Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
File: tDJYoYz00SKOXHkHDfpjMRaDIMU.mft (raw, json)
Hash identifier: /VKndj/ZwFbh7NgzSkeREVIgM4abJ7OAcvcxOaYSFnQ=
Subject key identifier: D2:87:86:33:EC:D0:00:71:4E:5F:63:E5:91:28:F2:27:7B:CC:CA:1A
Authority key identifier: B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
Certificate issuer: /CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Certificate serial: 019E1EDA5B32EBC5A8A4701683F4BD79F4F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
Manifest number: 174A
Signing time: Wed 13 May 2026 01:01:27 +0000
Manifest this update: Wed 13 May 2026 01:01:27 +0000
Manifest next update: Thu 14 May 2026 01:01:27 +0000
Files and hashes: 1: LBEwWg6NXwV0Qivix1KpxT3aiNU.roa (hash: NAmrPdbUkUwZLyDdKu29iu1NmoDceqKiDehZJJ6AYqk=)
2: tDJYoYz00SKOXHkHDfpjMRaDIMU.crl (hash: zH3JVp1kGWh7+OnuKBE07GSahx10/28Yx8gknpGgvJc=)
3: u3rQ39mTeV2kE1STzKrih9_L758.roa (hash: KWfkHmC+Pf41EAOenIiA1l0ufOFeet991JgGZvHoQlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:5b:32:eb:c5:a8:a4:70:16:83:f4:bd:79:f4:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Validity
Not Before: May 13 01:01:27 2026 GMT
Not After : May 14 01:01:27 2026 GMT
Subject: CN=d2878633ecd000714e5f63e59128f2277bccca1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:de:e1:32:f8:56:67:7a:80:59:cb:75:4c:b1:
f4:ff:22:6d:ab:27:0b:ad:2e:3b:b1:97:5e:85:73:
be:dc:21:63:55:7b:4b:58:88:d1:31:fa:2f:38:c4:
6d:d2:d6:8b:b0:87:38:66:6d:82:a5:7f:cb:e3:93:
51:d7:25:97:8b:2e:4a:86:97:04:cc:23:ff:eb:fa:
2b:51:9f:9e:6f:4d:de:7d:f0:7f:1a:a4:a3:6f:e0:
50:7d:ef:10:92:af:e8:9f:2f:3f:a6:61:c1:b5:b7:
b1:66:f8:40:66:4a:6c:36:01:1f:8e:fc:4d:e0:76:
71:05:3f:55:78:b9:12:87:76:34:03:27:b0:be:e6:
68:94:fd:4a:7f:48:d4:f4:66:a2:08:4a:96:4f:ac:
80:3e:a3:97:2c:2e:ad:c8:3b:87:29:02:6a:0b:9e:
43:ba:16:be:63:8c:e9:c8:d6:22:4e:45:c3:e1:47:
b8:14:68:2a:a1:d6:c9:5c:de:10:fc:bd:df:32:d8:
97:76:40:44:59:5c:b5:f5:d3:f8:e9:24:59:4c:19:
17:e1:c3:83:f4:e0:3c:27:50:23:83:2b:8d:cb:64:
e6:6f:21:d5:56:70:16:58:ab:08:a1:5a:41:09:95:
fe:88:98:a8:27:03:c1:e8:f7:31:49:b4:57:99:bc:
39:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:87:86:33:EC:D0:00:71:4E:5F:63:E5:91:28:F2:27:7B:CC:CA:1A
X509v3 Authority Key Identifier:
keyid:B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:2a:08:dc:22:a3:d9:6b:b0:8a:b8:56:c2:1b:a7:00:30:e7:
95:b4:fe:1c:de:50:c6:a8:29:2a:52:6e:a4:14:19:0d:ae:97:
0e:9b:ea:f1:77:fc:20:7b:b1:31:f1:3d:f6:b4:a8:19:ea:b9:
89:fd:8c:25:d5:fb:8d:a1:19:87:0f:e1:46:0f:33:78:5b:7c:
39:80:75:26:28:89:2f:ea:64:6a:d6:f6:af:0d:43:4c:95:e4:
41:a8:b4:f1:8a:25:ca:f2:74:e1:ad:dd:88:c5:3e:b6:cd:1e:
89:49:24:fa:87:f4:e5:60:e4:6a:21:d4:74:a5:6c:73:83:98:
f3:70:36:38:ea:38:d4:4e:c6:35:47:44:b1:95:fb:ba:94:a7:
bc:8f:7d:2b:89:cc:84:06:ad:04:5c:54:d8:36:d7:c2:0d:0f:
4b:2e:50:5c:c7:75:a4:e1:6e:81:89:05:2e:be:e3:b3:87:ac:
c5:7e:74:1f:6f:bb:ed:04:e9:3e:6e:e0:75:c9:8c:8e:86:0e:
fc:39:9a:d7:d2:d3:36:3c:2c:9f:43:12:eb:6f:8d:f0:f7:48:
40:f0:f3:58:3b:17:34:c0:d3:9d:47:b5:ba:87:c0:27:55:9c:
ef:19:f2:7a:0c:07:0e:86:84:b0:e9:6e:52:e9:9c:c4:50:cf:
37:9e:71:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2lsy68WopHAWg/S9efT4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MzI1OGExOGNmNGQxMjI4ZTVjNzkwNzBkZmE2MzMxMTY4
MzIwYzUwHhcNMjYwNTEzMDEwMTI3WhcNMjYwNTE0MDEwMTI3WjAzMTEwLwYDVQQD
EyhkMjg3ODYzM2VjZDAwMDcxNGU1ZjYzZTU5MTI4ZjIyNzdiY2NjYTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw97hMvhWZ3qAWct1TLH0/yJtqycL
rS47sZdehXO+3CFjVXtLWIjRMfovOMRt0taLsIc4Zm2CpX/L45NR1yWXiy5KhpcE
zCP/6/orUZ+eb03effB/GqSjb+BQfe8Qkq/ony8/pmHBtbexZvhAZkpsNgEfjvxN
4HZxBT9VeLkSh3Y0AyewvuZolP1Kf0jU9GaiCEqWT6yAPqOXLC6tyDuHKQJqC55D
uha+Y4zpyNYiTkXD4Ue4FGgqodbJXN4Q/L3fMtiXdkBEWVy19dP46SRZTBkX4cOD
9OA8J1AjgyuNy2TmbyHVVnAWWKsIoVpBCZX+iJioJwPB6PcxSbRXmbw5nQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNKHhjPs0ABxTl9j5ZEo8id7zMoaMB8GA1UdIwQY
MBaAFLQyWKGM9NEijlx5Bw36YzEWgyDFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERKWW9ZejAwU0tPWEhrSERmcGpNUmFESU1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8wM2EzMjUtYTE2OS00NGNlLTg0ZWMt
NTcyOGZiMjRiZjBlLzEvdERKWW9ZejAwU0tPWEhrSERmcGpNUmFESU1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8wM2EzMjUtYTE2OS00NGNlLTg0ZWMtNTcyOGZiMjRiZjBl
LzEvdERKWW9ZejAwU0tPWEhrSERmcGpNUmFESU1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHyoI3CKj
2WuwirhWwhunADDnlbT+HN5QxqgpKlJupBQZDa6XDpvq8Xf8IHuxMfE99rSoGeq5
if2MJdX7jaEZhw/hRg8zeFt8OYB1JiiJL+pkatb2rw1DTJXkQai08YolyvJ04a3d
iMU+ts0eiUkk+of05WDkaiHUdKVsc4OY83A2OOo41E7GNUdEsZX7upSnvI99K4nM
hAatBFxU2DbXwg0PSy5QXMd1pOFugYkFLr7js4esxX50H2+77QTpPm7gdcmMjoYO
/Dma19LTNjwsn0MS62+N8PdIQPDzWDsXNMDTnUe1uofAJ1Wc7xnyegwHDoaEsOlu
UumcxFDPN55xFQ==
-----END CERTIFICATE-----
Generated at Wed May 13 10:47:51 2026 by rpki-client