Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
File: TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft (raw, json)
Hash identifier: +qfILppYy7Ri8X8dMh+CFjT4ZT6496YmGZMhLwEcVX8=
Subject key identifier: FA:48:3E:CF:27:6C:3C:8F:FF:F0:45:F2:5D:C6:5C:B1:4B:0D:7B:0F
Authority key identifier: 4C:3C:66:5E:51:CC:4C:B5:CA:F0:5B:82:94:84:3E:27:33:A1:3D:EE
Certificate issuer: /CN=4c3c665e51cc4cb5caf05b8294843e2733a13dee
Certificate serial: 019D9CD146490DC0639F8E15117D846B852C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
Manifest number: 030D
Signing time: Fri 17 Apr 2026 19:00:53 +0000
Manifest this update: Fri 17 Apr 2026 19:00:53 +0000
Manifest next update: Sat 18 Apr 2026 19:00:53 +0000
Files and hashes: 1: TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl (hash: Poc1wGRzUTR7VBLmUcmiNkvA0sTASnDwXCj38TtfVvg=)
2: frya0jA5P_fi8uygo2aIO2RW1ZQ.roa (hash: V1yhc9udgYV2uaOOmzTxwzsxFa2raTN+Q6jBXM4XvRY=)
3: kKVTRqLoF0Ci8dpNet9kwZmxDT0.roa (hash: 8tx64HA0nG1Eva97BQI3PWU25m9pw2mjQ77BqQyADfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:d1:46:49:0d:c0:63:9f:8e:15:11:7d:84:6b:85:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3c665e51cc4cb5caf05b8294843e2733a13dee
Validity
Not Before: Apr 17 19:00:53 2026 GMT
Not After : Apr 18 19:00:53 2026 GMT
Subject: CN=fa483ecf276c3c8ffff045f25dc65cb14b0d7b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3a:87:41:d4:79:38:84:a6:4a:68:48:20:28:
23:af:8b:ab:f3:5c:83:18:b6:38:7e:d9:07:46:08:
72:0c:77:5e:77:6b:91:47:5f:8b:4c:b8:62:bb:03:
19:35:9d:fa:57:f5:0d:9a:5d:af:da:b0:ba:d1:9d:
a3:c4:6b:55:64:01:4a:1d:7d:0f:21:7a:ea:a9:ed:
12:01:fe:41:3b:0b:84:4c:4e:ae:9e:f4:5d:39:4f:
06:2c:ea:68:d1:8a:7f:35:69:c5:d0:7f:80:c4:f5:
b3:4b:36:19:ed:ba:29:bd:2b:04:da:5e:dc:e5:8d:
4b:7f:c3:f1:8d:20:b7:cc:e7:61:4e:ae:60:b1:50:
ba:69:bb:6b:92:b0:ca:4e:b3:62:5c:ba:e9:8e:b7:
fd:cc:40:55:9e:dc:eb:26:a6:25:9f:84:84:05:e6:
e8:43:66:95:10:0c:40:d4:02:57:0b:47:92:e9:57:
6b:84:71:0e:92:2f:8c:4e:66:40:c4:95:58:23:f5:
cb:60:25:6d:d3:1d:ad:1a:84:f7:2f:5e:f5:d1:2e:
3c:f4:dd:45:af:fc:5a:b2:23:d2:b2:35:ea:58:83:
0d:f3:fa:66:c9:64:f2:fb:4d:ce:f5:aa:7e:d8:03:
19:94:fa:16:80:d2:1a:a6:8e:ba:0b:65:bb:63:1c:
8c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:48:3E:CF:27:6C:3C:8F:FF:F0:45:F2:5D:C6:5C:B1:4B:0D:7B:0F
X509v3 Authority Key Identifier:
keyid:4C:3C:66:5E:51:CC:4C:B5:CA:F0:5B:82:94:84:3E:27:33:A1:3D:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDxmXlHMTLXK8FuClIQ-JzOhPe4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/6b66b4-064c-42ee-a5ee-1a65b91bee58/1/TDxmXlHMTLXK8FuClIQ-JzOhPe4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:88:aa:f1:3e:29:4b:82:0c:52:67:ad:5f:27:5d:f0:56:57:
68:a4:f2:d4:70:32:ee:f6:09:c2:0f:57:c0:9e:3f:8d:06:88:
93:16:5a:22:1b:1c:32:1e:f2:b9:d3:ae:8a:2b:a2:75:d3:0a:
e2:e3:6d:23:5c:6e:24:df:78:fd:d6:af:46:c9:3c:3f:0f:e5:
cb:92:c3:96:fc:80:e9:2a:39:23:fe:be:11:c3:db:53:82:01:
90:eb:d0:c5:5e:eb:f8:60:98:ac:9f:fe:1c:3c:e3:54:78:8a:
9b:1d:c8:cd:fb:d2:65:4b:8f:4d:6a:c4:ce:e4:0c:e2:11:25:
1c:77:4a:46:c1:9a:8a:30:9c:f1:b1:a1:78:a1:ea:7a:8a:d6:
6d:f3:d6:81:1d:4c:24:67:55:b6:17:a8:1b:bc:b5:9f:34:4f:
5e:cc:65:04:87:cf:72:a6:21:07:06:df:7a:91:73:28:a9:4a:
b3:ef:07:2d:1f:ed:2c:57:3e:1c:a5:76:79:99:fd:41:5f:f9:
71:e3:7c:ee:5c:f4:06:a7:20:9c:cd:5b:86:5e:ab:ce:93:c5:
8f:b0:48:fb:cc:1f:68:5a:16:5b:ec:6e:7c:a9:13:c6:3e:ca:
ad:80:a6:49:51:90:3d:30:f7:d4:b1:f1:17:db:f8:3b:52:2b:
cd:dd:a5:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:29:03 2026 by rpki-client