Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
File: TNkIkaeTL3NWqAMznaDM32OtLTU.mft (raw, json)
Hash identifier: jYkbMdiJfsysXo87jtceBL8ADXGQzpw31+OfVHNiujA=
Subject key identifier: 55:86:77:67:3B:DA:76:D9:E9:F5:2F:4D:18:29:EF:9B:DE:C9:06:9E
Authority key identifier: 4C:D9:08:91:A7:93:2F:73:56:A8:03:33:9D:A0:CC:DF:63:AD:2D:35
Certificate issuer: /CN=4cd90891a7932f7356a803339da0ccdf63ad2d35
Certificate serial: 019D28F2E7C3D7DC212D4F89CA0C93F723BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
Manifest number: 0372
Signing time: Thu 26 Mar 2026 07:01:40 +0000
Manifest this update: Thu 26 Mar 2026 07:01:40 +0000
Manifest next update: Fri 27 Mar 2026 07:01:40 +0000
Files and hashes: 1: SyOMrq9ZPqa-CxddJFs4EYM4Fbg.roa (hash: wy5+/o73Vk3SAFiCb5cli4N7qOzZBJq1Ya6ET4kdAcw=)
2: TNkIkaeTL3NWqAMznaDM32OtLTU.crl (hash: r/cOL/gk4FtmguhB/Ifw2lZ1A+luQiaoD+ky140gCPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:e7:c3:d7:dc:21:2d:4f:89:ca:0c:93:f7:23:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd90891a7932f7356a803339da0ccdf63ad2d35
Validity
Not Before: Mar 26 07:01:40 2026 GMT
Not After : Mar 27 07:01:40 2026 GMT
Subject: CN=558677673bda76d9e9f52f4d1829ef9bdec9069e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:bb:7c:a2:57:8f:d1:3e:0b:2d:ec:95:b9:43:
b0:66:7f:31:ab:64:8d:a0:c7:5e:3c:47:01:9d:ea:
5e:f6:f1:16:51:bb:b7:68:1e:bd:66:62:4c:a0:c6:
98:70:1d:3a:39:a2:cb:41:25:e7:fd:96:22:29:74:
c5:fb:6f:17:c2:3d:7e:18:c7:ec:14:b5:ad:60:f3:
54:5d:b4:d6:80:6d:69:93:e0:aa:4c:f6:28:c5:8b:
73:28:f0:2a:e6:8d:f1:48:23:e1:f4:98:2c:7c:86:
61:18:5d:2f:2a:29:cc:c9:66:26:49:eb:29:6b:83:
78:e7:73:20:de:28:33:a3:1a:d3:25:60:f3:4f:50:
0b:de:0c:39:c8:0f:a2:b9:ce:ad:e7:9f:9b:78:33:
5b:5a:d5:1c:c5:fe:27:67:8e:5a:6a:db:eb:a4:23:
72:df:e9:be:e4:7d:09:35:34:07:48:c0:b8:5a:a5:
ce:3d:dc:72:d1:e3:3c:26:f0:b3:6e:2e:89:0f:2f:
1b:c3:e7:d2:6b:96:81:48:e9:1c:56:d1:ce:73:ad:
5f:6e:33:30:79:7d:88:54:24:ab:69:3a:e7:57:a3:
75:1c:f1:5f:6f:c9:93:ad:d6:40:d2:3d:5e:38:3c:
39:36:f0:e4:60:70:f7:57:be:b6:10:b5:46:93:e5:
39:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:86:77:67:3B:DA:76:D9:E9:F5:2F:4D:18:29:EF:9B:DE:C9:06:9E
X509v3 Authority Key Identifier:
keyid:4C:D9:08:91:A7:93:2F:73:56:A8:03:33:9D:A0:CC:DF:63:AD:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:79:fc:cb:21:35:08:ea:c9:0b:34:62:80:b9:20:64:ef:97:
57:67:3e:65:f5:bb:3b:6e:33:f9:5c:b9:76:0e:f1:a4:98:a7:
84:88:34:1c:55:ae:42:7c:22:e9:57:db:87:4a:92:41:47:c7:
2f:8f:d8:50:95:06:ff:60:c4:04:45:24:b0:73:8f:4a:22:dc:
4f:9d:d1:8a:d8:b8:73:fb:89:e6:c3:70:e7:ec:87:c4:23:ad:
e4:13:e1:67:35:35:a3:21:8b:25:4a:83:04:34:f7:ae:da:e9:
55:9f:35:3b:ff:73:c0:5b:b6:09:bc:f8:57:a4:64:10:a7:5e:
7b:e7:c6:7b:9d:66:f6:64:dd:90:b3:db:e6:e2:17:47:df:4e:
e7:f2:8a:8b:95:cc:f5:2b:ee:eb:7c:0d:04:80:42:5d:3e:b9:
31:45:f5:3a:99:f1:e0:f3:e9:80:f5:23:11:80:38:0d:f0:c6:
95:35:cd:2e:c3:e7:6e:1a:d1:cc:8f:16:16:19:01:f6:e1:9d:
e1:4c:68:03:b8:8d:77:91:2e:cb:a6:a5:05:1e:b8:34:f6:d3:
78:ce:dc:47:29:f5:54:fd:ad:2a:4c:83:40:c2:70:fc:8a:e2:
ca:da:50:27:1d:09:cf:a8:85:4b:c2:fc:f5:3a:84:31:a8:da:
aa:44:f6:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:38:18 2026 by rpki-client