Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
File: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft (raw, json)
Hash identifier: zBUV9iCDOVDExVyfZSX+ugLsxu4oCGynl2VE7ialqnw=
Subject key identifier: EC:DA:8B:CA:18:7C:C0:71:08:75:E9:E6:8E:0D:1B:BA:50:B2:39:97
Authority key identifier: B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
Certificate issuer: /CN=b5d87fdc272ae058618786e741707557bf4e1a33
Certificate serial: 019D97E28961EA42F1E3580B72861621CDD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
Manifest number: 065C
Signing time: Thu 16 Apr 2026 20:01:38 +0000
Manifest this update: Thu 16 Apr 2026 20:01:38 +0000
Manifest next update: Fri 17 Apr 2026 20:01:38 +0000
Files and hashes: 1: 6QKPReqPPvM-G5eDtotQxkQu3rg.roa (hash: +zfD9kQLYj/Bi7oedLx+ydKYavDQjQhsfviUHiEJA58=)
2: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl (hash: 3WqyIrORmylqZERH9eUnf9lrK+kF3MFq2J0bNk3TpJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e2:89:61:ea:42:f1:e3:58:0b:72:86:16:21:cd:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5d87fdc272ae058618786e741707557bf4e1a33
Validity
Not Before: Apr 16 20:01:38 2026 GMT
Not After : Apr 17 20:01:38 2026 GMT
Subject: CN=ecda8bca187cc0710875e9e68e0d1bba50b23997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f0:92:3d:5a:d0:83:0c:1c:7d:37:02:75:cc:
b7:22:9f:f4:b3:c0:b8:ec:7f:92:32:51:0a:14:f2:
b9:fc:e4:3c:ff:46:82:5c:91:6f:46:61:31:1a:71:
53:52:f6:3a:f0:17:b4:9d:29:94:ef:8b:47:9d:35:
2f:4b:31:7e:66:7b:bd:1e:87:9f:89:be:7d:20:86:
44:89:6f:1e:0e:20:57:98:85:ec:db:88:a0:58:7f:
f8:92:23:4a:8c:b0:43:67:77:d9:a0:00:fc:1c:8f:
cd:95:19:68:28:16:5c:36:a3:5d:ed:39:41:98:06:
7a:ce:53:3c:0c:77:17:4f:16:24:5e:64:f4:8c:ae:
0c:10:e1:09:fc:04:2c:c2:7d:e6:85:9e:5e:bc:90:
05:13:3c:f9:a9:a3:07:0a:bc:8d:fc:e1:93:03:31:
a0:91:f2:cc:79:23:9b:a2:2a:06:73:50:c8:f2:0f:
78:ea:53:c9:b2:c4:1e:35:73:f2:c3:bd:f1:cc:5b:
e0:88:5f:5e:1f:a4:87:3b:b9:1f:0c:13:e5:ef:34:
2d:09:26:b3:fa:3d:66:18:ee:89:31:cc:f6:9a:dd:
30:94:a4:26:29:d9:77:5a:6a:49:61:3d:16:fa:80:
1a:c6:88:e4:9e:a5:e7:d5:b5:f7:78:e2:51:81:ef:
36:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:DA:8B:CA:18:7C:C0:71:08:75:E9:E6:8E:0D:1B:BA:50:B2:39:97
X509v3 Authority Key Identifier:
keyid:B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:b1:54:c5:ec:ed:a9:43:d7:21:33:e7:99:51:a3:0e:65:a7:
07:97:10:1c:5f:c9:13:e1:e9:8b:0f:92:95:d4:68:86:60:25:
12:e5:95:2a:16:ea:95:8f:cb:fe:b2:b6:76:5d:9a:57:0c:45:
fe:b7:a0:19:66:56:62:0a:11:e4:f2:ea:b1:f3:07:1a:0c:5c:
0a:ac:43:7c:75:9e:76:3c:c9:68:94:13:f3:10:92:7c:4c:d6:
ac:1d:f4:3d:eb:87:3b:a3:96:8c:97:de:b1:93:02:22:32:53:
5d:c0:0e:b4:10:bb:c0:86:62:42:fb:c5:43:4b:ba:35:83:6d:
c2:ab:e1:90:1c:bd:5a:9e:d1:ea:1f:11:9d:4f:11:91:9f:ea:
5c:bf:bf:88:ed:73:53:79:d7:c5:ca:e1:9f:a5:63:c3:0c:1f:
73:be:f5:45:2b:9f:f9:d4:6b:39:c1:36:98:0b:c7:d8:7a:d1:
38:bc:34:d4:3b:f9:7b:47:99:c0:59:d3:f5:33:bc:0a:23:75:
a4:eb:bc:65:4f:4d:0a:be:44:5a:63:39:c5:b0:50:2a:85:ed:
16:6d:5e:ee:72:30:70:82:6c:0f:24:cc:98:33:8c:7e:f7:91:
f6:d5:c3:25:c6:ab:fe:07:00:c3:b1:d8:d2:27:4f:88:ed:89:
15:10:a2:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:43:19 2026 by rpki-client