Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
File: 1-TmwPxKU69NaOxXWldfpH4y0H6A.mft (raw, json)
Hash identifier: Ic0sGaN5hbtDLoKwcmUE5UnHPLS7LImDVWiP5rmAO1k=
Subject key identifier: A7:D3:71:89:12:8B:3E:BA:FB:1A:8F:29:24:4A:D5:13:67:1E:BD:23
Authority key identifier: F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
Certificate issuer: /CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Certificate serial: 019E1DC794BA740A5615A129D6034A1D5C96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
Manifest number: 1552
Signing time: Tue 12 May 2026 20:01:19 +0000
Manifest this update: Tue 12 May 2026 20:01:19 +0000
Manifest next update: Wed 13 May 2026 20:01:19 +0000
Files and hashes: 1: 1-TmwPxKU69NaOxXWldfpH4y0H6A.crl (hash: LzBxg09NfzyHB7kznlLzMPBJI/5OJZGNFpd2wHJ0Rb8=)
2: fBLAHwUkRrn6HYBRnTV7FYQGNDQ.roa (hash: 2J5IIevOI4AOjVlKsCvjgqwg6VuZoErPwilBziOfEkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:94:ba:74:0a:56:15:a1:29:d6:03:4a:1d:5c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Validity
Not Before: May 12 20:01:19 2026 GMT
Not After : May 13 20:01:19 2026 GMT
Subject: CN=a7d37189128b3ebafb1a8f29244ad513671ebd23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:92:28:95:d6:9a:1b:04:dd:e8:fc:aa:25:ba:
2c:cd:d6:18:8d:28:bc:c7:17:86:c3:01:19:16:e8:
c7:42:c5:cf:4f:42:5d:c3:df:33:5f:fc:a0:b2:66:
02:99:b0:bc:b5:25:54:d6:8c:0b:60:8d:23:ad:83:
71:c7:f8:9f:a0:ac:38:bb:65:45:a0:b2:88:05:2e:
82:69:33:52:1f:a5:dc:cf:99:5a:97:27:93:c3:a7:
a7:35:71:4b:dc:e3:d6:98:1e:36:cd:b6:92:db:db:
b3:7d:2b:b1:34:93:28:37:f3:d3:d1:1a:0c:6a:50:
06:18:4e:06:04:f7:87:e4:81:af:09:48:2e:d6:a3:
b3:48:fa:80:c5:bb:10:ab:17:65:60:47:bf:1e:aa:
3d:ce:e0:c2:d2:4c:f7:92:00:67:9b:f2:b9:65:8c:
2e:7b:3e:82:a6:02:d4:c7:28:0f:a4:7b:cf:57:9d:
fc:25:37:5a:44:1b:63:33:57:16:ee:3e:e0:8e:df:
55:35:62:07:63:37:88:b2:93:d9:4f:35:80:88:67:
bc:64:07:16:5d:fc:22:9d:af:84:18:42:d3:d5:cc:
53:34:42:da:fa:72:24:09:29:37:d1:d3:ee:b6:fb:
e9:5a:ce:7a:d3:ef:47:bf:28:ea:23:0e:f8:f8:43:
3a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D3:71:89:12:8B:3E:BA:FB:1A:8F:29:24:4A:D5:13:67:1E:BD:23
X509v3 Authority Key Identifier:
keyid:F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:ff:47:36:c9:e2:26:e6:bf:22:25:65:03:04:29:8e:a5:e5:
19:0b:54:69:44:7a:ca:5b:2f:2a:dc:ba:f6:ed:ec:7f:25:fa:
97:78:62:84:e2:5b:02:d3:55:ed:00:0c:c7:a6:27:4c:88:67:
54:08:27:ee:81:12:b6:e6:4f:cf:12:45:59:e2:a1:77:b7:bd:
b1:87:5f:2f:32:86:b4:6e:a5:3e:d0:b0:dd:a9:97:ad:57:65:
8e:dd:4f:60:5d:b7:6e:bb:77:8c:db:62:25:8c:2f:17:95:c1:
8e:b0:bc:62:43:ad:6f:fa:aa:c0:31:81:98:32:b7:eb:dc:6e:
07:1c:b1:aa:51:c2:43:fd:6b:f0:dc:1c:92:3c:43:cd:81:39:
02:f8:9f:ac:bf:0f:05:00:56:fe:15:47:89:09:c6:0a:72:2a:
df:51:f4:94:d7:45:7c:f0:49:2f:a9:1a:47:04:39:83:c1:47:
f6:06:64:9d:eb:98:86:b4:30:3e:88:c1:79:15:e5:10:36:18:
15:01:6b:3b:90:ab:b3:1d:38:a3:b0:6a:a5:ab:14:82:b3:27:
9e:dc:9b:53:bc:ac:c6:43:a9:1e:8b:83:ec:7e:f9:03:ad:9e:
e1:6f:c0:71:10:47:a9:df:3e:3b:82:f4:e3:ec:d9:5b:36:f0:
7e:db:5f:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:53:27 2026 by rpki-client