Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: uerjlcomz81HwM1xdwYUuHPr7Z0zDw8YpeVcExO2wYA=
Subject key identifier: AF:BB:9E:3A:39:7A:7A:55:93:87:24:17:68:62:E1:70:85:0A:4D:F8
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 019D992B7D26CF9741A5454A4CE20A94D6DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 02:00:57 +0000
Manifest this update: Fri 17 Apr 2026 02:00:57 +0000
Manifest next update: Sat 18 Apr 2026 02:00:57 +0000
Files and hashes: 1: awToJLBsyk0T4IcWFD08IQBrMn8.roa (hash: D6jszyrJ34yNygrEuO9QJPaleqlFTsrRTxhepr3reTI=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: ctVESys2buWCY7WxnztdLYvJ5qvf8bN52rDlgjXFix4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:7d:26:cf:97:41:a5:45:4a:4c:e2:0a:94:d6:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Apr 17 02:00:57 2026 GMT
Not After : Apr 18 02:00:57 2026 GMT
Subject: CN=afbb9e3a397a7a55938724176862e170850a4df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:40:6f:f5:df:49:fd:c0:cd:9a:6a:a8:21:e1:
e0:be:26:34:c2:e3:22:a5:34:70:44:e0:5c:ef:9a:
fe:d8:92:83:34:10:5a:c4:e9:31:69:9a:d0:fb:a8:
7c:d0:12:90:4c:34:d4:5f:18:b0:48:6e:5c:fd:7a:
22:59:48:47:c7:2b:45:f2:a4:eb:b9:54:13:e6:f9:
0d:39:7d:12:eb:5e:de:6d:02:dc:b3:40:67:dd:fd:
32:d1:df:1b:f4:8a:da:6a:81:4c:fe:c8:31:d1:b2:
30:13:70:37:ad:cc:dc:cb:f9:68:ac:db:f8:3d:38:
f0:22:b0:b6:98:10:51:5d:66:2d:9d:36:74:15:75:
76:4f:e4:cc:4a:f7:a7:80:54:01:39:6c:b1:3a:2b:
01:e2:51:31:00:f9:e1:8f:59:45:fc:8e:a6:1e:7b:
ce:48:ac:6a:4b:3b:d3:73:b9:a4:5f:5d:e1:c9:c2:
9f:89:a4:80:66:15:99:cf:02:de:e7:1a:1b:c7:08:
4a:6c:f5:59:33:36:47:ba:2d:52:b0:ef:4e:70:8a:
75:0e:a2:27:7d:be:6e:e4:76:06:9c:9d:d1:91:29:
c8:6f:4c:4a:7c:e5:f1:4f:83:74:c8:01:88:95:48:
8f:06:ca:57:af:b6:bf:02:09:23:0b:f8:67:ab:a7:
37:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:BB:9E:3A:39:7A:7A:55:93:87:24:17:68:62:E1:70:85:0A:4D:F8
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:5b:f0:97:f1:b5:6d:70:cb:95:1c:7e:1e:24:e6:b9:56:61:
4e:15:ab:37:cf:45:4d:17:6d:6f:bc:18:25:18:8f:53:f2:ac:
9a:a3:c3:82:19:4e:79:fa:97:ce:91:71:e0:a2:ca:64:f0:70:
00:a3:66:fa:ca:d7:31:3e:56:d4:e8:3d:5e:8d:c2:ef:dc:56:
f6:ff:1d:90:ea:ee:48:69:15:aa:59:07:0c:94:43:cf:f6:55:
ca:fa:09:77:11:b1:7c:a2:67:db:78:e8:ce:04:c3:a7:19:dc:
cb:55:fc:4b:12:1a:60:5c:29:2c:ce:05:08:10:99:4c:fb:1f:
ee:64:e0:72:0a:30:e8:fa:92:b3:7e:c7:cd:70:f9:ba:81:e0:
77:cf:cc:43:24:c8:89:25:57:e4:77:ad:b1:57:11:e1:41:6a:
f0:24:b3:f4:82:51:c2:24:1b:ae:15:aa:6f:85:e7:cd:58:de:
ee:26:de:6b:b6:cb:7a:fd:02:5d:b7:80:bc:99:84:aa:f9:50:
33:ea:5f:ed:05:17:36:00:b3:14:9f:0a:eb:9a:83:f9:1b:a2:
c2:71:8f:90:e9:66:98:2c:11:49:83:20:16:06:f8:70:5e:9e:
62:0c:c6:a2:58:06:19:f6:30:71:5d:ae:a1:64:0d:18:63:4d:
a3:00:6d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:23:26 2026 by rpki-client