Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
File: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft (raw, json)
Hash identifier: fENH7byyCFC7G6Xr1rTuvNFCsy/cbXY0WDnzrGiix6g=
Subject key identifier: 3F:6F:FA:65:A1:5E:7C:25:5B:20:26:6E:25:79:D8:3C:BB:8B:44:7B
Authority key identifier: 4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
Certificate issuer: /CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Certificate serial: 019D99CFE228FAF860DE6F65ED207F6C3A31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
Manifest number: 1854
Signing time: Fri 17 Apr 2026 05:00:31 +0000
Manifest this update: Fri 17 Apr 2026 05:00:31 +0000
Manifest next update: Sat 18 Apr 2026 05:00:31 +0000
Files and hashes: 1: 6Ph7OTwTn7R5BOZ8XlW_NErMT_M.roa (hash: Xi80ayzCKRN90pBTc/TWfWw+UkNkUlSPBpPp4lAP3a8=)
2: TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl (hash: JuuVhdcVh7az4IjWZTUfAXd8MwInFp7Q7CKYwY4cCjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:e2:28:fa:f8:60:de:6f:65:ed:20:7f:6c:3a:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca509b35011ed71663952ba0e0c3c38457f9d07
Validity
Not Before: Apr 17 05:00:31 2026 GMT
Not After : Apr 18 05:00:31 2026 GMT
Subject: CN=3f6ffa65a15e7c255b20266e2579d83cbb8b447b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:03:ef:a8:23:2e:f3:fd:4c:c7:95:6c:23:e6:
6f:07:a5:92:94:d7:bb:bb:db:94:4a:b8:00:9e:24:
95:b0:72:07:1a:36:b3:6e:45:63:a7:5e:d4:d3:07:
10:84:35:05:22:37:0b:43:0f:94:3f:a9:a2:23:e5:
45:d1:b4:72:69:08:2f:74:60:30:c7:e2:19:66:c2:
30:35:ba:73:48:23:d1:98:b7:68:4a:4c:3a:7f:72:
0c:6b:55:00:25:51:30:81:6c:c1:2e:91:be:16:e4:
07:b9:d5:41:69:65:de:e4:2b:d8:c8:c8:b5:32:ce:
8f:a3:f6:73:f8:94:cc:5e:d6:65:ce:f7:27:4a:6c:
7a:2d:d4:cd:3a:e1:f0:d8:73:49:fa:bf:56:0a:c3:
f9:c0:9a:f4:cd:a0:79:90:b4:fb:28:e8:f8:59:b2:
1e:01:22:8b:46:b6:ba:52:e0:4a:fb:c0:35:79:ab:
c0:64:2f:ad:b4:30:f2:01:98:a5:78:3e:fb:28:a0:
0d:ed:b7:1b:71:2a:93:8d:88:5b:c4:12:62:5c:01:
96:a0:a0:61:9c:93:6f:89:38:b7:80:77:81:85:82:
bd:5a:a7:32:e8:70:f7:c1:91:09:09:5a:5a:4e:e2:
b1:2f:77:25:22:73:12:e3:b7:16:bb:fc:6c:f7:bc:
2e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6F:FA:65:A1:5E:7C:25:5B:20:26:6E:25:79:D8:3C:BB:8B:44:7B
X509v3 Authority Key Identifier:
keyid:4C:A5:09:B3:50:11:ED:71:66:39:52:BA:0E:0C:3C:38:45:7F:9D:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0a131e-37c6-45cb-9682-0b0c12b22bf9/1/TKUJs1AR7XFmOVK6Dgw8OEV_nQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:4d:2c:fc:33:ae:2a:88:17:7c:d9:50:5a:19:c1:fe:26:2c:
94:82:5e:bf:2c:db:c2:6d:3d:d8:70:13:d6:ea:d1:19:ba:2d:
76:97:24:74:c0:c7:13:b2:ea:a2:9c:2a:33:45:f8:d4:cb:6d:
8c:be:d5:21:9a:ab:bd:d5:ff:04:3f:2d:65:60:4d:38:56:2b:
5a:df:51:f3:67:ca:4d:e1:a8:9a:5b:0e:e3:97:56:e5:a1:d1:
67:66:c4:23:63:00:ea:a8:77:17:3c:d8:2a:3c:ec:77:af:37:
90:e3:15:83:78:d8:00:62:6a:8c:a0:90:dd:3d:85:1c:fc:0c:
17:ee:90:f2:fa:9a:ea:8a:e0:7e:9e:3f:1d:18:e9:d5:34:a9:
34:a6:70:cc:d4:5a:68:1c:99:ae:5e:fe:f4:3c:6b:f2:f4:b5:
f0:89:59:70:b7:5c:7b:ee:ae:f1:5e:48:4b:2e:ac:4d:e7:91:
82:d9:f4:6e:0d:69:07:bb:21:7e:96:ca:8a:71:ff:6f:f8:39:
50:35:22:02:cd:ae:49:40:2c:3b:93:b9:2e:65:e8:8e:4d:2b:
8b:cb:ea:38:e6:29:b0:47:5d:42:0f:1a:f6:d8:1b:10:4e:31:
b5:ea:87:71:97:d1:7b:76:ac:08:43:1f:81:1e:19:00:a1:8e:
05:5a:a7:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Zz+Io+vhg3m9l7SB/bDoxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYTUwOWIzNTAxMWVkNzE2NjM5NTJiYTBlMGMzYzM4NDU3
ZjlkMDcwHhcNMjYwNDE3MDUwMDMxWhcNMjYwNDE4MDUwMDMxWjAzMTEwLwYDVQQD
EygzZjZmZmE2NWExNWU3YzI1NWIyMDI2NmUyNTc5ZDgzY2JiOGI0NDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6wPvqCMu8/1Mx5VsI+ZvB6WSlNe7
u9uUSrgAniSVsHIHGjazbkVjp17U0wcQhDUFIjcLQw+UP6miI+VF0bRyaQgvdGAw
x+IZZsIwNbpzSCPRmLdoSkw6f3IMa1UAJVEwgWzBLpG+FuQHudVBaWXe5CvYyMi1
Ms6Po/Zz+JTMXtZlzvcnSmx6LdTNOuHw2HNJ+r9WCsP5wJr0zaB5kLT7KOj4WbIe
ASKLRra6UuBK+8A1eavAZC+ttDDyAZileD77KKAN7bcbcSqTjYhbxBJiXAGWoKBh
nJNviTi3gHeBhYK9Wqcy6HD3wZEJCVpaTuKxL3clInMS47cWu/xs97wu4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD9v+mWhXnwlWyAmbiV52Dy7i0R7MB8GA1UdIwQY
MBaAFEylCbNQEe1xZjlSug4MPDhFf50HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEtVSnMxQVI3WEZtT1ZLNkRndzhPRVZfblFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8wYTEzMWUtMzdjNi00NWNiLTk2ODIt
MGIwYzEyYjIyYmY5LzEvVEtVSnMxQVI3WEZtT1ZLNkRndzhPRVZfblFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8wYTEzMWUtMzdjNi00NWNiLTk2ODItMGIwYzEyYjIyYmY5
LzEvVEtVSnMxQVI3WEZtT1ZLNkRndzhPRVZfblFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOk0s/DOu
KogXfNlQWhnB/iYslIJevyzbwm092HAT1urRGbotdpckdMDHE7LqopwqM0X41Mtt
jL7VIZqrvdX/BD8tZWBNOFYrWt9R82fKTeGomlsO45dW5aHRZ2bEI2MA6qh3FzzY
Kjzsd683kOMVg3jYAGJqjKCQ3T2FHPwMF+6Q8vqa6orgfp4/HRjp1TSpNKZwzNRa
aByZrl7+9Dxr8vS18IlZcLdce+6u8V5ISy6sTeeRgtn0bg1pB7shfpbKinH/b/g5
UDUiAs2uSUAsO5O5LmXojk0ri8vqOOYpsEddQg8a9tgbEE4xteqHcZfRe3asCEMf
gR4ZAKGOBVqnlg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 08:03:41 2026 by rpki-client