Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
File: TK0YVBTBauXSKaiqK_oV_vxxoiI.mft (raw, json)
Hash identifier: 8+2OpGbHRq61jNJIZuCEAHdLra6YYVB4UNNL86SVcPM=
Subject key identifier: A3:27:70:66:62:B6:36:AE:43:FA:33:CC:CD:C7:5A:EB:57:2A:46:51
Authority key identifier: 4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
Certificate issuer: /CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Certificate serial: 019CB09168B9D4DD3B0936BE09A1A3552E04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
Manifest number: 17DD
Signing time: Mon 02 Mar 2026 22:00:45 +0000
Manifest this update: Mon 02 Mar 2026 22:00:45 +0000
Manifest next update: Tue 03 Mar 2026 22:00:45 +0000
Files and hashes: 1: 9QPcxbHpWgVOHRfj3NoPhiQ58EM.roa (hash: XHp5Hjfo/9X6W4BtkLuJfmSNkmSR4XZrHJ8I100zW0g=)
2: TK0YVBTBauXSKaiqK_oV_vxxoiI.crl (hash: KpBnttOc7e0GH46CiUqBZDtpeNTLMwvw6AUy5WHwUwU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 21:16:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:91:68:b9:d4:dd:3b:09:36:be:09:a1:a3:55:2e:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Validity
Not Before: Mar 2 22:00:45 2026 GMT
Not After : Mar 3 22:00:45 2026 GMT
Subject: CN=a327706662b636ae43fa33cccdc75aeb572a4651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0d:09:97:8f:0b:dc:37:0a:cd:ed:3f:24:f2:
72:b4:ac:81:80:d9:39:6e:bf:90:c7:eb:88:cf:5d:
05:33:47:b8:bf:7c:4b:dd:18:0b:ec:7b:67:e5:44:
1e:6f:af:82:3f:39:f8:31:61:05:12:26:30:4e:f1:
47:d9:2e:64:1c:1a:11:dd:16:45:a9:2a:aa:39:d9:
41:7a:0e:58:25:ea:22:88:d9:f6:b9:59:ab:53:d0:
fc:05:88:08:73:29:dd:0e:0a:f7:62:0f:eb:74:7f:
f8:11:89:4f:84:2a:e9:02:5f:ec:dd:c0:6b:a2:b5:
c3:60:49:68:ba:9b:52:e2:44:5e:00:35:99:43:03:
a8:a0:b4:30:0f:b0:c7:0c:b4:90:4d:19:b7:e0:0a:
da:df:24:50:95:b9:e5:4a:f5:9c:a6:4a:75:0e:e2:
32:91:12:39:30:de:6e:98:37:ed:01:99:56:5b:77:
32:e2:69:d2:26:98:3c:5f:58:a9:93:6d:3a:04:82:
03:34:97:4b:50:b6:17:13:fd:86:be:6c:23:51:48:
04:b4:16:70:6a:7b:3c:0b:a6:2e:55:4f:48:c6:20:
fb:9e:38:88:ac:85:bc:4c:b6:99:61:d9:c3:ab:f2:
1a:56:37:69:e2:ae:21:68:31:97:49:7d:e3:3d:41:
92:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:27:70:66:62:B6:36:AE:43:FA:33:CC:CD:C7:5A:EB:57:2A:46:51
X509v3 Authority Key Identifier:
keyid:4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:5c:d8:10:98:03:f0:fb:a9:f0:fe:5c:3b:7e:6f:8d:58:4e:
62:3f:3d:7e:6d:21:cd:2b:86:b1:9f:39:43:0e:c2:92:96:71:
31:01:1e:46:0d:98:0b:f9:ba:16:2d:8a:27:d7:77:4b:3f:09:
7a:f6:06:53:f5:c4:e3:3c:62:45:87:5f:ba:0d:6a:c6:2b:cb:
d3:19:8f:0b:92:0a:6b:67:9d:49:5a:bb:f8:12:c8:08:94:44:
ca:ee:ea:42:1e:a7:f7:e3:34:f2:a8:dc:98:a4:f6:d1:9f:9e:
4d:8f:54:df:38:6f:6d:ae:57:85:53:3f:f1:cc:8f:a6:26:9d:
8e:fb:15:78:a7:96:c1:be:ef:7e:3a:f0:28:18:0e:d7:63:ed:
db:fd:d2:46:0e:fd:fe:fd:31:67:77:7b:f6:ab:0c:f3:04:6b:
f6:61:d2:6a:87:89:a4:f1:95:e0:d8:9d:86:07:b8:53:2d:c9:
dd:69:d6:50:76:3c:a0:53:9f:41:7c:91:33:27:29:d5:95:4c:
f0:7a:ca:bf:5f:d5:b5:1e:52:85:d3:c1:76:87:c5:12:b9:fd:
90:6a:f3:a4:1a:06:49:be:fe:bd:56:98:15:a8:4c:8d:0a:74:
72:b2:2d:41:6a:d9:0d:8d:cf:f9:b6:59:cc:f9:85:eb:a8:ea:
a7:1f:b1:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 03:49:35 2026 by rpki-client