Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
File: tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft (raw, json)
Hash identifier: 06hrBcA/EN83SnLwJ+Zxll6NKQyp5YNFoVeJhZYYPo4=
Subject key identifier: 28:33:4E:5A:9F:F9:B4:FE:A3:61:91:0F:50:64:06:3A:D2:F1:67:0F
Authority key identifier: B4:D8:B2:7A:AA:55:E5:1A:34:5F:6A:45:19:E3:67:95:50:46:C3:0A
Certificate issuer: /CN=b4d8b27aaa55e51a345f6a4519e367955046c30a
Certificate serial: 019CA97D41D31B8398F12E162458CEC280A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
Manifest number: 13EE
Signing time: Sun 01 Mar 2026 13:01:24 +0000
Manifest this update: Sun 01 Mar 2026 13:01:24 +0000
Manifest next update: Mon 02 Mar 2026 13:01:24 +0000
Files and hashes: 1: tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl (hash: g+rurTFVV4iD5DIwSZT5EAKwQUCYUkMBN6bO0YBcx0I=)
2: xqMEiaPGgAlIQo3TzS_5VB2M2OQ.roa (hash: Y2eUYtTDjf9bWENJZhOD8HXOBzywjtXZMecCETD0P0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7d:41:d3:1b:83:98:f1:2e:16:24:58:ce:c2:80:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4d8b27aaa55e51a345f6a4519e367955046c30a
Validity
Not Before: Mar 1 13:01:24 2026 GMT
Not After : Mar 2 13:01:24 2026 GMT
Subject: CN=28334e5a9ff9b4fea361910f5064063ad2f1670f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:13:9d:52:c1:92:eb:16:ce:64:c4:6e:23:ea:
21:23:55:be:70:1d:2b:64:e0:77:3e:a8:7b:9c:22:
95:43:89:c9:f7:1e:85:d5:25:c2:ba:64:7b:1c:07:
64:8d:8b:e8:63:35:d9:ff:46:f2:4e:9e:31:37:d7:
d2:10:64:e7:b2:54:10:42:e2:df:a7:e9:58:5d:37:
45:11:0c:1e:67:1d:23:09:a9:d3:89:6b:fe:5d:c6:
77:bc:af:94:13:5a:fa:22:c4:90:1f:eb:91:ca:5c:
3d:dd:91:31:3f:9c:ca:2a:74:6b:2c:1a:8e:5a:60:
19:fe:31:6c:1d:11:b2:a0:a2:5a:42:fa:18:0e:dd:
e1:e9:7b:9d:6a:a5:f6:71:f1:a9:e2:67:0a:fd:61:
48:04:91:22:59:6f:eb:dd:00:6b:9e:96:1f:ea:09:
98:14:a6:b5:5d:e5:cc:38:3d:81:08:2b:16:06:30:
b0:92:97:42:b3:50:33:5c:92:3c:ff:9f:56:cd:07:
17:08:22:b0:89:98:f7:a4:12:6b:4d:9c:41:f6:8f:
22:d5:9f:3d:1f:86:a7:c8:cc:79:7c:66:90:5a:ab:
55:52:75:71:e3:c1:65:3e:f7:14:24:ab:e3:ac:73:
2c:ea:cd:67:36:62:85:8e:fe:28:9a:c8:de:0c:7c:
7e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:33:4E:5A:9F:F9:B4:FE:A3:61:91:0F:50:64:06:3A:D2:F1:67:0F
X509v3 Authority Key Identifier:
keyid:B4:D8:B2:7A:AA:55:E5:1A:34:5F:6A:45:19:E3:67:95:50:46:C3:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:9e:9e:0a:c5:3f:42:6f:8f:23:a5:7b:e8:19:6d:a7:11:c7:
84:45:9c:cf:36:51:f1:4f:10:7a:04:c8:ce:a2:b1:73:76:3f:
7e:64:20:85:dc:02:66:97:c1:db:91:ce:ca:1e:7b:51:75:25:
f3:64:68:d7:24:ae:65:7c:46:21:c7:aa:41:fa:bb:87:48:99:
01:5e:5d:60:b8:2b:6c:be:e3:51:dc:c7:ee:09:5b:31:b6:4b:
04:17:a1:d8:78:e7:29:76:9c:0b:58:fe:ed:8f:53:11:a0:83:
51:97:d9:92:35:4c:02:98:e4:fb:9e:ec:bc:24:c0:81:3a:fe:
79:ff:3d:b7:3f:1a:88:c2:be:18:59:4c:5a:bb:63:47:c8:0b:
aa:a1:31:ee:71:64:73:c2:6d:59:16:b5:34:0a:95:0b:f0:db:
5e:56:15:af:9d:98:1e:3b:24:53:5c:fb:25:0e:7f:d6:d1:e0:
59:8c:6a:29:6c:32:5d:07:d2:79:b8:51:f3:7f:23:e5:75:b9:
f7:7f:05:ed:13:0e:cb:e6:97:f6:6b:c9:fe:a8:58:00:c3:78:
8e:f8:d8:3d:3f:5d:19:b1:b8:e7:1d:4f:a9:57:96:d6:3e:16:
82:f7:5a:a2:c4:1f:8e:c0:6a:f2:f2:92:b3:29:4c:e8:c8:c0:
22:a2:39:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZypfUHTG4OY8S4WJFjOwoCjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ZDhiMjdhYWE1NWU1MWEzNDVmNmE0NTE5ZTM2Nzk1NTA0
NmMzMGEwHhcNMjYwMzAxMTMwMTI0WhcNMjYwMzAyMTMwMTI0WjAzMTEwLwYDVQQD
EygyODMzNGU1YTlmZjliNGZlYTM2MTkxMGY1MDY0MDYzYWQyZjE2NzBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ROdUsGS6xbOZMRuI+ohI1W+cB0r
ZOB3Pqh7nCKVQ4nJ9x6F1SXCumR7HAdkjYvoYzXZ/0byTp4xN9fSEGTnslQQQuLf
p+lYXTdFEQweZx0jCanTiWv+XcZ3vK+UE1r6IsSQH+uRylw93ZExP5zKKnRrLBqO
WmAZ/jFsHRGyoKJaQvoYDt3h6XudaqX2cfGp4mcK/WFIBJEiWW/r3QBrnpYf6gmY
FKa1XeXMOD2BCCsWBjCwkpdCs1AzXJI8/59WzQcXCCKwiZj3pBJrTZxB9o8i1Z89
H4anyMx5fGaQWqtVUnVx48FlPvcUJKvjrHMs6s1nNmKFjv4omsjeDHx+PQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCgzTlqf+bT+o2GRD1BkBjrS8WcPMB8GA1UdIwQY
MBaAFLTYsnqqVeUaNF9qRRnjZ5VQRsMKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdE5peWVxcFY1Um8wWDJwRkdlTm5sVkJHd3dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9kM2MxZDUtZTkyMy00ODMxLTgwNGMt
Yzc1ODYyODJmZTEzLzEvdE5peWVxcFY1Um8wWDJwRkdlTm5sVkJHd3dvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi9kM2MxZDUtZTkyMy00ODMxLTgwNGMtYzc1ODYyODJmZTEz
LzEvdE5peWVxcFY1Um8wWDJwRkdlTm5sVkJHd3dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi56eCsU/
Qm+PI6V76BltpxHHhEWczzZR8U8QegTIzqKxc3Y/fmQghdwCZpfB25HOyh57UXUl
82Ro1ySuZXxGIceqQfq7h0iZAV5dYLgrbL7jUdzH7glbMbZLBBeh2HjnKXacC1j+
7Y9TEaCDUZfZkjVMApjk+57svCTAgTr+ef89tz8aiMK+GFlMWrtjR8gLqqEx7nFk
c8JtWRa1NAqVC/DbXlYVr52YHjskU1z7JQ5/1tHgWYxqKWwyXQfSebhR838j5XW5
938F7RMOy+aX9mvJ/qhYAMN4jvjYPT9dGbG45x1PqVeW1j4WgvdaosQfjsBq8vKS
sylM6MjAIqI5KQ==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:37 2026 by rpki-client