Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
File: t3gT9sVnClhoatw9SVV0QpXdFBk.mft (raw, json)
Hash identifier: jVbLfcEdNAjchlF8lkRuEfG7+DAIdNRSYvlwTuGWzDM=
Subject key identifier: F5:5E:1F:6E:3B:ED:55:B1:0A:8E:DC:57:1D:04:5C:21:DB:E5:DC:66
Authority key identifier: B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
Certificate issuer: /CN=b77813f6c5670a58686adc3d4955744295dd1419
Certificate serial: 019D9D3F7B097EF81400191D81DC037E665F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
Manifest number: 119C
Signing time: Fri 17 Apr 2026 21:01:16 +0000
Manifest this update: Fri 17 Apr 2026 21:01:16 +0000
Manifest next update: Sat 18 Apr 2026 21:01:16 +0000
Files and hashes: 1: 6I-7kIsmNEbjqpaRLZFYHSiX3Cg.roa (hash: l5DJjaa9jBabVc2gTKAmahVVwUkclCV/KKoXuPERh3I=)
2: t3gT9sVnClhoatw9SVV0QpXdFBk.crl (hash: yetfbajAxdHtW15gZxQVBMThj7i2l2BFwVeworxDBws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:3f:7b:09:7e:f8:14:00:19:1d:81:dc:03:7e:66:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b77813f6c5670a58686adc3d4955744295dd1419
Validity
Not Before: Apr 17 21:01:16 2026 GMT
Not After : Apr 18 21:01:16 2026 GMT
Subject: CN=f55e1f6e3bed55b10a8edc571d045c21dbe5dc66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c9:d5:7f:7d:e0:d9:fe:77:bf:30:52:05:a5:
ca:e7:f0:42:80:f1:78:c8:66:83:c8:73:be:0a:97:
3c:19:68:6f:7e:d8:5c:3d:69:1f:ec:ea:aa:d0:75:
11:af:29:82:a5:1c:dd:67:2d:6f:9e:c1:87:82:17:
94:b3:66:3b:fc:19:a2:2a:b9:be:6b:28:b6:3c:7c:
fd:30:a9:7e:3e:b4:2e:c9:25:49:4f:5b:eb:1a:ab:
73:dd:66:48:be:f1:3e:d8:8b:35:ce:e2:e0:f5:3c:
04:ef:e8:37:1a:98:bf:78:df:70:e3:11:37:06:28:
fd:c2:9f:bf:37:76:d9:43:d7:e1:f7:3d:b9:d1:1e:
7c:ba:66:e7:a9:e9:0c:49:b5:72:3f:60:c7:df:7e:
70:1a:01:0d:9f:d6:d6:a9:8c:97:63:21:b7:e5:84:
a3:dd:26:d3:10:8e:81:27:68:73:a3:e2:ea:76:5b:
f4:b2:12:db:76:2a:3a:7d:0b:10:8c:5c:3a:9f:ab:
02:9f:75:d4:72:28:65:78:7c:4c:7c:c7:09:e1:60:
a7:71:04:2b:0a:ed:3c:04:13:3b:b7:06:b7:ca:6a:
d3:bd:61:d4:af:79:b5:92:12:a9:0f:09:1e:1b:7f:
62:67:f7:bf:e1:d9:ca:66:8c:ee:c8:fd:c1:d9:01:
5d:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:5E:1F:6E:3B:ED:55:B1:0A:8E:DC:57:1D:04:5C:21:DB:E5:DC:66
X509v3 Authority Key Identifier:
keyid:B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:92:8f:d2:fc:64:ca:62:6d:d6:0b:e5:25:a0:2e:ea:e1:40:
af:d0:06:0c:13:eb:e8:0a:c3:6c:13:94:42:5d:f0:ce:9d:78:
bb:93:c9:9a:53:c0:5f:5e:92:33:0f:d3:4a:ca:90:7d:29:09:
19:ae:64:ff:c7:59:76:64:cd:a9:de:cc:45:a9:5a:75:59:bb:
e1:16:ca:0e:bb:13:e1:68:8c:c4:49:9c:5d:ac:fa:98:bc:4b:
3a:79:c6:cf:66:1d:29:d9:cd:d8:58:31:78:0e:4a:c0:6a:61:
37:3e:31:4c:91:af:fb:d5:36:60:0e:92:33:ad:85:7a:84:7d:
77:c6:d1:f3:e8:fd:06:4e:c0:29:3f:1f:57:8c:d7:96:a2:ad:
cd:2f:9f:75:14:27:3a:2c:cb:1f:9c:21:77:9a:14:d7:c2:b0:
be:c1:eb:28:52:92:49:ca:f1:14:0d:8f:76:75:6a:60:6f:09:
0a:dc:fc:9b:ad:78:80:c5:ed:92:60:ef:d3:52:91:50:13:0e:
f6:21:99:f6:ea:3a:f3:32:a8:27:94:5a:20:7e:14:4b:d2:0a:
7e:ce:39:ed:24:91:82:b6:2d:72:24:57:6d:41:8b:2c:9f:83:
12:f5:59:99:8a:2b:da:80:2e:f4:f2:19:ef:24:94:df:d6:a9:
74:5d:60:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 23:51:50 2026 by rpki-client