Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: WzaKm/ZiD3QOPc6DuAVLy8OHdkb+KWkdXkYo19RShTU=
Subject key identifier: DC:35:A8:FE:D2:C3:FA:CE:92:5D:D5:DD:AB:1A:D8:C6:D6:3C:A9:43
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 019E1E6C5BA9427266CAC36E6AB6EC4CEE34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 1904
Signing time: Tue 12 May 2026 23:01:18 +0000
Manifest this update: Tue 12 May 2026 23:01:18 +0000
Manifest next update: Wed 13 May 2026 23:01:18 +0000
Files and hashes: 1: awToJLBsyk0T4IcWFD08IQBrMn8.roa (hash: D6jszyrJ34yNygrEuO9QJPaleqlFTsrRTxhepr3reTI=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: dB12TiIgQ638eINd7xWJIYr6VskVtXR+nkRuqeAJt4s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:5b:a9:42:72:66:ca:c3:6e:6a:b6:ec:4c:ee:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: May 12 23:01:18 2026 GMT
Not After : May 13 23:01:18 2026 GMT
Subject: CN=dc35a8fed2c3face925dd5ddab1ad8c6d63ca943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e5:e6:98:83:05:1a:81:a1:b9:41:f9:b8:f9:
1a:1e:5c:91:60:c6:ab:17:2d:af:00:76:8d:23:fb:
f7:41:40:56:82:11:27:05:fe:dd:9b:08:ba:d3:f1:
54:87:e2:1e:9f:4e:e4:14:1d:9e:e2:85:57:83:e0:
48:42:27:4e:8f:9e:da:0b:f6:c0:9e:1c:ac:19:73:
21:fc:1c:e8:c9:eb:4e:cd:a2:33:0b:d0:15:e6:fd:
df:e8:a2:98:db:3e:7e:94:05:ac:61:9e:de:b7:e0:
89:63:02:e0:78:06:2d:8f:69:91:c1:f8:4b:4d:37:
a9:fd:47:14:50:5f:d7:15:fa:5d:ce:6e:73:ba:6d:
f6:fc:3f:9f:de:9b:1c:d0:ca:3b:ee:9b:de:5c:3c:
09:94:db:10:ed:43:3a:a5:14:aa:b4:32:70:b4:84:
81:d1:43:93:a5:50:c0:e7:74:63:5c:7d:d4:bb:88:
08:e4:78:77:28:7d:b6:04:18:fa:6b:bd:9d:29:cd:
81:3f:8e:22:0f:d2:aa:4d:83:22:53:9f:74:5b:a2:
42:b8:ed:78:ad:7e:0e:6d:69:fd:55:0d:85:ef:b8:
91:93:6a:90:9a:34:95:13:e9:81:43:62:a4:1d:53:
97:64:c9:d1:7f:e1:3d:84:5a:80:a4:09:e4:52:d3:
f3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:35:A8:FE:D2:C3:FA:CE:92:5D:D5:DD:AB:1A:D8:C6:D6:3C:A9:43
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:f2:6a:5f:d3:64:f3:0c:41:b3:ed:35:10:e4:b8:fb:73:ca:
a6:dd:cf:65:de:61:7c:ae:2d:29:25:62:51:d9:07:3b:b7:d0:
c7:a4:2a:d9:b4:55:b2:29:55:49:c6:1a:53:b1:a3:8e:dd:8a:
e9:67:58:bc:be:f2:29:c9:f0:9d:43:4e:c4:c5:02:d3:11:11:
df:f5:88:79:71:55:27:2c:24:cd:49:2a:4d:88:3e:13:8c:14:
52:f2:5b:55:5a:32:c4:98:b2:e7:91:25:a4:e1:c1:af:92:ef:
36:47:ff:8c:e7:81:f4:e5:f7:c1:46:d6:3d:56:b5:3f:ac:ac:
e9:2c:2a:82:29:83:ef:4e:5f:43:63:54:5c:1a:06:c8:5f:f2:
ab:72:ef:63:6d:b1:4c:0e:0a:e7:f5:40:58:57:a3:81:14:a8:
44:b1:4c:8e:5f:67:ce:bc:76:ec:1a:88:80:52:a5:b4:83:ab:
14:01:da:68:a7:ed:db:ba:9d:cd:7f:e3:91:b5:fe:db:d4:f0:
a6:85:56:b3:47:19:67:9d:ab:4b:8f:0b:82:ce:07:f2:f4:a9:
1a:69:d8:a1:95:49:3f:f3:89:6d:28:cf:e7:e6:d3:3c:cb:cb:
0e:81:23:62:47:29:0b:f7:b5:f9:b1:05:65:6d:9f:d2:e5:01:
bc:17:f6:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4ebFupQnJmysNuarbsTO40MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0YTdkMDU0ODJiODRkM2JiNjA0ZjA5OWJjYWY5ZTdlZDM0
Njg4OWEwHhcNMjYwNTEyMjMwMTE4WhcNMjYwNTEzMjMwMTE4WjAzMTEwLwYDVQQD
EyhkYzM1YThmZWQyYzNmYWNlOTI1ZGQ1ZGRhYjFhZDhjNmQ2M2NhOTQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjeXmmIMFGoGhuUH5uPkaHlyRYMar
Fy2vAHaNI/v3QUBWghEnBf7dmwi60/FUh+Ien07kFB2e4oVXg+BIQidOj57aC/bA
nhysGXMh/BzoyetOzaIzC9AV5v3f6KKY2z5+lAWsYZ7et+CJYwLgeAYtj2mRwfhL
TTep/UcUUF/XFfpdzm5zum32/D+f3psc0Mo77pveXDwJlNsQ7UM6pRSqtDJwtISB
0UOTpVDA53RjXH3Uu4gI5Hh3KH22BBj6a72dKc2BP44iD9KqTYMiU590W6JCuO14
rX4ObWn9VQ2F77iRk2qQmjSVE+mBQ2KkHVOXZMnRf+E9hFqApAnkUtPzfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNw1qP7Sw/rOkl3V3asa2MbWPKlDMB8GA1UdIwQY
MBaAFLSn0FSCuE07tgTwmbyvnn7TRoiaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAt
YzUzMjE5NWVlZjQ5LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAtYzUzMjE5NWVlZjQ5
LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ/JqX9Nk
8wxBs+01EOS4+3PKpt3PZd5hfK4tKSViUdkHO7fQx6Qq2bRVsilVScYaU7Gjjt2K
6WdYvL7yKcnwnUNOxMUC0xER3/WIeXFVJywkzUkqTYg+E4wUUvJbVVoyxJiy55El
pOHBr5LvNkf/jOeB9OX3wUbWPVa1P6ys6SwqgimD705fQ2NUXBoGyF/yq3LvY22x
TA4K5/VAWFejgRSoRLFMjl9nzrx27BqIgFKltIOrFAHaaKft27qdzX/jkbX+29Tw
poVWs0cZZ52rS48Lgs4H8vSpGmnYoZVJP/OJbSjP5+bTPMvLDoEjYkcpC/e1+bEF
ZW2f0uUBvBf2TA==
-----END CERTIFICATE-----
Generated at Wed May 13 08:16:54 2026 by rpki-client