Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
File: Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft (raw, json)
Hash identifier: CI5SGn2yHJYb3A1LBEvasV+J91kXPYIN1FwGenD8Ei8=
Subject key identifier: 41:82:AA:56:9E:EE:B4:44:03:32:BB:85:2A:99:B8:8C:B3:F1:EF:54
Authority key identifier: 4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
Certificate issuer: /CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Certificate serial: 019E1D9124B27C7E29C8B6954057B187E766
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
Manifest number: 04F1
Signing time: Tue 12 May 2026 19:01:51 +0000
Manifest this update: Tue 12 May 2026 19:01:51 +0000
Manifest next update: Wed 13 May 2026 19:01:51 +0000
Files and hashes: 1: E3Ps_1Y0RPyTuff7vspqXs8HJd0.roa (hash: SDa/tg7mYNNs8Ig1oDFyYQAMW6ncyRIYSQRc76ZseiQ=)
2: Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl (hash: UG72QFrXBNq8lSH1rgfagBEWKvmzwBvq8qxRt/YmIfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:91:24:b2:7c:7e:29:c8:b6:95:40:57:b1:87:e7:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ebf6b37b94f95b4905cf8c6a21d8803eabfa77e
Validity
Not Before: May 12 19:01:51 2026 GMT
Not After : May 13 19:01:51 2026 GMT
Subject: CN=4182aa569eeeb4440332bb852a99b88cb3f1ef54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ba:5f:1b:f8:c4:db:69:b1:76:5c:a4:94:fe:
82:db:3d:30:58:5e:03:53:6f:a8:92:45:18:95:73:
90:23:27:14:58:d2:fc:d0:37:58:78:49:7d:76:6f:
54:93:d3:f3:5f:04:ee:0a:97:53:00:26:72:96:17:
55:ad:06:72:8b:5b:6e:f5:8f:a9:c3:41:59:80:b4:
cc:f5:38:ed:44:86:7e:ea:4d:e8:c3:ea:c6:f4:8a:
e1:1e:92:e7:56:7e:e7:08:bb:cc:2d:92:1b:0a:c3:
27:b9:1a:ab:f5:c0:82:69:96:46:1b:a4:0b:99:61:
d0:2a:10:fb:7f:35:9f:eb:0f:f7:f6:ac:6c:40:a7:
d3:fd:d1:a9:ff:8b:ec:81:d1:b7:10:2e:6b:1e:fa:
2e:51:bf:72:d1:f5:a1:44:dd:1e:23:df:54:65:0e:
ca:a2:39:b5:6c:33:f4:d8:9e:d8:09:0d:42:b1:06:
a7:4e:b4:1d:83:08:5f:23:b5:fa:ee:88:81:83:53:
dd:ea:84:75:9f:45:e0:a0:56:87:c3:c1:74:59:cc:
4d:49:21:45:05:fe:92:7a:75:40:c8:51:fe:44:fb:
58:bd:0b:28:be:da:a9:99:f7:82:35:39:df:b3:4e:
30:2e:10:9b:f5:6e:f1:18:ab:8a:bb:e7:c8:41:79:
ee:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:82:AA:56:9E:EE:B4:44:03:32:BB:85:2A:99:B8:8C:B3:F1:EF:54
X509v3 Authority Key Identifier:
keyid:4E:BF:6B:37:B9:4F:95:B4:90:5C:F8:C6:A2:1D:88:03:EA:BF:A7:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tr9rN7lPlbSQXPjGoh2IA-q_p34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/a2172d-b651-43da-8acf-e7e74db721d2/1/Tr9rN7lPlbSQXPjGoh2IA-q_p34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:66:79:32:0f:15:86:73:a6:42:f2:9d:28:cc:71:8e:d5:16:
98:d9:83:86:49:65:04:d0:26:34:fd:2c:cc:01:61:da:01:d2:
16:51:5d:9c:94:72:1a:bb:5e:c6:7b:bc:28:40:04:44:d3:52:
14:c5:65:f8:9e:a3:5c:fb:e4:5c:3c:88:f9:a3:0c:e4:d4:2f:
76:c8:be:d3:1d:ba:68:c3:4d:ab:7d:4e:23:cb:9c:1b:ec:67:
8b:ea:ae:84:79:fe:c5:1f:f8:a2:bb:a3:52:80:a7:5c:24:b5:
d4:b3:4f:06:0c:b0:89:16:9e:64:8e:1c:3c:41:7e:7a:21:51:
d3:c4:1a:84:a7:8f:66:d5:2b:dd:e9:8a:2a:73:ce:1c:a9:9c:
6c:58:7e:e7:fb:58:a5:2f:56:c3:0f:9f:8a:dc:e2:6b:84:cb:
4a:4b:91:a2:d0:77:ca:64:7d:c5:60:eb:12:27:ad:79:62:42:
61:9b:8c:fa:a0:2b:d4:ed:56:4c:c3:4a:98:c9:17:8f:14:be:
0d:a7:3b:dd:b9:dc:0a:43:39:fd:18:71:a4:8c:a7:a7:d7:5f:
61:17:99:b6:4d:86:8b:7d:18:5e:69:3e:3a:30:b7:0b:15:e1:
3c:5a:e5:b0:ef:67:cd:aa:a1:64:6b:4b:94:78:46:75:2a:33:
c3:a1:5f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:43:57 2026 by rpki-client