Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
File: TLbePNkQ87_3_4Xe1FLEMbHopSA.mft (raw, json)
Hash identifier: r13Cu+71gsPop1rY6wzi/AnoDvuZjwwSOdX14R10vC0=
Subject key identifier: 9D:EF:20:92:0B:D7:53:14:12:90:4D:CB:07:84:A5:73:31:B4:62:90
Authority key identifier: 4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20
Certificate issuer: /CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520
Certificate serial: 019CAB6B87D5899BEEF0BB130C96614477C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
Manifest number: 1848
Signing time: Sun 01 Mar 2026 22:01:16 +0000
Manifest this update: Sun 01 Mar 2026 22:01:16 +0000
Manifest next update: Mon 02 Mar 2026 22:01:16 +0000
Files and hashes: 1: 3s9WMYEcQ2eeR7WmEF0cPyYnnoc.roa (hash: I5I/yKJ6+N12F+Oii5+qZSRYetGEm6Nazf/isv9EOH0=)
2: TLbePNkQ87_3_4Xe1FLEMbHopSA.crl (hash: ENKdEprzWuzKPeYufG3VjyEfrBoJ+atddtT46/HmVeo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:87:d5:89:9b:ee:f0:bb:13:0c:96:61:44:77:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520
Validity
Not Before: Mar 1 22:01:16 2026 GMT
Not After : Mar 2 22:01:16 2026 GMT
Subject: CN=9def20920bd7531412904dcb0784a57331b46290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5e:5d:12:c3:85:be:31:eb:dc:1c:f9:fe:09:
78:13:86:30:bc:37:ef:b7:8e:48:dc:e0:11:6a:6d:
58:b7:21:92:dc:8f:b9:4e:6a:c6:c8:2b:b7:c7:db:
28:4c:f2:70:31:9d:c9:32:b4:bb:f9:23:a9:a6:dc:
51:8c:b0:d7:01:a2:24:ee:94:c5:61:a6:90:24:a2:
d1:52:ec:e0:34:1a:d9:44:f9:53:99:c0:09:e6:dc:
87:52:b7:98:2a:b7:71:d7:ec:2b:66:2a:a4:0c:c1:
c0:20:67:ae:cf:16:ed:e3:10:10:94:ce:ac:a2:34:
0a:e8:20:d8:35:40:c2:68:0a:8b:2f:73:d7:22:ba:
29:90:d2:58:d4:50:36:dc:89:50:a5:df:ab:d3:01:
c8:e3:a3:f1:e9:9c:61:02:c3:59:d1:18:09:3d:7a:
bd:e4:eb:22:19:4d:aa:8e:8d:df:c9:a6:2c:f7:1e:
52:4a:8e:75:45:22:e7:78:9a:a7:52:ef:e5:7f:31:
88:07:6b:07:b5:4e:2e:3e:90:33:98:52:7f:b9:bf:
62:88:f4:d7:19:aa:5f:2b:ce:8e:a9:3e:28:b2:7b:
ac:a8:e5:a2:0e:91:47:ee:a8:d2:96:2c:2b:a7:45:
86:01:2b:27:ad:c5:90:35:7d:8f:ab:d6:ab:7a:53:
4e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:EF:20:92:0B:D7:53:14:12:90:4D:CB:07:84:A5:73:31:B4:62:90
X509v3 Authority Key Identifier:
keyid:4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:31:0b:a0:6c:88:11:1b:93:e6:04:77:9a:12:fd:1c:22:27:
c5:b7:9a:78:8e:90:fb:f8:60:4e:b1:8c:3a:d0:1e:78:29:8f:
aa:e3:0c:08:5d:43:8a:dd:9c:12:7a:52:b9:dc:53:bc:ed:bf:
35:ad:18:f4:92:4e:34:97:c1:53:ab:f4:e3:62:70:00:e7:dc:
50:b2:c5:55:f5:49:6f:27:69:59:ca:9f:38:6f:51:4f:36:21:
aa:91:fe:90:8a:ca:d7:ac:11:3c:2f:54:52:b8:65:81:12:fb:
5b:bc:e6:cf:a9:59:4b:bc:0a:38:0e:4b:23:e0:b4:5e:53:7e:
ef:84:8b:60:a3:a4:c5:b2:47:b9:35:86:55:fe:94:59:40:e1:
18:25:6d:36:33:d0:56:b4:f9:e3:09:ce:a9:27:02:c6:d8:8e:
12:9f:95:18:b6:3d:26:62:85:8e:8d:19:a6:d9:7b:23:7c:6c:
e1:b5:1a:c4:db:34:60:82:c4:2b:37:f5:7d:ec:79:9f:5a:41:
5a:41:ef:96:55:b5:14:c3:db:a5:ce:54:48:58:37:42:7c:3d:
e6:da:e2:0b:96:e6:f2:14:c9:67:cf:3f:99:9f:59:6e:2a:2f:
5a:eb:ee:f7:cf:24:31:11:e0:be:62:f1:c0:9b:0a:18:32:e6:
61:4a:bb:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:24:51 2026 by rpki-client