Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
File: TK0YVBTBauXSKaiqK_oV_vxxoiI.mft (raw, json)
Hash identifier: bStwlNdpo54PKs279rHUKNuMeunREaIDB6z9Bam20nE=
Subject key identifier: DF:01:34:E3:E3:4B:C1:F5:FD:7F:32:65:30:CF:E4:DE:28:8C:85:F1
Authority key identifier: 4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
Certificate issuer: /CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Certificate serial: 019D9C2C5E69D8CE3F3E8BBE3061435250A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
Manifest number: 1857
Signing time: Fri 17 Apr 2026 16:00:46 +0000
Manifest this update: Fri 17 Apr 2026 16:00:46 +0000
Manifest next update: Sat 18 Apr 2026 16:00:46 +0000
Files and hashes: 1: 9QPcxbHpWgVOHRfj3NoPhiQ58EM.roa (hash: XHp5Hjfo/9X6W4BtkLuJfmSNkmSR4XZrHJ8I100zW0g=)
2: TK0YVBTBauXSKaiqK_oV_vxxoiI.crl (hash: LBp9b1CdNFaZ2b7iKci/ymsGEwBXXVKJl1CbI1ORtnk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:5e:69:d8:ce:3f:3e:8b:be:30:61:43:52:50:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cad185414c16ae5d229a8aa2bfa15fefc71a222
Validity
Not Before: Apr 17 16:00:46 2026 GMT
Not After : Apr 18 16:00:46 2026 GMT
Subject: CN=df0134e3e34bc1f5fd7f326530cfe4de288c85f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:12:19:be:37:46:6b:e7:7d:b1:10:bf:c1:4b:
36:a4:17:a9:ae:30:ed:6d:bc:60:d8:40:13:3e:e5:
98:55:23:78:a4:7f:ba:00:ce:f3:95:b3:80:34:a0:
f6:ae:63:47:6b:12:4a:2e:0b:56:31:eb:c7:0b:36:
71:d6:d1:56:bd:f4:95:8e:0b:fd:10:a7:4b:a2:9d:
92:2b:05:76:01:55:6c:4e:fd:e7:23:d8:2f:6d:7b:
8e:6d:70:ae:78:57:5e:0f:0f:4d:a9:2f:d9:1d:56:
a5:db:f9:59:22:9b:54:d7:2b:55:9d:ee:b9:b8:2b:
77:54:3a:7b:b9:b3:ba:d0:ec:5e:8d:f9:37:fc:d9:
21:de:cf:dd:a2:29:30:f6:d3:47:2f:a8:7f:04:18:
e7:29:fc:55:f8:69:97:1e:43:08:2c:a2:53:e4:28:
03:7b:2b:fd:b9:1c:52:df:73:74:4a:b9:6a:5e:b9:
71:4a:f6:51:5e:3c:46:8b:2d:13:c4:2a:16:fa:c9:
7c:4f:3c:af:6c:27:59:27:62:e0:73:d5:36:59:09:
1d:69:0e:7b:2f:8a:37:2a:52:1e:6e:ba:3e:f7:90:
3b:66:2a:26:9b:43:10:b6:31:19:df:2d:28:58:51:
66:eb:38:a5:78:ca:34:2b:28:ef:11:eb:9e:38:2a:
a2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:01:34:E3:E3:4B:C1:F5:FD:7F:32:65:30:CF:E4:DE:28:8C:85:F1
X509v3 Authority Key Identifier:
keyid:4C:AD:18:54:14:C1:6A:E5:D2:29:A8:AA:2B:FA:15:FE:FC:71:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK0YVBTBauXSKaiqK_oV_vxxoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/5b788e-f847-4df9-9334-964cca722f73/1/TK0YVBTBauXSKaiqK_oV_vxxoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:40:94:b0:cf:b0:56:73:5a:f6:bc:69:8f:9c:c0:cc:38:44:
9c:4d:50:36:be:2c:13:b0:6a:14:f7:eb:f4:85:8a:88:95:cc:
0f:d5:f5:74:76:6d:99:a7:0b:05:1e:47:02:6b:3e:7a:06:51:
f8:bf:e6:e6:ef:59:06:55:53:80:94:8b:05:bb:01:ea:3f:ac:
4d:e6:f0:c1:17:dc:ca:85:35:86:0b:94:50:2e:f4:e7:6f:0b:
45:38:07:b3:cd:8f:07:d5:92:de:50:5c:b2:fc:e6:3b:53:fb:
81:f5:85:78:f8:ca:b8:a5:85:bb:a9:e0:3a:fc:81:1e:46:87:
e1:3a:06:7f:fd:69:85:41:dc:32:97:3c:9a:ab:33:9f:07:01:
d5:cf:c5:86:2a:8e:78:2a:66:d0:5d:47:43:69:1e:03:35:25:
f1:5c:fb:73:bc:2d:28:32:36:92:dd:1f:ed:d2:3d:8c:8b:29:
d9:9c:53:ee:2d:19:37:85:a2:96:f8:ea:a8:42:fc:a4:55:f1:
6a:f5:27:46:b9:76:6b:f4:e1:0b:fa:3c:c2:64:e6:23:f5:28:
2b:69:d3:01:7e:a4:61:ea:7f:ed:ae:0b:35:a3:6f:95:1c:ab:
9f:ea:8d:05:6c:c9:ad:d6:88:6e:ca:db:d9:7c:f4:01:be:8d:
15:23:85:4d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cLF5p2M4/Pou+MGFDUlCnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYWQxODU0MTRjMTZhZTVkMjI5YThhYTJiZmExNWZlZmM3
MWEyMjIwHhcNMjYwNDE3MTYwMDQ2WhcNMjYwNDE4MTYwMDQ2WjAzMTEwLwYDVQQD
EyhkZjAxMzRlM2UzNGJjMWY1ZmQ3ZjMyNjUzMGNmZTRkZTI4OGM4NWYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxIZvjdGa+d9sRC/wUs2pBeprjDt
bbxg2EATPuWYVSN4pH+6AM7zlbOANKD2rmNHaxJKLgtWMevHCzZx1tFWvfSVjgv9
EKdLop2SKwV2AVVsTv3nI9gvbXuObXCueFdeDw9NqS/ZHVal2/lZIptU1ytVne65
uCt3VDp7ubO60Oxejfk3/Nkh3s/doikw9tNHL6h/BBjnKfxV+GmXHkMILKJT5CgD
eyv9uRxS33N0SrlqXrlxSvZRXjxGiy0TxCoW+sl8TzyvbCdZJ2Lgc9U2WQkdaQ57
L4o3KlIebro+95A7Ziomm0MQtjEZ3y0oWFFm6zileMo0KyjvEeueOCqiWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN8BNOPjS8H1/X8yZTDP5N4ojIXxMB8GA1UdIwQY
MBaAFEytGFQUwWrl0imoqiv6Ff78caIiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEswWVZCVEJhdVhTS2FpcUtfb1Zfdnh4b2lJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS81Yjc4OGUtZjg0Ny00ZGY5LTkzMzQt
OTY0Y2NhNzIyZjczLzEvVEswWVZCVEJhdVhTS2FpcUtfb1Zfdnh4b2lJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS81Yjc4OGUtZjg0Ny00ZGY5LTkzMzQtOTY0Y2NhNzIyZjcz
LzEvVEswWVZCVEJhdVhTS2FpcUtfb1Zfdnh4b2lJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP0CUsM+w
VnNa9rxpj5zAzDhEnE1QNr4sE7BqFPfr9IWKiJXMD9X1dHZtmacLBR5HAms+egZR
+L/m5u9ZBlVTgJSLBbsB6j+sTebwwRfcyoU1hguUUC70528LRTgHs82PB9WS3lBc
svzmO1P7gfWFePjKuKWFu6ngOvyBHkaH4ToGf/1phUHcMpc8mqsznwcB1c/FhiqO
eCpm0F1HQ2keAzUl8Vz7c7wtKDI2kt0f7dI9jIsp2ZxT7i0ZN4WilvjqqEL8pFXx
avUnRrl2a/ThC/o8wmTmI/UoK2nTAX6kYep/7a4LNaNvlRyrn+qNBWzJrdaIbsrb
2Xz0Ab6NFSOFTQ==
-----END CERTIFICATE-----
Generated at Sat Apr 18 01:54:01 2026 by rpki-client