Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
File: TSPi7bMh4ailzp7j4tlapA8N6KA.mft (raw, json)
Hash identifier: h10tPnEB4Ryv+OaPgqB5FfvoDhTxoCtVoQ0U8+zS6RA=
Subject key identifier: 0C:E9:07:E3:38:E6:82:73:22:26:EF:BD:19:29:2F:10:03:40:C8:EC
Authority key identifier: 4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
Certificate issuer: /CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Certificate serial: 019E1F7F3A680D1890C7CA4C3FFDB49020C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
Manifest number: 0DBD
Signing time: Wed 13 May 2026 04:01:32 +0000
Manifest this update: Wed 13 May 2026 04:01:32 +0000
Manifest next update: Thu 14 May 2026 04:01:32 +0000
Files and hashes: 1: JXFUH416zwkJgWarbpHaBu4OjrM.roa (hash: 4a95XnQ0KPTukf9VV0SjrYCDAkfbYBMqoLt/hvW2kls=)
2: Ne3vXvFZfDJtHFxRi2iyMMXZXak.roa (hash: 90S1YKvYb+j9r5QawOi7WPQ7WUn8bPfBJqf4jlJtVS4=)
3: TSPi7bMh4ailzp7j4tlapA8N6KA.crl (hash: Ju7stUdBADYpQAYZBENtMPEn0QvLB/IfO+rCT+IM/Sw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7f:3a:68:0d:18:90:c7:ca:4c:3f:fd:b4:90:20:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Validity
Not Before: May 13 04:01:32 2026 GMT
Not After : May 14 04:01:32 2026 GMT
Subject: CN=0ce907e338e682732226efbd19292f100340c8ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:22:37:96:fa:a8:0b:24:0d:86:9f:6e:e5:04:
da:a1:cb:26:9a:c1:58:e3:46:54:44:29:b0:b5:f7:
04:8f:cd:39:e1:24:db:4f:ff:81:1a:f3:2a:af:67:
9b:fa:01:29:3f:2f:cf:bf:c4:be:da:5a:8a:af:f8:
74:85:1d:6f:85:2b:ae:a8:2a:7f:5e:bc:30:86:9c:
39:99:a3:5f:66:62:91:eb:28:8b:04:ad:b0:e9:93:
a5:85:99:76:91:1f:d7:01:f4:84:05:40:67:05:7a:
88:e7:df:d0:0a:f7:75:4c:bd:37:0c:b2:6f:dd:ee:
ea:f3:fe:1e:42:86:84:97:c3:7a:e6:73:1e:41:11:
12:a0:a8:92:f8:e7:a2:6f:ed:b0:19:9a:47:f3:9e:
00:6e:92:0b:d4:eb:08:46:fc:f3:d6:09:86:90:73:
4c:3d:c6:69:b6:ff:2e:ea:e9:b2:ab:67:ea:2b:11:
0c:19:d5:df:72:c2:2d:4b:1e:ce:a2:a9:fc:cd:4f:
24:13:96:e7:2f:30:c2:be:3e:6f:76:c0:6b:27:bf:
d6:82:cd:c9:18:c1:34:50:72:e4:65:39:8a:eb:e3:
94:39:f2:50:95:d8:ad:b7:aa:45:db:9e:5f:29:ee:
82:e7:be:d0:d9:c2:4f:82:c6:a3:b2:5d:7d:2d:9b:
4d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:E9:07:E3:38:E6:82:73:22:26:EF:BD:19:29:2F:10:03:40:C8:EC
X509v3 Authority Key Identifier:
keyid:4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:40:6a:a1:22:b0:62:45:d7:ac:ea:cc:33:34:b4:c9:69:9f:
e6:52:43:1f:22:fe:bb:3a:ae:b6:14:60:40:46:4d:2a:df:ba:
49:3d:1a:54:22:0b:c6:30:26:d0:38:a0:fe:6d:fc:af:62:17:
e8:14:11:3b:80:c4:f4:05:95:fd:52:03:5e:1c:54:42:4c:be:
42:52:eb:b2:df:88:18:33:44:20:02:a1:c9:07:f9:4f:cc:af:
9e:28:17:42:51:57:64:c6:b8:32:b0:40:ac:02:e4:8f:5e:ea:
49:4d:64:2b:18:e7:a3:d2:bc:09:56:b5:43:8f:c8:b0:34:1c:
ad:d6:90:f3:8f:f9:e8:d0:4e:61:de:6e:52:23:d8:75:0d:66:
43:95:d9:13:60:fa:9a:48:d4:f5:62:95:88:64:b4:26:93:07:
a2:89:8c:22:dd:2e:ee:6c:91:30:e8:60:b2:21:14:0a:26:bd:
3b:ef:9f:b5:af:30:e6:39:6c:2e:14:c3:34:64:42:cd:89:25:
3c:88:2a:82:7b:6e:da:d7:cf:fc:88:c2:41:e1:23:cc:1c:eb:
3a:55:fc:cb:26:80:9f:d3:7f:76:b1:33:18:10:56:43:89:66:
6c:f6:91:a9:09:ae:74:03:59:e0:78:75:80:18:06:da:f5:1f:
ea:0b:bd:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:08:13 2026 by rpki-client