Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
File: tUFVgYH3hjEZv0oVVMddqx9sUpI.mft (raw, json)
Hash identifier: ZQLveM2/m39W7gBdAo90I3pxNqkrvrobrHD8PNELPtw=
Subject key identifier: 7F:97:D0:C8:8B:8C:EA:88:22:1C:80:C7:D3:4B:92:E9:C3:46:E1:8A
Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292
Certificate serial: 019D9C2D58599557AE4CDCC83AEC57509636
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
Manifest number: 06E9
Signing time: Fri 17 Apr 2026 16:01:50 +0000
Manifest this update: Fri 17 Apr 2026 16:01:50 +0000
Manifest next update: Sat 18 Apr 2026 16:01:50 +0000
Files and hashes: 1: D1q3YLzj8lZ_AqtFs6QHKSAISFg.roa (hash: 4mLTnHJ65SEHMBkEh6tPiLrvo21+0C3dC/USJa8YdTw=)
2: FAR1JGDRfBlwTrXiCrjWu-9KPYY.roa (hash: ubnjQ9mTdiJtNsVEHvSHl8U6qYQGX98XEG0kwEFpsdo=)
3: OteesfxlXNW_6oy-uZPA0RjwQqs.roa (hash: BVMKBS9it+saptlczy0sxrdp/hGNaoRQGuAEe0tEzJQ=)
4: jJqmq7ctfCRljbEe-rA7H6MPeAI.roa (hash: O+1YuOF5X9Aph1d+IEQe3EcREqu8Qs7VAkwaJPtR+U0=)
5: tUFVgYH3hjEZv0oVVMddqx9sUpI.crl (hash: Pvo89I/NbYXmDtWJ2QMnw0G0jBhtBff7dXqe627QeT0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2d:58:59:95:57:ae:4c:dc:c8:3a:ec:57:50:96:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292
Validity
Not Before: Apr 17 16:01:50 2026 GMT
Not After : Apr 18 16:01:50 2026 GMT
Subject: CN=7f97d0c88b8cea88221c80c7d34b92e9c346e18a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:51:3e:26:73:3b:ea:dc:21:ed:52:7a:90:ef:
e4:e6:fe:1e:75:03:2d:6d:bb:97:a0:aa:c7:43:da:
a9:91:2a:06:c0:ce:bb:74:1c:08:0b:8f:c7:b3:a0:
a7:03:95:9c:06:21:37:ee:da:d1:18:5f:bc:76:bf:
e6:e7:aa:bc:29:cf:c5:f2:1c:f5:d6:4e:f3:30:ea:
63:b9:c6:43:91:00:2d:1d:97:37:20:4d:95:f0:01:
ad:df:2d:d8:a9:ac:7c:49:be:6b:3a:ef:80:da:a0:
8f:48:48:f1:90:02:55:d2:84:e9:69:24:34:87:56:
1d:6d:e1:45:d3:43:c0:64:5f:f8:c7:14:c0:e3:f9:
af:19:a0:05:55:d0:b9:0c:36:cc:11:83:91:f0:79:
26:44:3d:3c:f2:fc:6c:ac:89:d3:f0:b3:74:28:f7:
df:7c:39:99:e0:a1:45:5d:89:2c:c0:30:85:92:45:
1b:fc:6b:09:54:e7:dd:e5:4d:13:ef:0b:56:83:76:
16:79:99:1b:e1:85:57:1c:9a:c8:66:62:29:3f:75:
32:11:7e:83:47:04:13:46:38:1e:42:09:12:ea:3c:
2c:50:de:92:cf:1c:91:e8:e9:39:45:ad:92:d2:7c:
3c:15:ed:51:c7:fd:8d:59:81:83:2f:8c:10:c0:2f:
a8:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:97:D0:C8:8B:8C:EA:88:22:1C:80:C7:D3:4B:92:E9:C3:46:E1:8A
X509v3 Authority Key Identifier:
keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:b5:bb:7e:f4:b1:45:93:9c:0d:ab:44:81:61:98:e1:59:2a:
7f:8b:75:76:7b:fa:98:0a:81:55:2b:fa:0e:c6:df:48:d0:9c:
ea:bc:73:1c:09:91:42:f7:c6:c0:61:7c:cc:07:ab:ed:82:95:
a5:c2:ac:e0:93:45:5b:25:f3:c1:97:66:8e:89:a3:99:a4:ef:
71:4e:6c:4f:0d:f8:0a:5b:51:2b:88:16:61:1f:fc:2a:17:da:
08:9e:a3:1c:b8:ae:06:3e:43:cb:46:5e:cf:9d:04:d4:73:d7:
b1:b5:e5:b2:f9:dd:5c:d3:c1:11:67:56:44:34:c8:45:55:e0:
fd:08:d3:fe:13:5c:6b:7b:a4:c1:1d:04:fb:6b:70:3b:d3:61:
85:30:e0:74:77:c8:13:a2:9f:34:be:cb:d1:df:85:01:51:ed:
0a:ee:24:b6:62:b5:c2:1c:fb:64:b5:b1:71:1c:a6:33:e6:97:
fe:c1:6c:7e:e9:66:82:88:e7:b2:7d:c9:2e:e8:6f:ae:b3:26:
ff:5e:55:a0:fd:24:2a:e6:b4:83:2d:ec:13:12:fd:65:c3:f3:
9c:44:38:33:2e:7a:40:85:10:0c:64:6b:c5:4d:db:04:e1:b9:
40:15:49:dc:5f:e8:84:45:60:e5:96:03:a4:ed:8e:ef:a2:1c:
62:09:57:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:47:11 2026 by rpki-client