Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
File: tgcVWH7cyzJajXwPWkLY8EOHHbc.mft (raw, json)
Hash identifier: 1bYiiwRSdVwCdk9dvBfKWZ28OMMcqH8iL6ZRW/amDP8=
Subject key identifier: 9A:0B:DE:4B:9E:96:88:C5:40:B7:0A:AA:3E:DC:0D:35:0F:F7:42:4A
Authority key identifier: B6:07:15:58:7E:DC:CB:32:5A:8D:7C:0F:5A:42:D8:F0:43:87:1D:B7
Certificate issuer: /CN=b60715587edccb325a8d7c0f5a42d8f043871db7
Certificate serial: 019D9B87DC28B34AC43A4B369F122D264520
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
Manifest number: 03E8
Signing time: Fri 17 Apr 2026 13:01:05 +0000
Manifest this update: Fri 17 Apr 2026 13:01:05 +0000
Manifest next update: Sat 18 Apr 2026 13:01:05 +0000
Files and hashes: 1: eB4gEEpPyWFq6clsUK7vv51vvfQ.roa (hash: vOzaKzOf/nV2cWIeYZMZ7vTHjq9ov1FtZCm3hsoyh/8=)
2: tgcVWH7cyzJajXwPWkLY8EOHHbc.crl (hash: yj2KTVbAlXcRYFQUeMfjPCWi2qo8t6jzRJJyGqHPDXU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:dc:28:b3:4a:c4:3a:4b:36:9f:12:2d:26:45:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60715587edccb325a8d7c0f5a42d8f043871db7
Validity
Not Before: Apr 17 13:01:05 2026 GMT
Not After : Apr 18 13:01:05 2026 GMT
Subject: CN=9a0bde4b9e9688c540b70aaa3edc0d350ff7424a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bc:bf:b4:f0:bf:d0:27:56:cf:f0:b3:60:d7:
92:37:93:43:6e:2e:8a:58:5c:d6:7b:ed:2f:2a:31:
78:71:dc:fc:b2:e9:79:0f:fa:7c:00:a0:15:3d:5a:
62:ee:bd:97:b9:f3:b8:77:b6:ea:f6:c2:f7:0e:51:
78:7c:2a:a4:e8:ae:cd:17:1a:11:ed:bf:69:41:97:
ed:79:33:89:cf:bc:f8:0d:12:68:78:91:e4:6f:97:
b1:2c:7a:3c:a4:2b:12:c1:e6:24:a9:cf:6e:da:b2:
50:4a:a9:1a:f4:4c:56:2a:51:2a:bf:23:23:b8:f8:
3b:1b:88:e5:f9:1a:8d:5a:a0:f5:54:40:8a:96:d8:
75:44:b2:64:46:6c:04:db:ef:82:70:b2:c6:70:f0:
05:29:86:89:37:5b:1b:88:fd:75:f4:c3:c4:0b:67:
d4:3d:42:4a:69:10:21:fb:32:06:f1:e2:1f:2c:fa:
ce:f8:36:39:98:5b:2f:0d:a0:a6:31:c6:d2:f1:a3:
c5:6b:2f:0e:fc:ee:b7:a3:2f:ab:53:21:ea:8d:35:
5a:a5:2c:57:b4:ff:b3:18:f9:62:d2:ce:cd:49:08:
b4:5a:90:7b:b5:7b:20:56:26:ee:78:e0:f1:3f:e6:
25:08:35:86:1f:e4:9f:5c:13:48:81:f9:ff:47:c9:
5a:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:0B:DE:4B:9E:96:88:C5:40:B7:0A:AA:3E:DC:0D:35:0F:F7:42:4A
X509v3 Authority Key Identifier:
keyid:B6:07:15:58:7E:DC:CB:32:5A:8D:7C:0F:5A:42:D8:F0:43:87:1D:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgcVWH7cyzJajXwPWkLY8EOHHbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/359d71-1e9e-439f-93f1-1f5428684fc7/1/tgcVWH7cyzJajXwPWkLY8EOHHbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:28:99:90:75:c0:df:18:d0:89:96:a9:36:6d:e2:d9:ac:f0:
2a:2b:fc:31:60:be:2a:f0:aa:d8:8d:20:b4:f1:4d:c9:59:0b:
04:74:40:a0:83:94:cb:11:aa:f2:ec:57:a6:90:e0:e0:3e:da:
da:46:55:97:b0:9e:5c:ae:31:c1:a3:44:85:40:0a:3e:3c:9e:
f1:7c:fb:0b:8c:5d:5a:12:3e:96:e7:3c:ba:82:f7:00:5e:24:
60:3b:a2:27:bb:54:cd:7d:35:3b:fd:68:32:3c:5b:d9:9e:99:
47:33:e3:15:85:ca:7e:cd:d2:97:c7:d1:b1:c6:06:70:79:ba:
79:62:bd:d0:24:6c:f1:dc:44:f1:c3:7d:8b:b1:ef:dd:81:65:
74:65:cc:a8:df:77:18:24:29:5b:c2:28:db:31:fa:99:72:38:
88:bc:14:b8:d8:48:7e:13:52:bb:c3:f7:93:f6:0f:9b:7f:50:
73:42:d1:09:f3:be:cd:0d:b0:03:af:55:93:8a:88:8d:4e:24:
cc:c4:3a:a7:ac:fa:68:e1:ac:b0:63:06:7f:74:2a:d9:59:86:
00:88:7d:86:b0:d5:92:52:d8:66:67:ff:bc:9e:6e:e5:01:de:
1a:50:b6:14:d3:c0:fe:a9:58:f9:d4:73:d2:48:69:4e:b5:c6:
65:c2:f7:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:02:12 2026 by rpki-client