Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json)
Hash identifier: KKzHU425MnTBLaE+PN2GsMk7qHE//bbBYmWDFGacKCw=
Subject key identifier: 78:72:26:C6:4F:E5:71:FE:68:0F:A1:EA:4F:21:C6:A8:5E:E2:82:94
Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c
Certificate serial: 019D9C9A0CE8EFD3EE1F6CD9DE1FDFE037D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
Manifest number: 0449
Signing time: Fri 17 Apr 2026 18:00:34 +0000
Manifest this update: Fri 17 Apr 2026 18:00:34 +0000
Manifest next update: Sat 18 Apr 2026 18:00:34 +0000
Files and hashes: 1: 1-w3-HT-b4gN55Ez02d0Ltxhd_18.roa (hash: SZE3EWQBz3QYJjq31FoNPzS9VUyILcF5vCKxR6HmvGg=)
2: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: qwgMMEhVQxhABOtWCwfsOCgGrw9EOYW+N/ab6ZtIZks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:0c:e8:ef:d3:ee:1f:6c:d9:de:1f:df:e0:37:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c
Validity
Not Before: Apr 17 18:00:34 2026 GMT
Not After : Apr 18 18:00:34 2026 GMT
Subject: CN=787226c64fe571fe680fa1ea4f21c6a85ee28294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ca:7d:24:ec:29:d1:98:b9:21:df:a9:5f:05:
e2:24:2b:86:a2:06:68:33:5f:ad:12:2d:f3:d9:6d:
c4:9a:58:42:e4:df:21:3d:2d:90:cc:01:f5:81:c5:
0d:c2:52:86:e2:2d:a1:8f:5f:e7:d1:f6:38:b2:95:
4e:38:e6:8d:73:0e:22:b6:3a:98:95:bf:38:25:86:
d0:97:ec:c9:b7:33:a3:fd:4e:8b:5d:7f:2f:00:20:
94:41:8f:7a:65:f6:c8:22:41:e3:cd:a3:78:3d:d7:
34:94:1c:d1:7a:f3:71:bb:bd:69:28:ee:d9:8f:aa:
ad:e8:a5:e7:df:f6:77:8f:4a:dd:a1:d1:73:ba:ae:
a1:ad:5f:da:7a:9e:97:a0:d3:b3:59:6e:93:eb:43:
eb:b7:ee:a3:f2:30:22:86:98:ab:45:59:de:52:d3:
fc:21:03:d2:1d:e1:e6:6d:95:76:dd:27:8f:0f:22:
dc:56:c3:98:84:1f:93:98:50:51:20:25:31:7e:a7:
96:0b:fd:72:5b:e6:9f:69:1c:22:3e:60:78:39:41:
77:2f:68:61:66:cd:66:c1:f8:84:c9:80:0d:f5:e2:
17:96:c2:05:f1:a9:6a:79:ca:51:0d:ae:99:e1:f4:
82:72:a3:88:ea:f2:83:6d:ca:c6:95:2d:19:8d:7d:
24:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:72:26:C6:4F:E5:71:FE:68:0F:A1:EA:4F:21:C6:A8:5E:E2:82:94
X509v3 Authority Key Identifier:
keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:e5:ef:2f:a5:2a:f6:80:9b:88:8f:87:df:50:92:7c:21:d1:
29:e4:8e:91:75:98:87:6c:01:31:89:ec:b6:a4:c3:f7:81:6c:
14:b2:40:6a:d4:ec:df:d6:37:02:dc:c6:a9:51:28:06:8f:81:
16:68:59:97:89:1f:bd:79:f1:bd:02:4f:3d:24:7a:e1:16:11:
ec:a6:3e:22:02:74:75:86:bf:40:fe:d4:49:9d:59:eb:3f:86:
71:4e:7d:e3:23:9b:f2:01:b4:e9:e0:69:ff:ec:a7:bb:fa:77:
f6:1b:be:98:1d:53:6f:0c:2f:0b:dd:25:9d:72:c2:04:65:d2:
a1:e7:9e:8c:25:62:1b:c1:01:9d:9f:ca:30:cf:cd:6d:31:20:
06:f0:c1:3c:65:91:47:67:72:06:00:db:39:4c:30:59:cf:22:
dd:90:df:4b:11:04:80:a1:90:cd:e7:fe:dd:aa:db:0c:4b:22:
ae:72:73:55:92:3e:f1:ad:ba:91:05:7d:50:34:a9:a8:43:0d:
77:a7:06:1c:54:f5:d3:6c:c8:e9:04:88:40:1f:f2:a5:86:39:
67:f7:bb:2b:2d:fa:7d:99:56:8e:65:09:5a:49:34:21:2e:d7:
fc:0e:b5:00:8e:48:c0:5e:b9:b8:2b:45:6e:e8:ef:7d:8e:8f:
d2:a0:d3:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:29:46 2026 by rpki-client