Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
File: TRMSiBUQNXRBfKenBBLaOrO4RRE.mft (raw, json)
Hash identifier: 3mMFBqo5uYxqS1bIQGXLuOJwtypmiZmHXxFL/eQwA20=
Subject key identifier: DC:25:C1:C0:00:4B:C2:C9:2F:D9:93:45:85:99:EB:4B:5F:45:A7:BB
Authority key identifier: 4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11
Certificate issuer: /CN=4d13128815103574417ca7a70412da3ab3b84511
Certificate serial: 019EC2C9DA5851689B0CA72D3B7E583CAF38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
Manifest number: 195F
Signing time: Sat 13 Jun 2026 21:01:08 +0000
Manifest this update: Sat 13 Jun 2026 21:01:08 +0000
Manifest next update: Sun 14 Jun 2026 21:01:08 +0000
Files and hashes: 1: TRMSiBUQNXRBfKenBBLaOrO4RRE.crl (hash: 6bduRe9YYbK+oBM/istdyH32aZeT4KzXotTedFOtHOo=)
2: mGlCacge7YnUjqIQY4CvKFnqpx4.roa (hash: AVo0MRQRTy6CdeGacGKP+5uMUkB7HT3z+0JrAGp0xWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:da:58:51:68:9b:0c:a7:2d:3b:7e:58:3c:af:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d13128815103574417ca7a70412da3ab3b84511
Validity
Not Before: Jun 13 21:01:08 2026 GMT
Not After : Jun 14 21:01:08 2026 GMT
Subject: CN=dc25c1c0004bc2c92fd993458599eb4b5f45a7bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:4f:d6:3c:96:6a:c9:8f:a7:46:6c:72:0d:42:
9d:65:51:cf:c8:63:a2:24:27:12:ee:de:a9:bd:b0:
2f:16:5b:ab:82:35:a3:54:66:c8:62:7f:95:f5:74:
69:ad:29:36:a2:fa:5b:1f:16:b1:73:cf:d7:21:6e:
3c:70:d3:4c:bd:53:87:a7:88:3b:ee:62:2e:24:10:
a1:3f:1b:1e:0b:59:fa:56:6e:a4:ec:0a:f2:bd:10:
fa:3f:34:a3:98:50:ce:17:cd:fd:91:75:ef:ec:ca:
45:f5:0f:90:07:14:62:d9:cc:6b:d8:59:0e:b8:6c:
76:c9:e9:dc:ef:1a:7e:7e:14:57:2e:9a:e5:ea:d8:
67:7c:9b:03:4b:a1:78:79:31:49:08:5d:be:e2:8e:
db:5e:fd:c4:13:33:3f:12:3c:e4:4d:37:f8:b7:32:
d9:55:7e:10:8c:64:89:d1:e8:1d:00:97:1c:8a:c6:
d1:49:26:36:d9:ce:0c:6c:f7:c0:1e:63:a9:7f:53:
3e:04:8e:dd:ea:c7:15:6f:a5:5e:5c:1c:b1:36:be:
83:a8:ab:a2:5d:10:56:5a:20:0f:8c:ab:f4:72:b4:
f4:2c:df:e9:1d:e0:22:49:17:b5:a0:23:29:96:ed:
cb:f8:6e:a7:67:29:ca:00:d8:37:97:66:a9:bd:84:
6a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:25:C1:C0:00:4B:C2:C9:2F:D9:93:45:85:99:EB:4B:5F:45:A7:BB
X509v3 Authority Key Identifier:
keyid:4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:e9:c1:76:79:93:3d:86:40:c7:63:87:9e:df:cc:93:83:61:
86:1e:63:b1:a0:91:52:b6:33:4f:44:e4:1a:1a:6f:26:87:5c:
7a:96:c1:ea:7c:3c:fd:34:33:6a:b4:01:3b:16:d9:a8:65:27:
12:72:26:bd:ac:fc:2d:bc:22:2e:85:2a:c7:7b:7f:f7:e6:e6:
73:7e:0f:e4:2b:24:48:53:2d:fd:23:b4:df:8d:3f:e3:ec:2c:
3e:62:08:2f:99:74:45:b3:f7:67:47:55:1e:52:88:28:9f:e5:
68:3a:0b:2b:8e:e7:b8:37:85:5a:84:85:e8:5a:0a:3e:ee:37:
33:32:04:64:47:61:8a:b4:4e:66:5d:e0:0f:f0:a8:09:8b:81:
23:ba:03:26:d8:9e:07:54:e4:67:31:58:a0:6c:15:ae:1e:d1:
0e:9b:e7:43:83:fa:51:d1:cd:60:b5:17:0a:b0:f1:90:61:d8:
20:a9:6f:11:28:8a:a5:cd:9b:3a:62:22:3e:08:55:f3:c8:73:
cf:3f:95:52:fa:07:e5:d2:95:07:5a:26:8c:2a:c8:74:12:57:
84:db:ee:1c:3b:1a:30:a5:f9:2e:bb:89:a5:dc:42:bf:c9:31:
25:3e:7e:91:86:fd:77:b1:98:53:de:31:19:7e:a2:de:93:32:
54:3c:14:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:08:30 2026 by rpki-client