Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
File: tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft (raw, json)
Hash identifier: HpsSxHS45RVFLrwvDGqd2f1kNpYIX990UojgZihss84=
Subject key identifier: B3:B4:9B:C7:AB:97:21:4E:40:04:ED:0C:06:1E:FA:32:CB:1F:80:B3
Authority key identifier: B4:A3:A9:BE:77:E2:D9:FD:E7:FF:E1:F5:16:29:F9:4E:98:EA:3C:D8
Certificate issuer: /CN=b4a3a9be77e2d9fde7ffe1f51629f94e98ea3cd8
Certificate serial: 019D9962C1CFBD95DC725BEA1A83AC0A179A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
Manifest number: 0AD6
Signing time: Fri 17 Apr 2026 03:01:18 +0000
Manifest this update: Fri 17 Apr 2026 03:01:18 +0000
Manifest next update: Sat 18 Apr 2026 03:01:18 +0000
Files and hashes: 1: tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl (hash: zNOQ+s235Q9Hro2PDW812oXCpf8yuWho2/xjO8s8zRk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:c1:cf:bd:95:dc:72:5b:ea:1a:83:ac:0a:17:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a3a9be77e2d9fde7ffe1f51629f94e98ea3cd8
Validity
Not Before: Apr 17 03:01:18 2026 GMT
Not After : Apr 18 03:01:18 2026 GMT
Subject: CN=b3b49bc7ab97214e4004ed0c061efa32cb1f80b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ee:cf:76:8d:c3:45:03:c5:a6:76:c9:da:30:
d8:d2:68:b0:19:f6:cf:71:7d:2c:75:bb:4b:ed:ba:
2e:06:16:be:f5:32:d5:0a:5f:fb:e1:ce:49:2b:3a:
af:71:8b:44:ea:c7:7d:a8:d6:cb:9c:62:9f:42:59:
b5:d5:9f:83:55:9e:87:5b:ea:1c:92:ae:7c:a0:2b:
85:65:47:32:10:5b:50:57:99:99:d0:eb:83:82:37:
97:9a:8b:65:ef:01:15:4e:c8:18:5a:89:1e:df:b4:
1a:10:ed:bc:44:e6:89:d5:c0:3f:90:ce:5e:45:b2:
eb:d1:e1:24:63:06:d5:03:f0:7b:4f:91:0f:ed:b4:
e3:00:69:76:d9:a8:bb:81:fe:a4:97:2e:50:44:eb:
a1:b8:73:6c:c8:2f:d1:bb:25:af:95:18:01:75:d4:
ce:20:b2:04:e9:b2:4b:7c:3d:6e:a9:76:e6:ab:df:
d6:73:57:9c:4a:0d:43:52:64:36:be:2f:80:43:ce:
4e:15:88:86:80:b0:f3:4c:be:a8:44:c0:f5:92:66:
dc:81:13:31:73:ca:8e:b1:6d:c1:5a:83:e4:30:33:
91:91:98:14:63:da:87:6c:73:dd:2d:ca:f7:61:fe:
1a:ea:48:30:de:6c:b1:64:ed:87:cb:ea:cd:d1:ba:
87:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B4:9B:C7:AB:97:21:4E:40:04:ED:0C:06:1E:FA:32:CB:1F:80:B3
X509v3 Authority Key Identifier:
keyid:B4:A3:A9:BE:77:E2:D9:FD:E7:FF:E1:F5:16:29:F9:4E:98:EA:3C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:ff:97:e8:7f:d6:a7:1e:99:16:61:72:99:45:f5:78:4e:4a:
53:15:29:f5:e6:34:22:31:44:5b:aa:6f:48:ab:f1:32:22:81:
75:4e:62:56:42:8e:a5:21:ce:9e:35:d0:72:e0:c7:f6:c2:c6:
05:3d:1f:62:fb:e1:6b:eb:03:5a:c3:0e:19:93:3b:84:7e:9a:
88:59:7f:d8:9f:62:cc:47:af:2f:9c:8d:70:cf:61:30:87:53:
44:0d:f2:37:08:8a:6e:19:0d:06:e4:48:b4:39:fb:91:64:44:
39:ab:92:c3:2e:0a:41:55:22:1f:5d:d5:65:6a:93:04:09:61:
40:1d:c2:96:bf:25:c3:2e:c6:19:68:c9:2c:ce:8c:b8:60:2d:
fa:f3:d6:1c:17:6d:d1:f4:9e:84:61:0b:9c:8a:73:f7:c0:25:
78:ea:79:d4:01:96:a8:70:19:e7:82:64:5f:e0:51:b3:e7:c3:
33:15:18:1d:9d:76:d4:08:1a:0f:25:27:10:e9:c8:69:75:db:
f1:42:d6:86:cd:ce:3a:70:99:5f:64:4e:f3:2c:cd:7e:62:45:
2f:fa:d7:aa:d7:fa:fe:95:a4:3a:45:56:a4:6d:79:69:77:24:
96:9b:5b:57:e3:c6:50:85:b4:1b:53:24:6a:ed:5a:bb:37:83:
21:95:42:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:47:30 2026 by rpki-client