Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
File: tpHQC9tiauVzB9XNTord2UdWgLM.mft (raw, json)
Hash identifier: hQ0ntaVUp0cuikVqLXuF4GT/ceTak4TGEKas/rO9Mxs=
Subject key identifier: 37:A2:4E:04:41:68:3D:5D:18:F2:C4:2F:9F:F4:43:AF:7F:B4:0D:06
Authority key identifier: B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
Certificate issuer: /CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Certificate serial: 019D9961DF2C310803A0498708F8C72A7626
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
Manifest number: 1195
Signing time: Fri 17 Apr 2026 03:00:21 +0000
Manifest this update: Fri 17 Apr 2026 03:00:21 +0000
Manifest next update: Sat 18 Apr 2026 03:00:21 +0000
Files and hashes: 1: jWxX2tMKxMJdIFHBL77hb_xE7Lk.roa (hash: ZabLLdJJR9GqGbqwCz27PSZyCvB4TLOCdk9dPP8Hc2Q=)
2: tpHQC9tiauVzB9XNTord2UdWgLM.crl (hash: eoGAmC4KXiTA0E36ZRVyb++6bF0HcmC3sl4qOGH4AHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:61:df:2c:31:08:03:a0:49:87:08:f8:c7:2a:76:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b691d00bdb626ae57307d5cd4e8addd9475680b3
Validity
Not Before: Apr 17 03:00:21 2026 GMT
Not After : Apr 18 03:00:21 2026 GMT
Subject: CN=37a24e0441683d5d18f2c42f9ff443af7fb40d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:14:66:c2:9e:dd:2e:d8:c7:7d:4a:58:eb:e6:
aa:84:8c:3c:57:7f:e4:b6:e4:55:4f:a1:6b:61:1d:
bb:a1:c4:54:ac:25:b6:cb:be:40:a9:da:5d:6c:52:
ba:bb:9f:42:b3:2f:93:39:f6:4b:15:8b:2d:c7:1f:
f6:bf:24:78:b4:c5:88:23:cd:d5:9f:33:37:7e:4e:
2a:d6:44:05:9a:46:9f:83:67:11:de:a2:c1:59:0c:
a4:d0:8e:19:81:b2:52:64:1d:e7:41:a7:b0:e3:d4:
12:14:7a:dc:cd:68:6d:45:e4:48:60:cf:f4:00:1f:
8e:d5:5d:07:de:cf:03:71:21:b1:e8:5f:7c:fc:41:
9a:de:67:11:31:45:9b:34:86:dc:c3:6a:f2:89:80:
cd:ca:13:b1:9e:17:ef:a1:f5:e0:58:46:cb:13:a8:
da:98:ad:2e:4d:10:a4:f3:81:fd:e1:35:b0:84:6d:
4d:1a:4d:b2:f7:7d:00:fb:7b:1b:0c:60:f1:83:0c:
fb:a9:75:57:55:14:7b:b5:e0:19:87:ef:51:c6:00:
6f:ca:dc:4c:58:a4:f8:57:22:f9:21:f8:a0:e3:3d:
ce:59:30:8a:00:5d:0f:21:c2:4f:fd:d0:21:da:14:
06:bb:b5:ac:7a:09:1f:cd:19:37:8d:75:20:5d:de:
fd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A2:4E:04:41:68:3D:5D:18:F2:C4:2F:9F:F4:43:AF:7F:B4:0D:06
X509v3 Authority Key Identifier:
keyid:B6:91:D0:0B:DB:62:6A:E5:73:07:D5:CD:4E:8A:DD:D9:47:56:80:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpHQC9tiauVzB9XNTord2UdWgLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3e3d08-e4c5-4f3d-be01-450ad55d325a/1/tpHQC9tiauVzB9XNTord2UdWgLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:f3:fe:09:23:59:ed:05:0a:48:dd:62:dc:00:52:c1:e2:4a:
48:91:49:02:26:67:ea:01:a3:d7:9b:4a:86:88:83:f6:2a:bc:
8c:93:33:18:4f:f9:c0:6e:6b:fe:00:b2:ed:42:f1:d9:8c:d6:
68:f4:95:c2:d4:11:4c:40:bc:ff:0c:6d:86:fd:a6:f7:8b:36:
b0:29:02:b8:08:63:cc:c2:b0:89:04:d4:c1:e3:cc:7d:ec:21:
2c:0a:25:8a:8e:64:ba:fd:f3:c1:4a:68:08:2b:b1:a1:81:6a:
9e:9e:3e:4d:83:a1:5e:fc:ea:9f:69:b4:c3:29:84:9a:26:4a:
4c:58:ad:78:71:26:50:ce:7e:eb:16:63:cf:09:ca:3b:16:51:
b7:bc:3d:73:33:63:77:b0:0d:52:e8:2b:e2:3b:86:20:1f:37:
d8:f2:86:e0:64:5a:8b:64:48:09:d5:83:00:06:8a:b0:51:16:
9c:76:f3:ad:f7:c5:cb:d4:c2:f4:8e:66:7b:e5:74:fc:f8:ec:
e1:55:1f:d7:9b:06:98:8c:f8:3c:78:43:95:3a:d2:66:eb:d8:
6b:99:b4:b6:ba:01:9b:18:fb:df:bd:a4:73:fe:84:b2:7b:8f:
74:43:de:76:35:b5:18:4c:01:f2:04:e2:6a:fa:71:a0:0a:ca:
d4:dc:fb:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:38:25 2026 by rpki-client