Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
File: tPszH6QvtFHkVRxvkcu5wZ7jek4.mft (raw, json)
Hash identifier: gJ58jvjdW86BFTqSE0uk3pEz2ecYeB56ChJvS2bXO3c=
Subject key identifier: 00:09:C2:97:BD:62:91:53:B7:2B:68:12:22:2E:6D:0D:C5:11:B1:1C
Authority key identifier: B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
Certificate issuer: /CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Certificate serial: 019D9BF53533186D5B48F9232F47342D6063
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 15:00:31 +0000
Manifest this update: Fri 17 Apr 2026 15:00:31 +0000
Manifest next update: Sat 18 Apr 2026 15:00:31 +0000
Files and hashes: 1: UPwsUnhe4MrjeZvPRYpIDhPDKiI.roa (hash: gTNgkF2m3yFT5Gp1TKn07e+49JHxGZGWx9toGyIkemc=)
2: tPszH6QvtFHkVRxvkcu5wZ7jek4.crl (hash: E0h7tPkR6oLeiSXX8q+5rzMYRFKH1Rw7Ocv8k0SV3TQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:35:33:18:6d:5b:48:f9:23:2f:47:34:2d:60:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4fb331fa42fb451e4551c6f91cbb9c19ee37a4e
Validity
Not Before: Apr 17 15:00:31 2026 GMT
Not After : Apr 18 15:00:31 2026 GMT
Subject: CN=0009c297bd629153b72b6812222e6d0dc511b11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:48:13:e3:c4:c0:dd:0d:ae:a9:51:e9:88:37:
ee:ec:b9:b4:77:d2:64:40:47:6a:1e:bd:06:8c:e0:
76:d6:ed:e8:16:a5:3d:08:94:3d:18:0c:b6:20:82:
c8:f0:25:2a:7d:d1:9a:0e:00:f7:90:28:2e:00:58:
27:c2:07:d9:8f:42:ce:be:ab:98:eb:a4:bf:34:58:
92:02:39:d6:53:1a:28:e0:91:ed:3e:42:43:e7:8f:
f0:ca:4b:c5:b3:e7:e8:06:64:38:2d:f5:50:18:be:
9f:e8:5b:c2:8d:bf:6d:1b:d8:c8:d0:ba:5d:70:81:
c0:10:c6:c3:75:8f:25:98:94:ee:4e:45:5c:3e:da:
ff:cd:3e:36:10:8f:92:45:db:3c:bf:5c:e6:22:5d:
63:7b:20:a2:52:5e:a9:3d:6b:a7:d9:ce:dc:e5:df:
6d:bb:f5:52:fa:70:ce:a9:e1:ba:f7:73:65:8f:83:
f6:db:fd:f5:e6:cf:9b:c9:6d:36:13:e5:0f:da:83:
5a:2d:f6:00:23:02:fc:fa:9e:32:b3:fb:79:92:12:
94:cb:12:79:08:73:ff:a8:0c:f2:4e:d6:b5:af:a5:
04:0b:6a:4d:7f:76:9f:21:3b:6b:08:cd:9a:10:9b:
0d:37:bd:7a:81:e4:4b:41:e2:47:25:21:0c:fb:ce:
9f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:09:C2:97:BD:62:91:53:B7:2B:68:12:22:2E:6D:0D:C5:11:B1:1C
X509v3 Authority Key Identifier:
keyid:B4:FB:33:1F:A4:2F:B4:51:E4:55:1C:6F:91:CB:B9:C1:9E:E3:7A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPszH6QvtFHkVRxvkcu5wZ7jek4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d9a672-26c3-4ab4-b53b-099fd2101385/1/tPszH6QvtFHkVRxvkcu5wZ7jek4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:eb:07:b6:29:77:04:25:cb:69:92:4d:1c:7e:15:07:db:91:
26:90:2d:55:68:af:b5:3c:dd:9f:97:5b:51:20:ad:6e:c3:8f:
a9:8b:b4:7c:46:b9:93:1c:c8:dd:f8:d4:11:0f:bf:c3:46:ef:
b0:2a:01:64:ff:ff:06:33:17:33:44:d9:02:6f:1a:78:16:55:
59:50:cf:c1:b1:07:11:9a:1a:40:30:36:1a:80:50:d3:9e:30:
22:4a:cf:fc:13:cb:0e:fd:c9:6b:7d:9b:89:96:3d:a1:eb:67:
0d:f1:fc:99:c0:89:1b:40:e4:de:a3:3c:7d:47:4d:c2:de:43:
ef:02:7a:63:a8:5b:a5:d7:f8:48:4d:3f:30:ac:8b:da:37:3d:
56:c1:ab:c6:ac:95:c8:b6:6d:7a:99:24:d1:60:ea:90:0d:36:
32:a5:2d:40:29:25:21:66:e6:f8:55:16:73:29:c7:10:8e:17:
4c:c2:19:ce:c3:0e:c6:38:8d:51:b9:ab:6f:82:50:d8:3e:ed:
ce:66:bd:e3:71:03:dd:65:c1:a8:4b:5e:7c:d6:5b:ba:bc:1f:
22:54:57:a1:3f:6a:b9:31:0a:7a:9c:fe:45:ca:55:fd:2e:69:
0a:a1:c9:6d:dd:54:a1:f4:fa:42:99:9f:d5:08:10:b6:f3:d1:
03:f3:2c:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:30:18 2026 by rpki-client