Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: m7N5yPhGMtHHsDpD2ivKrHVSAbwyEdIjrDHkVtfB4Mg=
Subject key identifier: 25:5D:4B:E6:C1:A9:36:3A:B5:CD:36:2B:83:5D:FB:5E:36:B9:D5:C6
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 019EC0A3CB472AC30EE68AD17FDE28251D88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 1958
Signing time: Sat 13 Jun 2026 11:00:20 +0000
Manifest this update: Sat 13 Jun 2026 11:00:20 +0000
Manifest next update: Sun 14 Jun 2026 11:00:20 +0000
Files and hashes: 1: awToJLBsyk0T4IcWFD08IQBrMn8.roa (hash: D6jszyrJ34yNygrEuO9QJPaleqlFTsrRTxhepr3reTI=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: is8tBjnxX8xSKUtdTD5mCSBLtGVZRDH3aHVInIRjVAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 11:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:a3:cb:47:2a:c3:0e:e6:8a:d1:7f:de:28:25:1d:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Jun 13 11:00:20 2026 GMT
Not After : Jun 14 11:00:20 2026 GMT
Subject: CN=255d4be6c1a9363ab5cd362b835dfb5e36b9d5c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c1:5d:bc:5e:f2:4f:18:c6:cb:21:c4:71:68:
74:93:69:07:7d:a9:8b:e6:bb:fb:69:09:50:62:20:
35:36:e9:df:96:56:f7:fd:d8:c3:9e:43:eb:24:10:
8a:79:05:91:39:53:ba:31:f4:16:b3:89:e5:01:5c:
f5:e8:9c:23:eb:5d:19:ca:17:bf:f0:54:d7:92:5b:
7f:db:07:28:3a:d8:e2:2b:54:2e:09:62:6f:1a:89:
7e:e6:1c:0c:64:86:ef:5e:4f:4d:33:31:f4:a2:b0:
b0:86:d3:cf:51:e1:53:92:de:73:99:8d:95:9d:b3:
0e:f3:68:26:2a:f2:43:84:3a:e7:24:bf:96:72:df:
7b:28:a7:4c:f7:20:58:89:8d:36:74:62:f2:87:19:
b4:39:03:0e:22:cc:2d:fc:4c:31:ff:f6:37:22:39:
1c:c4:98:bc:28:78:fe:6c:28:d4:fa:f7:e0:d7:f0:
da:cd:94:eb:83:73:cf:df:a0:d0:97:45:2d:e9:30:
73:15:e4:fd:3e:c8:d3:38:79:85:62:11:56:bf:41:
40:53:55:db:4c:86:b7:ab:fb:0e:b2:33:71:9d:4d:
25:32:57:fe:0d:c0:3d:4f:db:3e:3a:f3:10:fa:31:
cd:97:a6:21:40:57:d9:30:ab:4e:da:e9:12:25:5a:
a3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:5D:4B:E6:C1:A9:36:3A:B5:CD:36:2B:83:5D:FB:5E:36:B9:D5:C6
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:b2:36:de:04:4c:67:b9:19:1e:4b:d5:d7:ed:15:70:d4:ea:
7a:2f:a0:66:86:b7:99:11:56:13:4b:fe:40:31:57:d6:c2:c8:
c4:2c:4d:f1:f4:93:27:ff:0e:74:63:45:a2:32:27:b9:37:12:
c4:c7:6f:e2:9a:21:85:ea:fb:05:55:d8:d2:ce:27:2e:d5:0c:
36:6a:b1:c0:d8:e4:e8:10:ae:c3:bb:4e:87:28:24:b4:6b:26:
40:c6:05:47:43:ab:40:e9:d0:bb:34:28:52:8f:be:1a:ac:ce:
8a:7b:5b:02:4f:8c:d2:90:29:a1:d0:bc:60:7f:3d:ce:76:1d:
a4:9f:05:7a:46:39:d9:ea:5e:6d:36:88:53:00:78:74:7a:a8:
94:cc:79:3e:59:6e:f6:77:c7:11:b8:81:4c:c3:aa:5c:a9:d7:
3d:20:6a:ad:69:fd:93:a6:44:ea:2f:27:2c:b7:06:94:73:f0:
de:d4:55:a9:91:58:d7:c4:87:f4:c2:61:55:5e:4f:52:8c:99:
ac:4a:2b:d1:a8:7a:77:18:6a:8a:b6:62:66:19:f5:30:0e:ea:
7f:bb:00:81:93:6f:cd:d8:e6:d7:cb:be:07:ea:36:cb:be:de:
47:c3:c6:30:e1:b0:33:37:9f:02:60:5e:b7:dc:8c:a1:44:00:
1c:8b:f7:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:24:11 2026 by rpki-client