Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
File: tRhBzcn2NZTd3CulmkATMYK1efo.mft (raw, json)
Hash identifier: jr5YvsbJ/zkYBOVYbEKYd303M323CipUAESbpFR/4K8=
Subject key identifier: 84:0F:F0:46:4B:B7:EE:87:24:AC:E4:1A:16:BC:70:7E:18:B8:F2:FA
Authority key identifier: B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
Certificate issuer: /CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Certificate serial: 019D9998E303E9ACAB1838CDAE90C0AE972B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
Manifest number: 18C5
Signing time: Fri 17 Apr 2026 04:00:26 +0000
Manifest this update: Fri 17 Apr 2026 04:00:26 +0000
Manifest next update: Sat 18 Apr 2026 04:00:26 +0000
Files and hashes: 1: gn4_joE3Kg7Iuvtn8_CsNV3N_rY.roa (hash: inZ7mhN1iTFUjJSaH+6rFZpFzgOqpsU8gKqes5JxewU=)
2: tRhBzcn2NZTd3CulmkATMYK1efo.crl (hash: o6n77hoL4ZcmPZnX0PLYCUcO/qkxh+toAANXH8I/TFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:e3:03:e9:ac:ab:18:38:cd:ae:90:c0:ae:97:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51841cdc9f63594dddc2ba59a40133182b579fa
Validity
Not Before: Apr 17 04:00:26 2026 GMT
Not After : Apr 18 04:00:26 2026 GMT
Subject: CN=840ff0464bb7ee8724ace41a16bc707e18b8f2fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:da:f0:05:e5:2d:4c:54:ae:13:d6:92:4f:f1:
4b:94:a1:79:80:8b:b2:2d:4b:39:33:1c:bd:66:2f:
20:27:c3:bb:aa:f8:e6:ab:72:3f:4e:9e:83:e8:38:
3e:5c:d6:2c:e6:83:e9:e7:2f:9b:c7:af:27:49:1a:
9b:b0:27:5d:44:99:b7:bf:44:d2:be:67:a6:03:94:
4e:fc:e7:1d:77:1b:00:97:51:cf:52:9e:a2:12:f9:
90:9d:ce:14:b7:f3:b1:67:f3:e5:dd:5a:58:0b:39:
52:56:24:d1:61:ee:8d:22:2e:f7:df:1c:fa:31:89:
97:f1:fe:84:c7:73:d7:8a:98:a9:4e:8d:87:fc:07:
f3:ae:2b:46:5b:e4:bd:55:46:7e:34:0e:84:9e:30:
c6:a1:18:98:45:17:72:dd:e2:51:10:76:01:b8:0f:
be:a2:ec:bc:10:21:38:b3:dd:c8:1a:84:86:a4:d0:
36:a1:d8:61:50:5c:da:f2:62:1a:63:f4:2f:a2:6e:
f9:49:a7:80:d4:20:83:f2:6b:a5:70:8e:2c:6f:d9:
8d:1e:92:06:df:f1:e8:ae:bd:f5:f6:cb:ff:27:02:
88:8d:fc:0f:5b:de:80:13:10:93:58:60:69:e6:e5:
6c:b5:30:99:a1:9f:d0:5f:85:2f:28:7e:d1:08:af:
48:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:0F:F0:46:4B:B7:EE:87:24:AC:E4:1A:16:BC:70:7E:18:B8:F2:FA
X509v3 Authority Key Identifier:
keyid:B5:18:41:CD:C9:F6:35:94:DD:DC:2B:A5:9A:40:13:31:82:B5:79:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRhBzcn2NZTd3CulmkATMYK1efo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/f0af61-8ccc-4a3b-9010-6910f399d38f/1/tRhBzcn2NZTd3CulmkATMYK1efo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:5a:08:94:53:9d:ae:d5:e6:30:57:30:01:62:1d:10:eb:5f:
5d:79:49:38:e3:47:7d:63:a8:f7:4d:3d:42:99:fb:68:dc:d5:
5e:e3:a6:d4:1c:81:55:a0:02:4c:84:c8:3c:3b:07:f4:13:25:
83:37:a5:db:87:ce:35:e6:0f:8b:2f:17:fb:4b:f1:b3:d4:7a:
77:64:02:a4:92:89:ac:a8:cf:fe:ab:6f:21:02:0d:e9:0a:58:
42:b5:11:d2:58:5c:94:23:dc:0c:e6:2f:58:be:f4:71:c2:7b:
9a:1b:e3:c6:4e:80:6c:a5:bf:b7:67:92:29:6d:f5:a9:aa:52:
f8:d2:f5:fa:56:8a:03:3c:4b:6c:b1:4c:82:90:8e:30:60:80:
c6:02:ae:0c:63:ff:d6:7a:3f:a3:b0:f9:d3:c0:09:5e:91:41:
6e:09:2a:36:f2:f1:7b:ac:6e:86:d2:70:bf:71:ff:14:32:64:
bf:bb:9d:77:cb:6f:9e:87:27:1c:37:45:eb:78:39:a0:8b:29:
45:88:b4:51:62:d5:98:31:fe:62:3e:a6:f2:c2:7e:e8:24:c3:
10:6f:72:66:c2:71:be:e1:69:89:40:0b:6f:3f:88:31:f1:0b:
d6:e6:37:df:a2:4d:4d:62:a3:c2:35:6d:06:7a:af:c4:42:0b:
10:0e:e0:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:31:37 2026 by rpki-client