Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
File: tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft (raw, json)
Hash identifier: PMTUq138CIlZV0RKM376k2BuS+7BmP7Ti9nQqsPqyHs=
Subject key identifier: 07:9D:C2:E8:63:69:ED:9B:16:F8:88:86:68:DA:53:60:54:4D:DC:B3
Authority key identifier: B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
Certificate issuer: /CN=b4430ba11506741d676ea202e291ec7ec6191b17
Certificate serial: 019CA9EB5747F46514A867A9EC5493137A95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
Manifest number: 184A
Signing time: Sun 01 Mar 2026 15:01:38 +0000
Manifest this update: Sun 01 Mar 2026 15:01:38 +0000
Manifest next update: Mon 02 Mar 2026 15:01:38 +0000
Files and hashes: 1: NDhq8_kQqGPgm41GchZ3TtgeGeg.roa (hash: +9TejtgpguDTAT190VXenQHqi2LFLLtouTU0DZkmU8U=)
2: tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl (hash: HY+ktMVq7nsQqiLiwUHadORRZ/H9Mx8Kv84GQ7HNyd8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:57:47:f4:65:14:a8:67:a9:ec:54:93:13:7a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4430ba11506741d676ea202e291ec7ec6191b17
Validity
Not Before: Mar 1 15:01:38 2026 GMT
Not After : Mar 2 15:01:38 2026 GMT
Subject: CN=079dc2e86369ed9b16f8888668da5360544ddcb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e6:00:71:b8:69:24:e3:15:2e:dc:bb:92:9a:
54:01:69:47:9f:1d:f2:85:27:89:f3:7c:d7:86:a9:
2f:22:ad:d1:50:14:18:2a:28:90:fe:67:66:48:54:
6e:20:a1:eb:14:88:8f:64:b4:56:af:a6:61:2b:fa:
b5:a7:49:67:52:ee:bd:3a:1b:3d:69:28:83:68:e0:
49:db:53:48:97:07:c0:14:a2:32:6a:87:bf:af:02:
0f:7b:7c:78:40:5c:62:56:b6:3d:9a:a1:b9:15:88:
02:9e:7e:1d:0c:9d:75:b8:5b:6d:d6:d7:73:3e:89:
a6:5d:74:13:9d:28:69:4b:e9:26:57:cf:c1:d6:68:
cd:d8:19:4f:53:b7:90:55:fb:40:8c:53:0e:c3:bb:
d6:6a:81:a5:3e:db:6d:72:f2:20:22:db:1d:3b:1e:
1d:44:4a:ea:4e:c8:62:56:a5:60:d0:25:85:f9:40:
a8:95:0d:f5:d6:1c:25:c0:51:da:e6:ed:d9:12:fd:
d7:40:74:f0:0d:95:75:d1:be:de:3b:b4:51:95:8c:
1a:ce:49:40:6b:c8:aa:de:c3:cf:e7:0e:d7:e8:11:
41:91:fc:d2:07:c6:34:0c:c4:dc:c5:dc:4d:c0:90:
76:b2:f6:c7:5a:5d:02:e9:f3:c1:2d:b4:6d:9b:df:
c2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9D:C2:E8:63:69:ED:9B:16:F8:88:86:68:DA:53:60:54:4D:DC:B3
X509v3 Authority Key Identifier:
keyid:B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:68:b3:c0:4f:2c:ee:05:f4:a4:29:13:f3:7d:e6:35:63:cf:
07:20:76:13:4d:f5:26:c3:d2:f4:f7:b7:27:e5:8f:fd:01:a5:
cd:84:0f:08:55:71:1c:0b:d2:df:c8:be:ef:84:4c:e4:c1:b0:
48:aa:31:16:08:8e:a7:25:3e:79:ef:0f:84:74:92:8a:19:36:
e2:0b:bb:ea:db:e6:e3:36:87:8f:35:d5:dc:14:0d:c2:90:6c:
3a:d8:8a:09:41:7b:46:24:7e:d3:56:d3:9c:10:b4:27:ac:21:
36:01:e7:e5:22:38:f2:02:f7:54:02:b2:1b:97:ac:35:88:be:
e1:42:4f:fc:42:f6:a8:20:20:0a:7a:5a:33:73:7d:c7:e6:c6:
43:11:25:f1:08:69:c3:ce:8c:37:20:58:5f:58:ce:f9:ae:3e:
c4:74:19:ff:20:8d:60:ca:23:6a:17:87:16:d0:ab:04:a6:66:
8c:81:79:d8:9c:6e:ae:9e:6e:e7:67:f1:2f:bf:a6:3e:a9:94:
81:88:46:75:d9:99:e6:b8:ff:7f:9b:34:23:e8:b4:22:cd:c5:
9c:01:7a:15:ad:bc:e2:c9:83:c2:74:d8:d6:97:31:e8:9b:31:
32:bb:2c:ff:7b:9a:f4:e1:45:ae:a1:bc:5e:ec:3f:d9:40:67:
5e:47:f8:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:30 2026 by rpki-client