Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
File: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft (raw, json)
Hash identifier: AYvYVPrJkAGrUXJyPuE67NpR6uvcYJ61cr5CSG6Oj7M=
Subject key identifier: 34:F3:99:1A:D1:66:D0:0D:94:90:94:55:7C:AB:7D:56:E9:B9:2F:22
Authority key identifier: 4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
Certificate issuer: /CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Certificate serial: 019EBF5AEECDCFE973E8EDDFE039BAFA2D8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
Manifest number: 18EC
Signing time: Sat 13 Jun 2026 05:01:07 +0000
Manifest this update: Sat 13 Jun 2026 05:01:07 +0000
Manifest next update: Sun 14 Jun 2026 05:01:07 +0000
Files and hashes: 1: 6Ph7OTwTn7R5BOZ8XlW_NErMT_M.roa (hash: Xi80ayzCKRN90pBTc/TWfWw+UkNkUlSPBpPp4lAP3a8=)
2: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl (hash: XE5JkRE0xxxnWTHhGhCuLg5GBiim7MmuUkoaD7X/Zng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 05:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:ee:cd:cf:e9:73:e8:ed:df:e0:39:ba:fa:2d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Validity
Not Before: Jun 13 05:01:07 2026 GMT
Not After : Jun 14 05:01:07 2026 GMT
Subject: CN=34f3991ad166d00d949094557cab7d56e9b92f22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:46:71:95:59:3f:ec:dc:9b:66:38:f1:d9:5a:
89:54:d4:16:1e:06:30:0e:88:6f:fd:c0:0a:71:37:
ba:bb:b3:5e:b9:e8:6f:84:79:c8:99:e9:33:fa:36:
06:e5:dd:a4:20:d2:8e:0c:5d:71:50:89:02:dd:61:
8c:72:b5:0b:f4:b2:78:dd:0a:83:62:78:4e:27:a2:
34:e3:3b:d4:25:10:98:16:24:9b:6e:9e:82:d6:be:
ec:9b:21:53:53:3b:43:e6:99:91:fa:19:05:3d:28:
99:07:4d:a9:26:d9:3a:39:b4:d0:b6:c1:3d:eb:9d:
55:aa:ca:06:aa:22:a7:db:d2:78:e3:1b:a8:13:be:
87:5d:d1:19:b7:75:11:a0:02:7f:5f:51:e0:11:38:
a2:66:18:e7:f0:b0:e6:23:b3:d9:47:ad:29:87:90:
0f:3e:62:c0:94:5a:4b:f1:8b:0e:6d:0a:33:47:fe:
60:e3:e4:32:a1:f8:99:49:ba:4c:81:ff:ed:62:9e:
18:4e:9a:d1:86:7f:25:49:60:79:bd:0e:ba:62:b3:
10:ef:d4:cc:28:62:b2:a6:e5:e2:a8:a9:5a:33:08:
61:a1:04:7f:8b:b0:58:00:d8:78:47:ff:69:73:6b:
74:3d:be:85:72:51:81:fc:ad:53:8b:8a:76:b8:f4:
83:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:F3:99:1A:D1:66:D0:0D:94:90:94:55:7C:AB:7D:56:E9:B9:2F:22
X509v3 Authority Key Identifier:
keyid:4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:44:a1:62:ca:0d:6e:85:92:d3:48:52:00:d4:df:75:d4:0b:
6f:48:91:23:0f:c8:4e:c1:5d:a2:cb:03:b0:0f:c3:4a:bf:45:
55:33:3b:97:70:b9:49:90:84:71:f1:75:76:88:12:f0:8d:72:
82:19:8a:5c:3a:25:d7:13:a6:d7:13:a4:c0:7b:b6:8f:11:38:
43:07:5e:45:65:e5:32:73:fe:2e:73:1a:cf:a4:95:4f:0c:81:
e4:90:75:4d:e8:d0:5d:6f:88:73:85:46:9d:40:d5:c7:94:66:
e2:fc:d6:40:09:3f:be:38:c6:c0:9c:54:e4:96:83:b1:95:e5:
53:e1:96:d0:f9:07:db:70:eb:43:c8:83:2e:f9:35:8b:9f:b6:
e0:17:c8:ce:ad:a3:04:09:e3:30:d2:cb:9a:48:17:a4:3e:2f:
14:c3:07:4d:c7:35:d7:91:eb:64:02:56:e1:ec:bd:06:a8:57:
2b:dc:c7:ee:e8:e6:6e:bc:22:ea:c1:65:7d:22:e2:b2:b6:6a:
b3:52:cf:bc:9c:15:7c:2f:4c:ae:d9:74:19:be:fe:89:83:fc:
5c:a4:7c:62:e6:32:15:ec:3e:07:2d:1b:fc:c8:57:67:9b:0c:
cd:d6:91:b6:7d:2e:03:53:e7:81:ef:a1:b3:ac:ec:2f:8c:21:
4d:4c:3e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:26:42 2026 by rpki-client