Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft
File: tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft (raw, json)
Hash identifier: RLtmw5VYozL6Xd8HuTQsqP9l1Z+aLGK6Z15h6a5jt7A=
Subject key identifier: 54:EA:99:EA:9D:A4:AC:2B:B4:F9:A6:40:0C:5A:82:C9:9F:B5:DD:93
Authority key identifier: B6:91:9F:E8:CB:EF:9A:B3:20:AC:7E:0E:34:68:79:D4:9D:18:57:D6
Certificate issuer: /CN=b6919fe8cbef9ab320ac7e0e346879d49d1857d6
Certificate serial: 019DA453978D9BAE5EAD346AE2FB7D66ACA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpGf6MvvmrMgrH4ONGh51J0YV9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft
Manifest number: 097E
Signing time: Sun 19 Apr 2026 06:00:34 +0000
Manifest this update: Sun 19 Apr 2026 06:00:34 +0000
Manifest next update: Mon 20 Apr 2026 06:00:34 +0000
Files and hashes: 1: tpGf6MvvmrMgrH4ONGh51J0YV9Y.crl (hash: JLV4yvls1qIL7DeL9SUNQEJ7UFuqAzNVW1LmiALKnFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpGf6MvvmrMgrH4ONGh51J0YV9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:53:97:8d:9b:ae:5e:ad:34:6a:e2:fb:7d:66:ac:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6919fe8cbef9ab320ac7e0e346879d49d1857d6
Validity
Not Before: Apr 19 06:00:34 2026 GMT
Not After : Apr 20 06:00:34 2026 GMT
Subject: CN=54ea99ea9da4ac2bb4f9a6400c5a82c99fb5dd93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cd:64:1e:89:3c:7b:16:a8:65:6a:20:b6:8a:
6c:c0:44:03:fc:ca:9d:8f:c4:8e:c9:47:9d:42:ea:
3b:77:9c:42:16:18:ed:e0:d3:d1:94:4d:64:14:ce:
98:4b:df:57:fe:fc:1b:a2:de:c4:24:3f:6f:93:0a:
94:6f:06:af:62:2d:ad:19:e3:c8:26:f2:d4:f0:04:
7b:9d:e5:9f:3e:11:c8:ad:fc:d8:b3:d3:2a:cb:c5:
69:23:12:20:0c:b1:77:4b:f8:32:11:cb:a1:76:d4:
09:8e:39:9e:17:d3:03:34:cb:25:13:37:66:9d:54:
cf:76:4b:89:98:bc:62:ea:34:d7:95:1c:bf:66:4d:
2a:08:5b:7d:ac:d9:65:28:0a:39:e5:c9:99:d5:a7:
84:d7:15:1f:7b:cc:7a:e9:96:7a:4c:1b:35:fa:4c:
97:0e:99:fc:35:4b:b6:a9:48:c4:83:e0:0f:2f:44:
5a:da:6d:09:75:fe:bc:7b:e1:ee:d3:b5:9d:4d:60:
d1:ee:f3:01:62:1e:09:44:d3:ce:fa:ff:77:41:6a:
05:32:6a:b1:0a:da:ad:a3:b9:ed:d8:da:d4:0a:4e:
5c:09:e5:23:0c:70:c9:73:04:59:a5:c5:d1:a7:62:
3e:a8:12:b9:8c:ce:7d:eb:38:5f:10:d9:14:87:a6:
80:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:EA:99:EA:9D:A4:AC:2B:B4:F9:A6:40:0C:5A:82:C9:9F:B5:DD:93
X509v3 Authority Key Identifier:
keyid:B6:91:9F:E8:CB:EF:9A:B3:20:AC:7E:0E:34:68:79:D4:9D:18:57:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpGf6MvvmrMgrH4ONGh51J0YV9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c6994c-a8c0-47e0-a006-b086666e2ada/1/tpGf6MvvmrMgrH4ONGh51J0YV9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:d8:16:a5:c4:84:6e:d9:fd:8b:10:1a:85:f5:08:0d:54:fd:
c5:6e:dc:f7:29:e9:0e:48:19:cf:f1:19:c5:0b:b9:96:ef:3c:
47:5e:9c:37:05:00:b1:9e:3e:bf:72:93:9e:c5:39:f9:9d:95:
3c:05:7b:47:f3:15:30:55:48:31:66:c3:8f:f9:d5:96:81:8b:
48:c4:f3:4f:f4:46:28:af:8f:11:36:33:f9:70:c3:51:86:38:
06:18:12:ba:21:cd:f8:a0:83:3d:38:49:de:71:05:5d:e6:ef:
ef:89:26:c5:ad:47:5e:67:7e:a8:21:f8:2b:75:5a:d5:76:e0:
ae:25:ca:31:92:ab:8f:61:1c:a2:65:79:3e:d2:7e:c5:75:6c:
d8:51:16:08:78:3a:07:8e:64:fe:5e:01:ac:19:9a:4f:78:88:
19:de:f3:a0:80:f0:49:44:f8:24:5f:fb:8a:f4:64:e1:e3:04:
74:cc:1b:e2:85:5e:e3:fa:d5:9c:55:b8:39:48:56:5f:2d:71:
5e:13:47:8a:a6:32:3a:b8:1c:54:e1:c0:42:5b:f0:06:6e:81:
82:73:f9:bc:47:5f:17:6c:7b:00:e6:4a:a0:ab:59:bf:b4:89:
21:78:3e:11:5b:ee:60:77:02:c7:71:f9:01:fc:b4:f0:54:be:
f6:6f:22:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:57:17 2026 by rpki-client