Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
File: txRZXFDDUZIbDemldUChXlwcYYo.mft (raw, json)
Hash identifier: w8yhrmmmnVs0FjlpleXeshzgabDdG5x022tuwgNbqKg=
Subject key identifier: 27:54:8D:20:4D:27:26:55:32:31:F1:BB:C6:55:7D:AD:BE:FA:0D:3C
Authority key identifier: B7:14:59:5C:50:C3:51:92:1B:0D:E9:A5:75:40:A1:5E:5C:1C:61:8A
Certificate issuer: /CN=b714595c50c351921b0de9a57540a15e5c1c618a
Certificate serial: 019D9A74C46084EF22366B0F206E06BCAE4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
Manifest number: 1324
Signing time: Fri 17 Apr 2026 08:00:36 +0000
Manifest this update: Fri 17 Apr 2026 08:00:36 +0000
Manifest next update: Sat 18 Apr 2026 08:00:36 +0000
Files and hashes: 1: GuWBmwhJapEp_BmmuNbZSMGsF-Y.roa (hash: XKoJ/kEd+7q2jht4EhlLR7+g4VG6e/EP//UCSF6Kcuw=)
2: txRZXFDDUZIbDemldUChXlwcYYo.crl (hash: StuSD57JbGAYbKaMnkshKig+Tph69lP7YPGsbTh/m/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:c4:60:84:ef:22:36:6b:0f:20:6e:06:bc:ae:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b714595c50c351921b0de9a57540a15e5c1c618a
Validity
Not Before: Apr 17 08:00:36 2026 GMT
Not After : Apr 18 08:00:36 2026 GMT
Subject: CN=27548d204d2726553231f1bbc6557dadbefa0d3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:72:1e:0e:4e:a8:d8:7d:f4:67:4c:b1:90:7a:
f8:9a:08:81:76:97:c6:59:d2:54:c4:ab:0c:9b:83:
ba:0c:01:89:3f:57:89:8a:55:85:6b:1a:c7:1f:a7:
a5:06:64:1e:b4:8f:82:23:fe:3d:d6:7a:c3:85:6d:
94:70:c4:33:e5:2b:a8:14:72:a5:2d:77:88:f6:28:
4e:f2:5b:06:cd:72:93:d2:c2:82:ba:b3:ee:20:cd:
ec:e8:4f:38:55:4f:ac:97:e5:32:6e:56:81:07:43:
6f:d3:ea:d8:ca:5b:82:bd:2f:7c:5a:06:73:da:22:
79:a6:37:4a:ed:69:95:18:b6:c8:44:b0:dc:92:3c:
8d:84:68:01:bf:6e:6f:c7:62:7f:fa:ce:ff:0f:7b:
6b:ca:e1:66:06:9d:d9:4c:bb:3f:fa:b6:d0:19:ab:
b0:a6:f7:62:0c:65:30:42:a3:11:ea:7a:63:69:fc:
d7:39:65:f7:9b:60:44:ba:ea:76:cf:19:df:e7:4f:
13:a5:ea:b3:fe:3e:c8:09:ca:43:0e:d2:85:bc:ff:
15:fa:e8:82:33:53:ee:0e:ac:da:a9:cb:cd:ab:05:
9b:9c:b1:da:68:f3:12:7a:27:38:ec:a9:44:f1:51:
66:39:9e:1c:2d:b4:44:1a:cb:72:b9:77:73:8f:65:
33:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:54:8D:20:4D:27:26:55:32:31:F1:BB:C6:55:7D:AD:BE:FA:0D:3C
X509v3 Authority Key Identifier:
keyid:B7:14:59:5C:50:C3:51:92:1B:0D:E9:A5:75:40:A1:5E:5C:1C:61:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/txRZXFDDUZIbDemldUChXlwcYYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2a420d-9d0e-4ea8-95bc-f53d9e36e95a/1/txRZXFDDUZIbDemldUChXlwcYYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:6d:ac:4c:52:b2:c9:fb:1b:18:1b:03:f6:92:ea:73:09:a3:
e3:e7:d5:62:68:eb:a8:58:47:6c:7d:4f:c3:89:ad:90:25:3a:
e3:21:fa:e0:f4:5a:08:b8:64:c8:ff:5f:6b:31:8f:d6:9d:a2:
95:76:b2:55:4d:3c:2f:35:9d:27:18:56:c8:3f:55:48:6c:8e:
8e:74:61:5c:e4:36:8d:8d:c9:38:82:9d:da:f5:28:7f:23:a9:
1f:76:bf:c1:2a:7b:07:79:b2:04:22:fc:32:05:e1:e4:77:d4:
92:4b:a0:21:21:8d:df:97:da:e1:93:e7:d5:92:64:7d:b6:2c:
e7:a1:a4:c0:8b:73:6c:bf:34:9a:a2:4a:3d:2d:42:44:05:a4:
be:47:9b:f5:c2:34:ac:d3:5c:62:5c:1a:1c:9a:e7:d0:19:5e:
c8:22:b3:db:ce:53:63:fd:b7:8e:ad:c6:b6:9a:74:99:06:90:
e6:13:f5:bb:77:b2:a2:05:0e:ae:36:70:e9:1c:b0:6c:26:3b:
a1:cd:53:48:4f:43:2d:26:8c:3f:04:07:a1:cf:83:04:32:56:
c0:ec:94:f6:66:78:76:e9:cb:40:8c:c0:0a:bf:ed:e6:95:5c:
9a:ed:0d:f4:63:9f:a9:f6:a7:09:08:0e:97:27:c2:97:91:b1:
04:76:43:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:44:28 2026 by rpki-client