Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
File: tK4oip3bDvUKKUs8rpY-FHycfck.mft (raw, json)
Hash identifier: rn+hAg1rPCuRKi5L2OdPFIQVjGycuh/cUE7wOjxyr4w=
Subject key identifier: F0:B1:F0:C8:5B:2F:3D:92:DA:CC:47:58:E1:AD:F1:A5:57:00:92:91
Authority key identifier: B4:AE:28:8A:9D:DB:0E:F5:0A:29:4B:3C:AE:96:3E:14:7C:9C:7D:C9
Certificate issuer: /CN=b4ae288a9ddb0ef50a294b3cae963e147c9c7dc9
Certificate serial: 019E1EA353A8EBFA1FB5F0678817F2C13FB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
Manifest number: 1906
Signing time: Wed 13 May 2026 00:01:20 +0000
Manifest this update: Wed 13 May 2026 00:01:20 +0000
Manifest next update: Thu 14 May 2026 00:01:20 +0000
Files and hashes: 1: TWgMkDcy_HR5XMg6rXv7Ax4ipk8.roa (hash: H/mEg4ne87MR+9DERthNodFmmxJcKV/plF/1hfT1FKo=)
2: XXDs_1WF8xAupVE6WOS_dNf9osM.roa (hash: 20X1/QsaSj3DVDtfhjJ7nUqhCYkTj6/5wZfHSwDpBiU=)
3: tK4oip3bDvUKKUs8rpY-FHycfck.crl (hash: R+h4HXPJPSNx3iKRs/1KXERNFSxeMU7xw1ER5GY0gsg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 00:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:53:a8:eb:fa:1f:b5:f0:67:88:17:f2:c1:3f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4ae288a9ddb0ef50a294b3cae963e147c9c7dc9
Validity
Not Before: May 13 00:01:20 2026 GMT
Not After : May 14 00:01:20 2026 GMT
Subject: CN=f0b1f0c85b2f3d92dacc4758e1adf1a557009291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:64:cd:bd:3c:2a:ab:a6:51:07:89:b2:1c:67:
a0:70:76:6a:cb:c0:f6:a2:47:f1:be:ad:90:35:14:
e0:1e:f1:ef:ff:e0:93:7c:89:bf:a0:71:77:b9:df:
01:d2:7d:bc:68:b4:62:80:a2:b7:29:0a:b7:90:5e:
3d:bb:57:ff:60:91:7f:70:bf:20:a3:dc:cc:52:e1:
89:c8:03:6d:11:cb:78:96:31:b8:c4:b9:42:b3:88:
db:5e:04:da:45:e6:2f:c1:d0:46:86:26:fb:37:e7:
bb:93:80:1c:84:86:51:dc:ad:80:71:d1:9f:3a:01:
f2:0a:8b:86:13:19:96:d8:c9:8d:87:3f:40:b8:01:
d4:7c:d9:51:51:4e:bc:eb:1c:2b:34:16:1b:73:25:
8b:16:c6:7e:48:6c:b8:bd:bc:cc:44:52:8f:71:d4:
cf:35:e2:13:e3:80:d0:a4:39:20:ac:bf:5a:96:a9:
e8:8e:58:d0:07:25:e8:a9:09:a2:39:08:b8:eb:85:
ea:ea:c8:80:01:30:70:22:82:b5:eb:4a:65:a4:2b:
16:7b:e0:07:50:9b:61:a6:d9:80:0c:5e:18:dd:cf:
62:71:ec:dd:71:fb:35:0c:82:e9:b1:af:be:29:04:
19:a5:bc:65:aa:39:bf:4c:af:a3:19:35:c9:ca:61:
94:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B1:F0:C8:5B:2F:3D:92:DA:CC:47:58:E1:AD:F1:A5:57:00:92:91
X509v3 Authority Key Identifier:
keyid:B4:AE:28:8A:9D:DB:0E:F5:0A:29:4B:3C:AE:96:3E:14:7C:9C:7D:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tK4oip3bDvUKKUs8rpY-FHycfck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/457f2d-0137-4d61-8500-300426ce32e2/1/tK4oip3bDvUKKUs8rpY-FHycfck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:f1:a6:29:c3:b6:c0:88:65:fe:fb:d0:ee:29:d1:bf:dd:c9:
aa:de:07:85:2b:2b:42:e1:bf:72:64:c9:53:b9:88:05:a7:fa:
8e:6a:1e:24:4a:74:e7:f5:94:9b:02:b5:f2:47:8a:94:44:6d:
1a:47:09:20:8c:ea:49:5e:a4:b1:aa:1b:a5:e3:8f:3f:d0:c1:
4d:18:a0:36:1b:ea:be:a1:84:f8:9a:13:44:9e:fa:6e:da:ea:
af:6d:50:7c:4e:c8:55:df:bd:34:73:bd:17:e8:41:94:7e:9d:
ee:47:d9:99:92:35:5d:7d:94:58:fe:ba:74:57:79:dc:c9:bd:
da:04:40:a0:41:fe:fc:31:b1:6e:60:dd:7d:c0:22:35:a9:d3:
fe:3f:6b:d5:9a:6c:5a:58:2e:62:cd:ff:50:5e:da:b0:7d:8d:
ba:f8:26:b3:f7:18:fb:22:2c:72:f2:19:db:11:39:0a:db:19:
90:17:42:0e:99:ca:de:53:c7:e4:70:8b:d4:a5:b6:eb:fb:25:
0e:c7:a9:9e:39:5a:69:d2:e0:82:2e:07:a0:f7:2e:b0:73:e4:
c0:c2:a8:23:30:d3:83:0e:ef:75:a2:9d:a0:c8:4a:e3:b9:3d:
6b:20:47:ff:0d:3b:e6:3c:c9:8c:e8:00:68:0f:71:e7:2f:59:
09:67:e0:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:48:33 2026 by rpki-client