Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
File: TzLUClO7YLhnWebsClIHMAtBr3A.mft (raw, json)
Hash identifier: 8pJsYSL94iY2d4A7Mmn5irKrFUKK1jv9Xk0fmKSgFls=
Subject key identifier: 4E:6E:D5:D5:2D:48:BE:BE:8C:FD:37:27:54:DC:AF:6E:32:4B:AD:49
Authority key identifier: 4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
Certificate issuer: /CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Certificate serial: 019CAB343EB8C79589DC1DC996E570E559D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 21:00:53 +0000
Manifest this update: Sun 01 Mar 2026 21:00:53 +0000
Manifest next update: Mon 02 Mar 2026 21:00:53 +0000
Files and hashes: 1: TzLUClO7YLhnWebsClIHMAtBr3A.crl (hash: IGnKO4BOfhoU/UxrDEoHWc3kTNzhA3fZoFUCZj0nato=)
2: bsiJMh925Q6yXtQJa1CQ5jNihts.roa (hash: X9V/B7+nYNlAPiuflw59MNnI7H3EmEftfAgXQa1P4vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:3e:b8:c7:95:89:dc:1d:c9:96:e5:70:e5:59:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Validity
Not Before: Mar 1 21:00:53 2026 GMT
Not After : Mar 2 21:00:53 2026 GMT
Subject: CN=4e6ed5d52d48bebe8cfd372754dcaf6e324bad49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ef:34:27:b6:0a:de:53:b4:67:a1:1a:5b:41:
22:8b:0b:4b:88:90:1a:d2:98:09:da:90:3b:db:ec:
f0:4f:77:f0:de:f8:a7:e1:c6:99:70:39:f8:af:48:
c6:c0:b5:55:f7:fb:73:9a:24:fa:3d:d5:98:59:a1:
a3:5e:6d:25:67:ce:b2:5e:e0:47:56:f1:6c:42:a3:
14:f0:3d:18:7a:de:04:23:33:f5:e1:58:07:7e:5a:
c7:03:a7:86:4e:b6:ed:ee:30:59:8a:8b:9f:8f:4f:
d4:b5:e7:bc:c5:f5:92:a9:ff:8e:a6:9b:2c:21:7a:
e1:d3:28:1c:55:94:65:e6:f4:b1:92:12:b9:79:9c:
81:5f:d0:38:12:b5:4c:cc:ab:52:40:0c:6a:30:1b:
11:65:da:c3:f5:e2:5c:2d:d1:16:57:d0:8f:4e:e1:
75:78:a8:75:bc:30:c1:ba:2d:b1:bf:b6:94:a8:71:
8c:be:88:f4:8d:d4:5c:03:fd:c4:45:68:d7:db:0f:
eb:1a:1e:b2:ae:ac:7b:c1:05:57:09:97:ed:c5:4f:
4b:19:c1:e5:8f:b9:81:0d:ca:11:b6:26:62:1e:96:
9c:d6:8b:f9:1a:6f:5c:43:55:30:e8:39:f0:c8:8c:
e5:6a:ee:8d:2b:32:cd:35:68:26:3f:de:d1:47:55:
9a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:6E:D5:D5:2D:48:BE:BE:8C:FD:37:27:54:DC:AF:6E:32:4B:AD:49
X509v3 Authority Key Identifier:
keyid:4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:f8:07:0e:a5:6a:e9:d2:f6:e7:1f:2b:f0:85:28:52:2a:23:
3b:40:84:d0:1d:e6:27:d6:d6:55:91:bd:51:7a:eb:55:e2:9c:
55:1e:dd:d8:38:2a:d5:93:cc:c1:9d:9f:a8:13:07:26:5b:10:
d5:cf:57:b6:9a:59:3e:58:5a:58:1a:f8:d0:18:5f:de:d1:c6:
26:24:87:d5:c6:43:4c:10:e2:d6:b7:d9:21:10:a6:a1:f6:f2:
cd:01:f3:df:01:ef:46:a3:6b:ae:8e:8d:2e:f7:19:6b:7f:01:
16:ad:05:40:bb:3e:5b:aa:b1:5c:15:87:4a:90:03:db:79:49:
50:b5:68:7b:d7:ec:a3:f9:43:4e:2b:dc:52:97:a9:d0:9e:51:
a4:de:56:e3:98:7f:b8:19:81:e9:a2:53:00:61:91:02:c6:bf:
25:dc:6d:00:5c:4c:d7:4a:ae:c5:03:0b:c9:b3:9c:24:01:d6:
de:1a:f5:56:2d:4b:06:c0:16:b8:5f:6b:6a:3f:95:47:26:4f:
f7:7f:52:da:eb:03:33:b5:2d:a1:2d:40:c7:63:11:ce:b7:35:
78:0d:87:9f:0d:19:cc:4c:10:0c:3f:59:3d:7e:9a:ff:ef:0a:
33:a8:3b:dc:91:58:39:51:6b:d4:12:77:41:4a:82:68:c5:f8:
50:aa:5e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:49:45 2026 by rpki-client