Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
File: TRMSiBUQNXRBfKenBBLaOrO4RRE.mft (raw, json)
Hash identifier: sGQh35ZIbOpH2SHAg4bKvZIMPRkhfhUy88k1BUFEYbw=
Subject key identifier: FB:40:4E:E7:4F:8D:E0:AE:18:91:65:D1:4A:96:55:C6:A7:75:A9:AE
Authority key identifier: 4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11
Certificate issuer: /CN=4d13128815103574417ca7a70412da3ab3b84511
Certificate serial: 019CA9EB67A92181D75C7C7D742306CCECE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
Manifest number: 1849
Signing time: Sun 01 Mar 2026 15:01:42 +0000
Manifest this update: Sun 01 Mar 2026 15:01:42 +0000
Manifest next update: Mon 02 Mar 2026 15:01:42 +0000
Files and hashes: 1: TRMSiBUQNXRBfKenBBLaOrO4RRE.crl (hash: Z+pQZswFjSlK7PuJOhB1QUPmz5ZSQkvL8OKtlCFa3qw=)
2: mGlCacge7YnUjqIQY4CvKFnqpx4.roa (hash: AVo0MRQRTy6CdeGacGKP+5uMUkB7HT3z+0JrAGp0xWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:67:a9:21:81:d7:5c:7c:7d:74:23:06:cc:ec:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d13128815103574417ca7a70412da3ab3b84511
Validity
Not Before: Mar 1 15:01:42 2026 GMT
Not After : Mar 2 15:01:42 2026 GMT
Subject: CN=fb404ee74f8de0ae189165d14a9655c6a775a9ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:ea:9b:cf:92:a0:70:b5:da:9f:61:4e:b1:d5:
26:d2:b8:84:69:46:e1:1c:15:f8:42:1a:de:75:8b:
8f:d3:35:51:e3:17:81:b3:68:ce:05:ca:f0:6d:bc:
84:15:f9:4e:68:62:c7:17:20:8a:a5:e6:89:22:2e:
6b:c8:33:a0:2b:13:6b:97:0b:6e:80:44:1c:d3:f7:
88:b0:28:94:91:ef:af:92:0a:9f:b7:c4:95:a0:87:
56:2e:56:7b:38:43:e6:5b:57:9a:0f:0c:5a:d4:9f:
4c:86:9e:a0:ea:24:e5:49:ad:8f:7d:9b:dc:df:44:
f4:a4:96:db:03:c5:8c:94:55:3d:0b:ba:06:ba:e2:
5c:37:22:69:20:97:4f:19:0a:a8:71:d1:13:b9:ec:
f5:4e:0d:ee:fd:60:30:62:59:e5:02:63:7a:16:4d:
cd:3b:64:17:59:73:f9:f1:13:87:d2:b7:fa:96:d8:
7e:f6:62:aa:41:1b:8b:1a:5a:40:38:65:d3:f5:ff:
9b:c8:c2:f0:3c:2a:44:73:2f:1c:8a:8f:b6:6e:1d:
ef:2e:8d:3d:fa:69:7d:c0:f6:98:c4:ca:2f:0c:a9:
ab:a0:d8:ec:29:2b:0b:0b:32:dc:11:5f:86:7a:60:
31:a8:4c:cc:54:3f:eb:b3:7b:5c:25:89:6e:73:5d:
1b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:40:4E:E7:4F:8D:E0:AE:18:91:65:D1:4A:96:55:C6:A7:75:A9:AE
X509v3 Authority Key Identifier:
keyid:4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:49:1b:73:a7:c1:91:02:53:24:5b:aa:b4:1f:fd:56:d6:10:
a7:bb:51:76:48:53:fc:cc:54:1f:b2:7c:1f:56:69:52:91:de:
d7:77:1a:e8:09:11:5f:27:84:de:34:53:68:a3:53:cb:77:99:
6a:76:fe:80:a2:6a:3d:db:0e:49:1f:41:92:5e:cc:1f:94:48:
5e:2e:bb:48:3e:be:93:07:34:fc:fa:02:09:d9:bd:a2:f6:e5:
fe:74:4d:c8:31:90:25:e5:bc:6c:34:72:7b:e3:03:d8:6e:9f:
6c:c1:eb:9d:2a:7b:e7:e1:70:9e:f7:2c:10:ea:d3:6a:57:c4:
ae:35:1b:78:86:9b:9e:86:cd:d1:24:60:fe:e0:a5:ea:43:73:
71:84:b8:c8:a9:ac:90:a5:c4:ea:55:62:0e:db:b9:a6:25:ca:
d2:d9:3d:67:31:44:5c:5c:c8:5f:f7:39:72:40:3f:28:98:8c:
62:a5:57:f8:4a:00:55:d1:eb:8a:65:f9:82:4f:11:fb:3c:54:
6f:f0:9f:c7:1b:d6:fc:0f:6e:90:1c:15:4c:e6:80:fa:68:ef:
3e:18:51:21:48:d4:f1:9e:3d:2c:4f:4c:d3:04:2c:04:62:8e:
00:e3:a4:cf:65:c9:a5:b7:02:67:6c:59:3d:b3:6a:73:00:38:
d8:ba:0f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:48:16 2026 by rpki-client