Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: se6V9ID7+kWiwcFkeKoVlIiSIbparNjRP0Q3OSj2Cfk=
Subject key identifier: BC:4E:DB:1D:69:14:7C:5E:69:F8:59:BF:80:DF:60:39:6C:76:E4:5D
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 019D9A749A1B79F9B78D8D7E8587A3BAC013
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 0A05
Signing time: Fri 17 Apr 2026 08:00:26 +0000
Manifest this update: Fri 17 Apr 2026 08:00:26 +0000
Manifest next update: Sat 18 Apr 2026 08:00:26 +0000
Files and hashes: 1: n3LXa0-xioBb1QsCYTVot6eV2ZE.roa (hash: n4raPKw8IwbnWXJNFwCqDhVOg3Y+1y9CxDz8k7+MVtI=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: ZOV6yMXWleookRg1mslZHlIoMoBNWxsNGBqRikFN8rY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:9a:1b:79:f9:b7:8d:8d:7e:85:87:a3:ba:c0:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Apr 17 08:00:26 2026 GMT
Not After : Apr 18 08:00:26 2026 GMT
Subject: CN=bc4edb1d69147c5e69f859bf80df60396c76e45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4a:5f:5c:96:10:b9:f4:3a:2a:38:0b:fc:c7:
df:f8:15:2b:5c:be:1e:2b:29:d3:01:be:06:49:d1:
da:fb:6d:52:49:fb:29:e5:4c:db:10:75:91:d3:83:
e7:bd:e7:fb:d0:c5:3a:16:34:5c:2d:e6:93:11:07:
5a:1a:d7:07:71:fe:96:a3:26:64:a9:3d:74:df:dd:
54:cf:a4:6c:a3:d7:a6:2f:05:10:9e:3d:aa:16:97:
b1:7a:ec:9f:ae:ad:58:a5:77:d9:63:8a:3a:09:0a:
cd:fd:e6:29:b9:a8:5f:b5:63:84:98:48:29:1a:28:
df:7d:cc:af:28:f3:1e:f4:8a:48:53:52:dd:57:b7:
a3:43:df:75:61:02:d7:88:0d:59:c0:98:3a:c5:61:
b9:f2:f9:a5:de:f1:a4:4e:1f:4e:0f:b5:1d:91:17:
6d:f2:a1:e7:26:eb:8d:31:72:02:51:e9:35:3a:d1:
e1:66:c6:2d:7b:10:f3:61:11:ea:8c:5a:ac:8f:9a:
16:13:e3:0a:e0:a4:c4:2f:d1:3a:71:5a:ed:bb:03:
70:25:f1:3e:b8:b1:2b:e8:db:2b:de:80:a4:6e:87:
e6:b2:06:35:cd:d0:51:2f:4f:c0:ef:d5:b8:fc:82:
25:e7:5a:33:92:10:3d:e4:fa:0b:d9:f3:af:fb:b0:
7e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:4E:DB:1D:69:14:7C:5E:69:F8:59:BF:80:DF:60:39:6C:76:E4:5D
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:9d:4b:46:16:40:81:96:98:db:dd:1a:df:7c:e8:f7:e4:39:
62:76:37:a3:df:45:7e:2d:a7:e2:d8:bb:5e:d7:45:f6:d0:47:
c4:97:24:78:36:89:f0:52:41:5a:bb:5b:f2:40:17:56:d5:59:
a6:67:67:16:2d:67:56:0e:fe:a1:00:67:4d:fa:b1:6d:00:4f:
d1:34:1f:18:3a:20:8b:6c:93:1d:f9:56:bb:63:0a:2b:4a:b3:
35:ab:9e:13:4e:bc:15:26:45:e8:de:2c:a2:18:46:7c:15:ee:
b0:96:19:a5:63:b5:d3:32:11:2a:17:62:22:4c:33:ff:c8:cb:
86:4e:01:e6:f6:3a:68:da:97:a7:94:92:71:a0:21:38:19:5e:
94:63:c2:06:75:5a:dd:de:45:26:8d:0e:27:9f:d2:d5:d7:40:
dd:eb:b5:a7:e8:da:11:57:8e:67:85:cb:1e:f6:de:f9:c5:92:
95:d1:99:69:f3:6e:10:ed:1d:3f:a6:57:5e:7c:a5:51:5b:84:
38:06:a2:d9:dc:ec:54:b1:0d:4a:e5:92:95:7a:11:89:6d:e9:
39:9a:a4:a1:1c:e2:ef:a6:db:21:c8:a6:7e:22:46:c6:36:22:
38:f9:ac:53:f2:85:b9:20:b8:8a:68:af:a1:35:ba:7e:c7:8a:
76:4a:49:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:38:05 2026 by rpki-client