Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
File: _tdzOdk4vvCHWZKTwgGzufgiNiM.mft (raw, json)
Hash identifier: Aav6ShNRCPu7xTFO/5tkEMa8+eKNcKbTfijY75kh/80=
Subject key identifier: B6:44:4E:2E:BD:43:71:F8:F6:65:2D:0F:9F:A1:DF:8B:5D:6B:88:20
Authority key identifier: FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
Certificate issuer: /CN=fed77339d938bef087599293c201b3b9f8223623
Certificate serial: 019D992B62769BEE7CB0EC4D31953586A69C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
Manifest number: 1853
Signing time: Fri 17 Apr 2026 02:00:50 +0000
Manifest this update: Fri 17 Apr 2026 02:00:50 +0000
Manifest next update: Sat 18 Apr 2026 02:00:50 +0000
Files and hashes: 1: _tdzOdk4vvCHWZKTwgGzufgiNiM.crl (hash: wfH7uegTqLRCD3tZe10SfL90z+hKUL1OLsj/r4Efx24=)
2: dVMqcvXursPYfDYSCDAE4DhRFlc.roa (hash: Yq3X9779TMJZn56pp7FdF+bqg71vRgvQymxrtb6IBFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:62:76:9b:ee:7c:b0:ec:4d:31:95:35:86:a6:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fed77339d938bef087599293c201b3b9f8223623
Validity
Not Before: Apr 17 02:00:50 2026 GMT
Not After : Apr 18 02:00:50 2026 GMT
Subject: CN=b6444e2ebd4371f8f6652d0f9fa1df8b5d6b8820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:85:70:2e:5c:03:56:7d:b7:52:34:0b:07:4d:
3e:40:63:d5:70:a7:b9:1f:f5:4f:bc:cd:e6:45:58:
60:fa:8d:78:98:45:34:dc:90:b2:13:9a:30:94:e8:
6c:d1:ba:e5:ff:4b:a4:4f:56:29:48:76:9c:40:be:
0f:a5:67:f6:52:8b:17:0e:be:dc:74:5b:5b:91:c8:
43:d3:1f:a9:85:79:23:3c:ee:fe:2d:c9:ba:e6:20:
84:58:94:0e:f9:57:68:c0:32:75:eb:58:84:ad:87:
25:6a:a2:f1:63:d5:cf:6a:5e:ee:83:07:2a:02:8b:
c5:c2:5e:db:b0:59:8a:4f:10:49:90:1d:9e:c8:55:
42:22:eb:eb:c9:fe:25:8b:1b:fc:a2:29:ce:c5:c8:
cd:2b:fb:90:65:32:1d:0d:7a:12:18:75:08:3e:18:
b8:a6:c6:5f:e1:86:91:08:22:57:75:0a:6a:6e:f6:
50:0e:48:35:72:fe:53:62:c4:21:ac:9d:73:b5:96:
a0:5b:64:de:0b:3f:ff:5a:16:9d:6a:1e:08:33:e3:
e5:d9:22:ec:dc:01:ed:7c:93:fe:62:ed:90:14:63:
91:f2:70:c4:c4:55:fe:f4:3f:4a:a1:3c:e2:41:df:
06:af:ed:69:75:fd:89:ee:ef:d2:fe:85:9f:6d:2b:
a1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:44:4E:2E:BD:43:71:F8:F6:65:2D:0F:9F:A1:DF:8B:5D:6B:88:20
X509v3 Authority Key Identifier:
keyid:FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:97:85:88:1b:5c:9d:64:f0:7c:0d:58:2d:a2:d9:25:a2:91:
98:09:e7:f9:a4:a1:ea:8b:dc:13:74:ab:49:94:88:60:4b:a9:
71:ae:26:ca:68:d6:a5:5d:e6:d7:12:5c:58:21:55:b3:71:de:
3f:69:f5:5b:12:ca:9c:7b:ee:25:cd:d9:65:81:3a:89:1e:b5:
f7:ef:3c:d1:ea:07:6a:9e:11:d8:a5:61:7f:c5:d2:5e:cb:8c:
00:04:8d:c5:5b:64:c8:97:10:17:56:56:c8:73:e8:af:d6:e6:
6e:8b:b6:7e:ec:91:17:a2:96:c1:30:30:9f:cf:39:43:29:17:
47:87:de:e2:5b:e9:ae:2a:09:a5:c7:5a:93:09:46:b3:75:b4:
25:b0:f2:79:5b:b0:d9:0e:02:1b:7f:df:0f:c6:33:58:0f:b6:
aa:68:57:24:ec:39:dd:10:9d:60:7b:8e:28:76:42:c9:6f:f5:
c1:d4:f1:05:5a:7a:39:4a:75:d1:77:d4:81:0a:36:73:b5:94:
55:57:26:1a:88:19:45:1f:7e:9e:7f:61:5e:5a:b1:4c:b4:4b:
39:3c:bf:c2:e4:3d:4d:01:9f:f7:9b:d3:d2:f1:24:15:ee:d1:
f1:91:06:33:05:e4:5c:10:bd:01:9f:95:0d:47:8e:0f:e5:64:
7d:58:cc:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:18:47 2026 by rpki-client