Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
File: tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft (raw, json)
Hash identifier: SnJoRAJhWZo3zqyPzLjWK6IDKlhTXYhC47rzjmAyB08=
Subject key identifier: D7:5D:CE:A3:77:30:C1:8E:F0:32:8E:F5:D2:5C:63:6D:3C:0C:67:87
Authority key identifier: B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
Certificate issuer: /CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Certificate serial: 019D99999C59585C70EA9DF9C9B7A0EEDA8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
Manifest number: 15E9
Signing time: Fri 17 Apr 2026 04:01:14 +0000
Manifest this update: Fri 17 Apr 2026 04:01:14 +0000
Manifest next update: Sat 18 Apr 2026 04:01:14 +0000
Files and hashes: 1: sqJAuTtHjJofashtrpYrfv2Lqkc.roa (hash: tKvEHWVGuDg8Tn8ekoHOsKqzA2uvyPQd/TrrxC4QRzA=)
2: tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl (hash: K1CkC7lIGUiBMpCFw2DOs78zyZVbESRLhL9JMxryeEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:9c:59:58:5c:70:ea:9d:f9:c9:b7:a0:ee:da:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4714bfd982ed297e5c73ece74d222e5274c1fb5
Validity
Not Before: Apr 17 04:01:14 2026 GMT
Not After : Apr 18 04:01:14 2026 GMT
Subject: CN=d75dcea37730c18ef0328ef5d25c636d3c0c6787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:58:2a:a4:1e:1e:bc:10:1c:44:68:9f:e3:00:
29:82:51:e3:af:31:7d:3d:bc:99:48:4b:f0:f7:76:
b9:a7:ef:81:fa:8d:4e:5f:00:df:a1:cf:2a:a7:b5:
a9:d9:eb:2c:78:70:3f:94:53:26:08:1e:1d:bd:9e:
27:f1:19:65:5e:ee:86:46:81:c3:4f:84:42:c8:0a:
e8:31:54:bc:05:8b:bb:68:49:e6:fd:b7:0a:ba:27:
48:cd:7d:31:42:f5:b0:18:5d:18:fb:ec:14:52:24:
6e:16:36:c7:86:56:55:db:79:2d:13:2e:d0:1b:32:
84:0c:47:b5:db:b2:b3:60:0b:06:31:0f:02:76:cb:
2c:18:59:68:ac:cc:6b:a5:f2:a6:3c:ab:25:49:93:
27:e5:8e:a4:d2:b9:9e:0e:7e:7d:c9:2a:28:f1:27:
b5:16:ff:2c:84:b1:df:c6:85:ab:22:31:6f:26:c1:
de:98:cf:69:6a:72:50:59:71:a3:c9:a3:d4:cf:54:
ca:dd:b6:32:09:c9:6c:bc:ca:49:fd:ed:6d:56:99:
16:a9:37:a9:df:70:e8:a9:75:a5:d3:97:91:c3:3f:
48:83:80:d7:ab:10:d4:c2:66:47:d1:0b:5c:98:e7:
e6:cc:e6:c8:c2:ee:8a:54:90:3e:be:23:d4:30:d2:
41:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5D:CE:A3:77:30:C1:8E:F0:32:8E:F5:D2:5C:63:6D:3C:0C:67:87
X509v3 Authority Key Identifier:
keyid:B4:71:4B:FD:98:2E:D2:97:E5:C7:3E:CE:74:D2:22:E5:27:4C:1F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHFL_Zgu0pflxz7OdNIi5SdMH7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/cf7718-274d-412b-b755-62ea1e7e8fc6/1/tHFL_Zgu0pflxz7OdNIi5SdMH7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:cf:4e:45:37:96:2b:58:90:18:78:4c:c7:c9:12:e8:bc:47:
5c:93:a7:fe:45:e5:3c:5f:f7:d4:79:e6:10:d7:66:77:92:eb:
70:ff:86:34:cc:8e:6e:58:c4:cf:82:1d:b6:b9:65:5b:d5:1c:
90:6a:19:4d:13:3a:63:2e:69:7a:2d:b2:0e:73:68:da:82:ea:
88:2d:35:f4:c7:42:32:a9:ba:da:5f:14:01:c9:92:45:ee:ba:
ea:e6:11:b9:7b:b0:d5:10:98:ea:b5:26:b8:3a:e6:02:6b:90:
09:5f:f8:3c:79:46:ae:b7:8e:8b:c2:44:17:72:bd:77:66:d1:
3d:18:a5:aa:93:58:b0:1d:95:15:e6:bb:9e:cf:98:81:72:2b:
43:b6:73:6b:52:fb:a1:b7:3c:a2:dd:26:fa:b9:d7:7b:98:5e:
a8:bf:b5:69:6e:e1:fc:26:df:01:2a:b3:a2:bb:10:a4:8b:5f:
46:75:09:fa:1e:53:c3:76:da:1d:65:2b:50:79:83:3c:d5:d5:
b5:9a:7e:a0:f4:75:7d:96:3b:80:f3:cc:4f:1a:d2:b6:70:f1:
3b:b4:87:1e:1f:05:f5:aa:7d:5c:8e:12:0b:04:0c:60:f1:a7:
52:f1:1c:cd:da:b8:77:66:b3:d9:c1:79:30:b6:62:4a:ec:61:
51:c3:43:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:56:36 2026 by rpki-client