
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
File: TfkmWGAQlO1kmFxkxpUr40FjAc4.mft (raw, json)
Hash identifier: eNMLPeTmio1NXt9/kUb196jITL9b8YQNH3pJHOCZWMs=
Subject key identifier: 47:AD:10:D9:C7:E5:D8:62:4E:EE:1D:67:F0:71:48:3E:07:66:3B:95
Authority key identifier: 4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
Certificate issuer: /CN=4df92658601094ed64985c64c6952be3416301ce
Certificate serial: 019DA3AEFEA6B01E2DCB517E933AE99521B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
Manifest number: 0B36
Signing time: Sun 19 Apr 2026 03:00:47 +0000
Manifest this update: Sun 19 Apr 2026 03:00:47 +0000
Manifest next update: Mon 20 Apr 2026 03:00:47 +0000
Files and hashes: 1: TT7AxVwRgLIDSeadKvoi71E8vK0.asa (hash: o3OsuB0V5ph9dQ1ef1EOSm9Ca3120WnHHtR+xfhJuI4=)
2: TfkmWGAQlO1kmFxkxpUr40FjAc4.crl (hash: xm56Yv+N51S/sFpgeWojRjZtVwxyb4Pule6hC0ofHaU=)
3: vkkRAkl-IwQNmrBge38zIHM1u4s.roa (hash: ww7yIGrhLBt5cEWEEdI9G55jx6vHqfpMgzLOawUYyek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:ae:fe:a6:b0:1e:2d:cb:51:7e:93:3a:e9:95:21:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df92658601094ed64985c64c6952be3416301ce
Validity
Not Before: Apr 19 03:00:47 2026 GMT
Not After : Apr 20 03:00:47 2026 GMT
Subject: CN=47ad10d9c7e5d8624eee1d67f071483e07663b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cf:23:d8:fb:a7:5e:8a:e4:c7:27:0c:58:a0:
34:a2:29:cd:fa:1f:7f:8f:e8:91:bb:2f:c3:18:56:
c2:49:a3:dd:b0:7f:c3:49:57:3e:28:ec:f1:f2:95:
f8:32:15:97:de:9b:2e:0c:9b:d2:2a:31:ab:f9:e0:
1c:75:ff:23:ff:0f:72:db:95:ee:1f:e6:d1:99:40:
48:30:fb:64:4d:5a:73:6b:0d:64:67:35:ed:ad:74:
2d:e2:c9:4f:c4:4d:6e:3f:90:9b:06:00:94:fc:0d:
d8:dc:63:19:01:af:ba:fb:e5:09:ee:b9:da:71:84:
c5:39:e9:94:e6:82:fe:d1:72:fc:71:74:6d:9e:66:
01:a0:ff:4c:89:75:3a:cf:e0:98:e7:35:e7:9b:a0:
ee:ff:63:7e:0c:76:9e:b9:18:b0:6e:a3:fe:bb:5e:
d8:b4:a0:f6:2c:4d:9a:62:a5:84:0f:0a:aa:6a:2c:
cb:58:4d:ee:46:37:46:c9:d0:f3:fe:dc:8c:f6:fc:
0e:d5:ac:28:d0:af:c2:f6:4f:cf:eb:ad:12:69:bb:
54:55:5e:dd:da:b9:87:0a:cb:4c:0e:1c:b0:7f:3d:
d5:c2:92:d4:35:15:a9:82:90:90:e0:9e:f5:f5:26:
cb:93:9a:20:1d:4c:54:59:8e:43:d9:c5:77:3a:49:
6a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:AD:10:D9:C7:E5:D8:62:4E:EE:1D:67:F0:71:48:3E:07:66:3B:95
X509v3 Authority Key Identifier:
keyid:4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:a1:d6:f9:6e:c7:64:05:9a:d2:65:3d:a9:58:86:c6:3a:65:
3a:f3:38:8f:44:60:61:e0:dd:1b:7f:5d:0f:e6:80:f0:34:04:
71:da:72:2f:4d:18:23:3c:5a:b3:fd:d6:f7:33:f0:25:3f:5c:
ba:f1:be:5f:bf:5f:c7:71:b3:32:7f:4e:9a:57:41:2c:a6:26:
a1:4c:d7:f7:73:74:73:f3:63:fc:1f:31:4b:3c:bc:94:5c:f0:
ef:31:31:ae:b9:4b:2e:7c:22:21:e8:8d:c5:54:aa:62:e9:01:
a9:1f:5d:35:25:e1:d8:c8:9f:9a:87:e3:85:a4:17:62:80:4d:
00:1d:c3:30:80:96:94:e7:0b:25:82:7e:eb:57:73:7c:7b:40:
0d:bd:5d:31:41:c2:54:b8:c8:3f:76:93:f6:00:4c:40:61:ad:
d2:81:ab:30:87:2d:85:9b:c6:36:ba:0c:97:98:ca:89:c3:9d:
d9:7f:83:6f:58:15:cb:5e:2a:33:ad:30:c8:3f:ae:30:77:99:
ea:29:ea:b9:4e:cc:7f:60:21:4e:43:82:49:84:0d:83:ad:6e:
e9:e2:31:14:de:c3:33:c5:db:63:30:ca:1a:a0:d1:64:f8:e3:
ec:dc:29:28:14:8d:8d:08:32:1a:1c:aa:fe:3c:f2:3e:b8:c3:
ff:2b:9c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:44:51 2026 by rpki-client