:08:14 2026 by rpki-client