Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
File: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft (raw, json)
Hash identifier: NoRfCfyCkCF4Vr2ytjKzQLNVfjJFWQW5yN/9DihsTOo=
Subject key identifier: 71:32:2A:11:37:A0:4E:64:CE:15:6B:D8:78:4E:6D:EE:C2:CA:7A:1B
Authority key identifier: 4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
Certificate issuer: /CN=4d1527d1839bf830360d71590134354e6d904697
Certificate serial: 019CAB6B6115BBFE57C8DE6A84A1652D6E99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
Manifest number: 1848
Signing time: Sun 01 Mar 2026 22:01:07 +0000
Manifest this update: Sun 01 Mar 2026 22:01:07 +0000
Manifest next update: Mon 02 Mar 2026 22:01:07 +0000
Files and hashes: 1: 5IRwRfh8Fym_BtVi99L5BSoQylk.roa (hash: zVO1DYlBvdQtHAVcl2WpceQxT4SVa8kf2zP0TMDOH1A=)
2: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl (hash: kPT42M4ahwfV6VEihoPZSv1bDiuFG8JlheFdxsT6tbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:61:15:bb:fe:57:c8:de:6a:84:a1:65:2d:6e:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d1527d1839bf830360d71590134354e6d904697
Validity
Not Before: Mar 1 22:01:07 2026 GMT
Not After : Mar 2 22:01:07 2026 GMT
Subject: CN=71322a1137a04e64ce156bd8784e6deec2ca7a1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:3d:ef:c4:e8:fb:6a:5c:23:94:df:86:b3:04:
34:f3:e2:88:2b:2d:da:c5:5a:e0:58:3b:ee:72:aa:
fe:60:4e:cf:07:62:ff:00:20:ce:dd:d4:06:dd:63:
92:e9:49:c1:ac:cf:5c:fc:04:9c:84:f0:39:09:e4:
89:13:73:df:43:69:ee:43:15:4a:7a:3f:14:5a:e9:
44:5d:99:4c:9e:04:9d:58:52:c1:33:4a:e4:b4:5f:
57:f2:70:13:6c:24:78:91:09:36:ce:02:4e:6f:00:
a3:b3:14:d6:af:18:51:1a:f1:6e:3d:0d:1c:6f:65:
00:6d:49:76:30:00:e4:b9:69:38:70:7b:f4:09:4f:
52:63:2e:04:50:9c:f6:7e:8b:b1:12:d0:20:2a:96:
6a:5f:01:8e:8c:3a:36:3d:4f:70:99:3d:d7:69:33:
6a:67:cb:e8:76:12:44:d1:3b:f9:25:4d:e8:43:5f:
69:c3:9b:55:98:ce:69:4e:18:09:fc:63:80:cd:91:
11:8f:6d:03:25:d3:8c:2d:33:61:f0:c0:e9:91:79:
65:41:68:bf:e2:c0:19:f9:00:64:d3:d9:e4:c0:a4:
aa:03:19:5a:0c:2c:9d:da:d2:ce:27:d1:01:27:fe:
01:9b:3f:1a:9f:be:70:4f:2b:42:05:54:e4:bb:1c:
f3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:32:2A:11:37:A0:4E:64:CE:15:6B:D8:78:4E:6D:EE:C2:CA:7A:1B
X509v3 Authority Key Identifier:
keyid:4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:0b:c0:63:ab:74:a8:c2:2f:b1:67:f0:4f:1c:30:35:14:c6:
53:99:e5:93:17:6c:db:53:bc:42:5e:b7:b9:aa:4c:c5:9c:11:
c1:30:57:71:72:0f:73:a5:95:5f:dd:05:a3:bd:1d:bc:58:4b:
05:5f:d4:c3:8e:ea:ea:a3:a0:a6:06:8a:17:8d:bc:d0:3e:8e:
f2:12:7d:ef:1d:3d:8d:bd:32:af:54:1c:13:46:ed:b3:56:e9:
98:20:97:21:05:ad:b5:49:b4:9c:81:9a:4e:ac:e3:e8:ab:d6:
14:25:7f:ef:4c:d7:c5:01:14:b8:c7:ce:33:8d:fe:f7:0f:82:
c6:44:0e:f4:f8:70:59:f7:9f:9d:4a:35:ce:73:f9:11:bc:f2:
e9:a6:7e:46:2d:bc:c7:01:ec:5a:24:34:ac:95:fc:b9:71:4b:
d2:a5:92:b8:df:92:67:85:6e:cb:8f:e8:20:6a:8f:cf:bc:8b:
c8:48:a0:e9:76:52:59:46:ab:d7:38:c5:d0:46:3d:2a:db:0a:
cb:5d:15:c9:6a:91:b7:fd:f9:a0:d6:e1:a4:33:29:6f:ba:b2:
cb:89:e6:b4:82:32:c6:c1:d0:57:f7:5e:c5:38:17:e4:50:91:
54:05:80:9c:30:1f:54:04:fb:af:7a:59:43:11:87:4c:57:2f:
27:c7:ae:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:17:23 2026 by rpki-client