Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json)
Hash identifier: Xu5BredTxeOyETcaHwQuE+B4C8Q19MpGB+rxGBS0vQQ=
Subject key identifier: A3:56:BB:3D:14:FC:E1:15:86:91:67:79:4B:5C:C7:F5:0A:1C:00:4D
Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c
Certificate serial: 019EC413504A13EA3BAEC80D55BD61910C4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
Manifest number: 04E2
Signing time: Sun 14 Jun 2026 03:01:00 +0000
Manifest this update: Sun 14 Jun 2026 03:01:00 +0000
Manifest next update: Mon 15 Jun 2026 03:01:00 +0000
Files and hashes: 1: 1-w3-HT-b4gN55Ez02d0Ltxhd_18.roa (hash: SZE3EWQBz3QYJjq31FoNPzS9VUyILcF5vCKxR6HmvGg=)
2: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: M35ncfFuHYbnpMyQfVQ8xzuK5PtHX6EvOBuMx4AflvY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 03:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c4:13:50:4a:13:ea:3b:ae:c8:0d:55:bd:61:91:0c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c
Validity
Not Before: Jun 14 03:01:00 2026 GMT
Not After : Jun 15 03:01:00 2026 GMT
Subject: CN=a356bb3d14fce115869167794b5cc7f50a1c004d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:1c:c6:26:aa:81:bd:6a:94:42:fb:e8:8e:a4:
df:ce:a9:4b:98:a6:cc:ad:68:7e:93:a0:0a:04:5c:
7f:da:07:bc:46:06:74:1b:0b:b2:f6:3f:e0:0d:5a:
aa:40:8a:6d:85:62:1a:5f:42:60:1d:c0:04:f0:a4:
21:74:f6:43:03:a4:c2:12:1b:78:68:f9:d8:29:9f:
1b:18:99:b6:f5:6f:37:c3:13:d8:d2:c0:ee:bd:9c:
b4:8a:a4:a4:8f:f4:9e:69:91:12:ee:0e:3f:8f:28:
e1:ae:4f:97:c7:1a:7e:43:fa:b9:5a:0e:97:05:95:
53:d0:82:6e:6e:30:0b:a3:00:fa:77:dd:80:5f:7f:
f0:e0:fc:c3:d5:11:c2:9e:2c:5e:f7:b0:3e:8c:e9:
fa:7f:24:36:fa:00:7e:87:39:f2:91:86:d0:d5:ca:
1a:ff:54:20:d4:3e:3c:33:dc:4a:2e:5b:b0:31:51:
f9:9e:29:5d:2e:23:49:8b:1d:22:ca:5f:9c:ce:1b:
e8:fc:5c:47:cb:ca:30:73:d8:2b:07:05:9b:84:ab:
33:31:ab:bc:6c:f5:4a:c9:26:57:d4:23:14:44:cc:
d7:5b:a2:8c:c4:c0:16:c3:48:d1:79:42:73:35:0a:
98:28:67:0d:48:d5:5b:94:4d:9e:65:2c:96:e3:a3:
f3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:56:BB:3D:14:FC:E1:15:86:91:67:79:4B:5C:C7:F5:0A:1C:00:4D
X509v3 Authority Key Identifier:
keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:e0:66:6d:d9:d9:fc:23:e1:77:62:9a:7a:cf:d8:c7:6c:e9:
12:3f:7d:fd:c8:25:d5:f7:7f:27:81:41:9f:ea:82:65:41:40:
b8:b9:17:54:d9:a3:82:aa:38:97:d4:19:77:44:33:7b:c1:6a:
e5:69:00:95:a4:2f:ae:a9:69:0a:2c:1e:e2:17:f2:1a:c9:29:
b0:ea:f6:9c:7c:e5:04:ff:e6:ec:80:a2:ac:6b:0c:ad:ad:d1:
ae:a2:02:df:ca:36:b3:7e:05:19:fd:3b:ca:47:bc:1e:35:95:
ca:1d:08:3f:b8:06:b9:d0:90:f2:10:c2:d0:9a:8c:da:ec:08:
b3:aa:7e:58:17:89:59:4e:e8:a2:d5:84:d4:41:05:ae:81:19:
e3:e8:04:24:38:a4:11:49:58:ee:34:e3:a7:26:78:fe:ff:15:
9e:44:1a:fc:cd:a9:ac:2e:c3:cd:93:8c:cd:f5:25:00:65:86:
43:d0:e6:ad:38:92:9e:f4:6c:54:a7:8c:0d:77:56:fb:9e:b4:
14:6c:77:2e:bf:74:c2:39:48:d5:f1:1b:f1:27:4f:7a:e6:e5:
75:96:30:db:0e:34:f6:3e:41:a6:a4:7c:11:12:df:7f:1f:92:
62:1f:32:97:21:c7:3c:91:de:9f:e0:31:ec:d1:11:f2:f4:40:
1d:b5:d1:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 09:35:49 2026 by rpki-client