Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
File: TBdAzvl0ncKw9fiM3xA02oHWBtw.mft (raw, json)
Hash identifier: GoKy29Ae5ALt6C62Su7t7WNxhsuCVUwkL6yHudbGAmw=
Subject key identifier: 80:3B:2A:39:26:28:96:AA:DE:69:E4:3F:66:E0:C4:50:46:E6:E7:42
Authority key identifier: 4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
Certificate issuer: /CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Certificate serial: 019D9A3EBE7FB32C9AF55DCF88FF82228EC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
Manifest number: 1241
Signing time: Fri 17 Apr 2026 07:01:36 +0000
Manifest this update: Fri 17 Apr 2026 07:01:36 +0000
Manifest next update: Sat 18 Apr 2026 07:01:36 +0000
Files and hashes: 1: TBdAzvl0ncKw9fiM3xA02oHWBtw.crl (hash: VWiJoM1JPeJMuQ50FKTbnk8Vqbv7Qqsbo3X7Zq8G29k=)
2: YVsXJWPnPlqWMFeltxgBZhUCs4Q.roa (hash: q9sjXMHf5vLLJ+Iss0xTQC2tfqQnUkneeNz0HcAGC9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:be:7f:b3:2c:9a:f5:5d:cf:88:ff:82:22:8e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Validity
Not Before: Apr 17 07:01:36 2026 GMT
Not After : Apr 18 07:01:36 2026 GMT
Subject: CN=803b2a39262896aade69e43f66e0c45046e6e742
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6b:76:bf:89:89:79:64:f5:bc:01:e3:52:84:
e8:0f:3c:38:b1:63:60:88:43:0c:da:70:53:a8:ff:
9a:4d:d8:bb:a5:3c:c3:b8:94:5a:8a:16:ba:cc:3c:
c2:9a:59:3d:8a:db:f5:ee:3e:2b:a0:26:09:6e:d8:
63:90:91:24:22:29:9f:71:ec:92:66:12:d9:b1:70:
65:58:21:76:06:80:6d:79:5e:7a:10:e6:25:33:8a:
3a:2f:ef:75:a1:c1:48:d1:a7:de:ae:3d:62:02:ad:
ce:a2:d0:1d:3c:49:d7:d1:ef:4b:9d:2a:83:db:b1:
05:71:65:27:2d:cc:02:3a:6c:01:c1:bb:16:3c:a6:
a4:3d:4d:75:25:7e:8f:21:af:48:4d:52:b3:d4:95:
e3:75:cf:eb:73:63:10:96:98:cd:89:a1:a8:27:1a:
13:98:83:58:a6:88:dc:1a:58:91:10:9a:c1:90:4d:
31:85:f5:e2:dc:a8:ca:a3:68:b8:e0:5e:ec:53:0b:
ab:a1:83:28:1a:29:44:f7:43:fa:4c:47:ff:b8:d2:
de:52:56:b4:55:05:58:45:58:3d:b1:48:1d:64:d0:
28:89:04:f0:2f:06:99:7d:25:fb:14:d0:9b:18:c8:
3e:6f:1c:3b:bf:18:e3:03:e9:a0:64:59:7e:58:4e:
b7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:3B:2A:39:26:28:96:AA:DE:69:E4:3F:66:E0:C4:50:46:E6:E7:42
X509v3 Authority Key Identifier:
keyid:4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:4b:91:8c:1b:03:51:0d:63:f1:ca:13:e2:87:a5:3a:90:60:
a6:27:6a:5b:e1:60:c9:a1:c7:31:c3:c8:53:bc:1e:0d:63:17:
ca:79:72:aa:e2:70:13:19:8a:b4:4c:08:90:2d:69:9e:4d:54:
1b:86:87:2e:09:5a:65:5e:38:62:f8:31:b0:b1:3f:45:d5:8f:
fc:40:6d:15:11:85:30:84:c5:aa:70:3f:b5:fd:a1:e5:58:6e:
30:3f:87:1d:5d:0c:bd:32:62:01:d6:9b:b1:82:b4:e0:36:29:
2d:77:f6:5a:a4:c2:9b:08:7f:15:70:b3:89:e6:5c:a0:3e:96:
7a:15:45:53:75:33:9d:31:5c:d6:be:b4:0e:b8:2d:ae:75:df:
0b:38:bb:c5:47:ee:ef:bb:cd:5f:aa:92:c1:d4:ff:9c:4f:c5:
9d:2e:43:72:e4:b1:97:5a:77:65:33:d3:ca:bf:f8:c5:79:0a:
9c:95:68:63:0e:6d:9e:9a:b1:a5:b2:5c:a2:a0:91:41:7e:76:
37:57:5d:22:61:f1:16:79:ee:88:ce:b6:72:52:b8:be:b2:01:
56:60:05:90:33:df:2a:a3:64:b9:07:aa:39:b1:15:f6:6d:06:
69:e0:20:e6:57:69:14:96:bd:bf:11:10:8a:62:8a:dd:bd:d7:
a4:12:60:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:26:44 2026 by rpki-client