Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
File: tZXiFxdovJspQknw46U1kBecUu4.mft (raw, json)
Hash identifier: 03pRhL9FQ9hsLp+JVybz6tzjw+TmuU0CHCcHMf8rx8o=
Subject key identifier: 70:E2:F6:8B:7B:4A:6A:EB:C0:B6:DE:A1:3E:86:AC:A5:1C:0A:82:64
Authority key identifier: B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
Certificate issuer: /CN=b595e2171768bc9b294249f0e3a53590179c52ee
Certificate serial: 019D9EBFA6C1BF20B235FA55A1423A65E5A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
Manifest number: 18C5
Signing time: Sat 18 Apr 2026 04:00:53 +0000
Manifest this update: Sat 18 Apr 2026 04:00:53 +0000
Manifest next update: Sun 19 Apr 2026 04:00:53 +0000
Files and hashes: 1: tZXiFxdovJspQknw46U1kBecUu4.crl (hash: HaGpohIl+1/44N597OFdbIZ1fHNePI5xuiq9ckzh1e8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 01:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9e:bf:a6:c1:bf:20:b2:35:fa:55:a1:42:3a:65:e5:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b595e2171768bc9b294249f0e3a53590179c52ee
Validity
Not Before: Apr 18 04:00:53 2026 GMT
Not After : Apr 19 04:00:53 2026 GMT
Subject: CN=70e2f68b7b4a6aebc0b6dea13e86aca51c0a8264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:4b:47:47:d9:d6:26:9d:94:5e:60:73:6e:b2:
51:c2:da:e2:cd:78:6f:e9:34:85:ba:c2:ce:27:5f:
a9:1f:ef:5f:08:4c:df:e2:57:db:f2:9e:34:52:b4:
3d:b2:6e:a9:b0:ce:35:a5:0a:db:b6:a7:d7:97:26:
c1:99:4d:51:d0:e8:21:b8:1e:49:50:64:c0:c1:51:
fa:8e:37:f1:23:1f:60:f5:ca:1f:9c:bb:24:30:c5:
52:b4:3d:54:46:9d:c4:ab:5e:f4:31:86:17:ac:fa:
ad:09:0b:96:a0:f2:89:4d:72:64:0d:dd:6d:b8:cc:
45:76:66:f8:f1:bc:87:28:4b:af:5e:6d:03:94:c8:
e9:84:63:d1:12:b5:f8:58:01:af:2c:93:a0:76:f5:
3d:7c:57:06:4b:7a:df:96:41:3b:02:45:0c:3d:dd:
8b:05:57:2d:25:ee:13:1e:8d:7c:92:80:01:7a:ab:
47:c5:b1:04:5c:51:a4:95:3b:c4:7c:e5:5a:67:bc:
ec:7c:5f:51:92:20:bb:13:2a:4e:01:7c:72:ed:fd:
e9:01:f4:e8:32:25:de:24:8d:1a:0f:d0:4f:11:8a:
6a:ad:05:2c:42:c0:a6:27:86:2e:fb:10:57:53:c6:
3f:8c:71:e6:40:58:23:68:4b:a3:f7:ef:b4:85:09:
50:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E2:F6:8B:7B:4A:6A:EB:C0:B6:DE:A1:3E:86:AC:A5:1C:0A:82:64
X509v3 Authority Key Identifier:
keyid:B5:95:E2:17:17:68:BC:9B:29:42:49:F0:E3:A5:35:90:17:9C:52:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZXiFxdovJspQknw46U1kBecUu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/a34fb9-f64e-4291-9291-60b4ace004b5/1/tZXiFxdovJspQknw46U1kBecUu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:17:40:95:14:7d:41:63:d7:86:3d:0a:ee:9e:7a:a6:77:79:
98:05:82:78:4b:3f:18:ff:f1:bd:ce:4d:01:bd:91:6b:70:62:
57:85:be:99:60:a5:f0:3d:66:ac:ba:e5:c6:71:ce:bf:b1:58:
49:24:94:22:9b:9d:da:5f:b0:96:10:c0:6f:33:92:fe:38:6a:
05:10:7f:58:14:3b:37:f1:03:a7:dd:ac:87:8f:8f:98:29:86:
14:99:e6:24:51:53:2a:f1:e9:17:a5:0f:c7:22:a2:ba:8f:7d:
7c:38:6d:f9:bf:ad:6c:00:55:8e:28:cf:cf:5b:f3:35:86:7d:
e5:09:3d:ff:62:c4:78:23:74:cd:62:13:05:b5:5b:c7:fc:4b:
74:df:57:56:78:fb:dd:2e:99:91:47:a2:bc:7f:7a:0f:51:59:
94:6c:2b:fc:d1:f8:ed:6c:22:b5:e2:ba:c8:f8:32:84:50:44:
52:02:3c:28:65:0e:8d:52:02:59:ac:67:79:a7:38:16:8e:7e:
2f:68:8f:c8:2c:51:fa:c1:9d:37:5a:07:00:69:20:e2:8d:b2:
2d:23:82:42:44:4f:5e:26:9d:17:b4:71:48:63:f0:7f:6e:c4:
b7:3b:69:74:d2:a8:ae:1a:12:b5:1c:df:a6:4d:15:b7:24:ee:
a2:1f:5c:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 08:07:53 2026 by rpki-client