Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
File: TfkmWGAQlO1kmFxkxpUr40FjAc4.mft (raw, json)
Hash identifier: RWvwLnF0QEzdPJof9Sz9RNzOml6yVWJ+g2/cyi+kMvU=
Subject key identifier: E0:0C:D1:20:26:49:01:13:34:65:3A:83:0B:EA:17:9E:EF:F6:07:D9
Authority key identifier: 4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
Certificate issuer: /CN=4df92658601094ed64985c64c6952be3416301ce
Certificate serial: 019EBFC93D76962182926ADB4B04D6875EFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
Manifest number: 0BCA
Signing time: Sat 13 Jun 2026 07:01:37 +0000
Manifest this update: Sat 13 Jun 2026 07:01:37 +0000
Manifest next update: Sun 14 Jun 2026 07:01:37 +0000
Files and hashes: 1: TT7AxVwRgLIDSeadKvoi71E8vK0.asa (hash: o3OsuB0V5ph9dQ1ef1EOSm9Ca3120WnHHtR+xfhJuI4=)
2: TfkmWGAQlO1kmFxkxpUr40FjAc4.crl (hash: g+RQ83L2goJFh1ia75EZ+tzPeDST9/PK2pN1jkB9btM=)
3: vkkRAkl-IwQNmrBge38zIHM1u4s.roa (hash: ww7yIGrhLBt5cEWEEdI9G55jx6vHqfpMgzLOawUYyek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c9:3d:76:96:21:82:92:6a:db:4b:04:d6:87:5e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df92658601094ed64985c64c6952be3416301ce
Validity
Not Before: Jun 13 07:01:37 2026 GMT
Not After : Jun 14 07:01:37 2026 GMT
Subject: CN=e00cd1202649011334653a830bea179eeff607d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:49:b2:52:27:b7:99:59:23:2b:f4:2f:b7:70:
80:fe:8e:36:79:2d:d7:f2:f0:2b:d7:bf:1e:d1:d3:
69:d6:46:b9:cb:3a:9a:6c:df:c2:99:48:a9:06:e3:
22:d2:74:0f:1b:18:80:cd:f5:d9:35:17:7c:fb:01:
46:54:b0:bf:f7:08:b8:d8:0d:74:b4:f9:69:a5:40:
ba:b2:56:e9:72:db:81:ac:e2:e0:6d:d5:88:18:44:
42:94:e3:c6:9f:bc:81:ba:a8:f8:32:79:f8:51:dc:
ed:b2:c7:e8:b9:4b:46:f3:25:f4:e1:97:a2:5d:47:
d9:92:9f:c6:a5:e3:ed:6b:34:12:2b:0e:ea:36:56:
1c:03:39:9f:a5:f8:a0:1f:92:08:fb:25:a4:d9:28:
41:93:4f:f0:bf:2c:36:52:1c:c3:01:12:26:be:67:
91:93:7d:6f:5c:b2:d6:f9:77:c4:95:d1:28:8e:7b:
7f:cb:9f:1b:42:37:d3:80:4c:96:ea:79:9d:67:88:
ba:34:76:78:5a:7b:c7:fa:62:63:05:39:02:7c:f3:
c2:11:53:89:f7:df:66:ce:4e:23:ae:f1:a6:b7:ca:
08:29:b5:27:f5:bc:ad:fd:20:7b:65:2f:00:d9:51:
61:ee:a2:e3:1a:7f:3e:95:7c:fe:7f:c7:c4:df:2d:
fc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0C:D1:20:26:49:01:13:34:65:3A:83:0B:EA:17:9E:EF:F6:07:D9
X509v3 Authority Key Identifier:
keyid:4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:4f:52:88:2f:7b:af:94:55:84:98:e7:ae:5e:e3:14:a7:ee:
43:e2:30:af:98:49:19:a6:49:0a:09:39:57:be:04:ed:14:9b:
60:b6:9e:9d:2e:e8:a2:fd:cd:a5:ac:d4:99:fe:00:e4:4b:86:
62:aa:1b:d6:94:f6:a7:52:81:41:84:c0:4a:02:2b:f5:35:8b:
b8:85:c5:aa:2f:33:f7:8a:23:c9:8e:1f:bc:02:7f:99:1d:36:
e5:84:3a:1b:43:c4:c0:43:d4:fe:51:59:16:44:29:4f:ab:da:
6b:56:2e:4f:46:95:84:0f:53:5b:7e:24:ca:e7:fb:8f:01:8c:
15:b3:cd:d2:af:44:7e:50:c7:69:af:2a:02:2e:11:61:41:b7:
40:3c:66:7b:47:c9:c8:1c:e6:43:f2:99:fd:92:04:78:4e:83:
e6:b1:ee:84:77:ba:1b:7c:7b:93:dc:05:13:2e:21:6f:19:de:
e7:ac:23:f7:32:9e:35:bd:e6:35:7b:20:10:ee:1e:52:01:8e:
1e:12:b6:cf:aa:d3:a2:9a:7a:ba:28:fa:8a:74:ff:d3:d0:65:
22:e3:57:e2:cb:ee:b3:b7:60:1d:00:22:a6:e5:70:59:d9:85:
c5:37:e0:2c:a6:c7:45:80:1a:98:41:e3:fc:3e:43:98:b9:95:
0e:78:6f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:31:05 2026 by rpki-client