Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json)
Hash identifier: FKNfbLWHKD0WfmYvW5JkLyR6cITSBhn2duHScWn8onk=
Subject key identifier: 50:F9:61:97:BA:A7:E4:1F:B3:81:E1:63:46:78:26:A3:89:39:D7:12
Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c
Certificate serial: 019E1FEC48A891CF18A1072252C3248D486C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
Manifest number: 048D
Signing time: Wed 13 May 2026 06:00:39 +0000
Manifest this update: Wed 13 May 2026 06:00:39 +0000
Manifest next update: Thu 14 May 2026 06:00:39 +0000
Files and hashes: 1: 1-w3-HT-b4gN55Ez02d0Ltxhd_18.roa (hash: SZE3EWQBz3QYJjq31FoNPzS9VUyILcF5vCKxR6HmvGg=)
2: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: oZnkvTswSerm3F1bMDMpPp4/xu2liD1gzNpLZJtTPIo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:48:a8:91:cf:18:a1:07:22:52:c3:24:8d:48:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c
Validity
Not Before: May 13 06:00:39 2026 GMT
Not After : May 14 06:00:39 2026 GMT
Subject: CN=50f96197baa7e41fb381e163467826a38939d712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6a:10:a8:bc:e7:ca:64:5b:82:d0:a7:e2:15:
9f:39:a2:9d:96:86:2f:0a:75:e6:65:bd:c2:a4:fd:
38:f7:2b:6a:e6:48:6c:2c:d7:33:c9:0e:06:0d:93:
ed:dc:98:d2:64:5a:6d:63:fb:4b:90:20:f3:d1:be:
f3:20:f2:36:55:ba:d7:b0:94:c4:34:2e:97:78:5d:
7a:c3:d8:2e:5f:54:92:5c:23:b7:4e:c1:30:42:11:
e0:b6:f9:c9:95:f6:37:88:bf:be:a6:54:df:ad:95:
66:eb:ca:d8:ad:19:b6:09:f5:50:b5:b6:45:9a:61:
5c:83:ac:9a:6b:a2:b6:bd:f6:48:79:fe:88:82:45:
3f:3b:d7:31:d5:73:11:86:80:2b:7f:bb:a4:66:a7:
a3:8b:71:48:d0:7e:ee:d8:78:61:41:4e:5b:59:85:
f3:82:8d:de:47:99:be:12:6e:b0:da:9a:3e:35:72:
af:25:33:3c:cd:58:f1:10:ea:8a:ed:2c:d1:90:46:
ca:97:a3:b5:67:d9:e8:aa:b4:5c:60:9c:fd:1a:85:
64:fd:fc:87:c6:85:c3:7e:54:68:85:96:eb:e5:83:
34:2e:cb:b3:e1:c7:b7:96:30:de:30:f6:68:0c:49:
86:30:0f:c5:c5:c7:91:85:9f:de:71:ba:c1:bf:dc:
66:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F9:61:97:BA:A7:E4:1F:B3:81:E1:63:46:78:26:A3:89:39:D7:12
X509v3 Authority Key Identifier:
keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:16:70:b5:0a:16:f7:ce:1c:f2:4a:a0:c4:ed:5f:70:8a:72:
32:83:7c:ea:d4:bf:69:66:e0:86:10:f1:47:1f:08:bc:91:8d:
5f:f0:c5:9d:a9:ab:04:7e:54:62:d0:ac:6a:e6:f8:0b:c8:b6:
e6:be:33:1a:3e:d3:20:08:c8:fa:7c:69:8c:06:b8:10:6e:75:
2f:3e:61:2a:2c:9e:f7:a5:11:dc:0d:0a:24:51:80:6a:bd:4f:
5c:49:6e:21:f3:02:d7:12:93:0d:69:2a:04:d4:4c:33:b1:ac:
7f:ba:43:59:a9:3f:d7:ef:90:7a:5d:af:5a:fd:6c:b3:11:f1:
9f:66:12:de:b0:63:9a:85:d7:4a:a0:17:ae:6e:4e:57:70:d6:
2f:57:b1:7e:a4:1b:17:c8:b9:eb:5c:04:f1:c2:95:78:ad:f4:
f1:f4:be:72:28:ef:0b:ed:45:a1:c0:63:8a:b3:68:82:e2:ae:
8f:6b:86:bd:1a:03:0e:73:03:5c:82:b2:1c:3f:16:b1:07:25:
b6:fc:08:b3:af:7e:c0:2b:d4:3d:87:76:80:44:e4:74:03:18:
7c:01:ce:39:95:c7:38:c9:5a:03:10:2d:5c:6e:e1:f6:ce:d7:
c8:ed:bc:0c:12:1f:ec:20:25:d9:dc:05:f1:90:78:df:57:b6:
bc:af:33:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:49:54 2026 by rpki-client