Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: yVEqP0+Qhc9ekmXvOrY4imynrTSPFWeqQCxessj8Dfg=
Subject key identifier: 69:3D:4F:B1:74:C4:FA:CA:03:07:49:85:2D:91:E9:C7:0B:71:F8:1A
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 019E1C7D795678B50A1C68B485944A99D1B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 0D95
Signing time: Tue 12 May 2026 14:00:45 +0000
Manifest this update: Tue 12 May 2026 14:00:45 +0000
Manifest next update: Wed 13 May 2026 14:00:45 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: ll8hzJuIcJQDQBJ3dITFAb7u9juloV7Kluj6+fg7qn4=)
2: bocz5SG9Zj4HkXUBKia2cUoBHTI.roa (hash: kxCpDn7CCZ/6SqGTk6+uT7aXJeJIuhuC431y0OFAOkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:7d:79:56:78:b5:0a:1c:68:b4:85:94:4a:99:d1:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: May 12 14:00:45 2026 GMT
Not After : May 13 14:00:45 2026 GMT
Subject: CN=693d4fb174c4faca030749852d91e9c70b71f81a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:88:37:c1:3d:67:75:82:19:1e:27:8b:ab:33:
1e:14:b3:6e:86:93:ac:07:69:db:41:a7:52:dc:6f:
db:bc:c3:16:18:92:f0:0e:c0:33:fa:80:83:d2:d9:
a5:8f:47:fd:10:ac:43:e9:1e:3a:0e:a6:6c:90:ed:
f8:a8:bf:4e:0f:c2:36:aa:74:4b:40:94:7e:da:08:
ba:c4:ad:81:64:3f:0d:b5:e3:0e:96:95:cf:ea:01:
be:6c:cb:77:59:64:20:74:a9:9b:32:5d:77:1f:a9:
1e:2f:51:55:82:c2:6f:2b:66:61:b5:eb:67:a9:10:
fa:6b:89:65:fb:3b:85:60:78:11:0a:c7:60:13:73:
13:75:8e:9c:95:73:d3:ac:a8:d0:0a:69:7c:37:e6:
25:d9:76:1e:d9:16:d7:33:c6:f0:9d:c1:30:4d:a7:
43:f1:7d:8d:7f:a8:6e:35:21:b5:29:f5:4f:52:8a:
77:3d:84:04:58:a2:6f:54:f9:6c:96:ef:97:51:76:
8e:60:87:02:dd:09:62:54:a9:be:3c:01:28:ba:29:
df:fa:88:53:0c:38:81:40:dc:0e:cd:57:19:de:75:
65:8d:ba:ca:87:47:f4:f9:70:45:22:e4:e8:60:8a:
d8:39:5f:96:91:bb:14:1a:de:90:a1:a4:d7:0a:d5:
cc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3D:4F:B1:74:C4:FA:CA:03:07:49:85:2D:91:E9:C7:0B:71:F8:1A
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:58:bc:1d:6d:47:9d:fa:60:73:fb:4e:d2:0e:a8:1a:e0:f8:
37:5c:a8:a0:62:b9:c9:20:a8:f9:b7:d4:c5:d9:67:b7:b0:bd:
3e:a6:a9:5e:0c:d2:5f:89:31:47:e5:db:25:cb:1d:62:c2:7e:
56:ef:39:c0:cb:87:a9:ee:d7:09:29:d9:fc:9c:9c:da:ea:42:
0f:82:88:3c:f7:9e:99:ef:a1:a3:37:44:d1:30:8f:64:68:29:
01:f1:52:60:9e:3e:98:c6:de:01:cd:21:bc:05:35:28:6d:30:
26:67:64:3a:b2:89:8b:4b:a1:d4:5b:c9:e0:a6:dd:4b:b8:c0:
24:0f:89:26:61:46:87:d9:c5:94:e9:ca:63:c0:cf:7e:4d:f4:
30:e3:80:49:2a:b5:ff:6d:08:62:07:8a:79:4b:a1:d6:2c:36:
f8:ea:d5:09:e6:cf:c6:fb:0b:cb:db:7d:50:9b:8a:78:7f:3b:
c2:3a:1e:8b:04:c9:c8:c7:5e:92:06:03:a2:3e:6b:51:e5:37:
7b:61:64:0c:63:53:70:e2:72:87:a3:e3:35:25:e3:81:68:d2:
0f:47:6c:3c:86:bb:54:eb:94:ef:59:38:44:74:3a:c4:54:8b:
16:76:ea:f5:90:64:24:68:83:33:95:ce:75:7a:8e:ef:c2:2a:
fb:ec:27:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:08:27 2026 by rpki-client