Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
File: TRMSiBUQNXRBfKenBBLaOrO4RRE.mft (raw, json)
Hash identifier: k7TW9yCDMoXsD3tnG3IDI9GZkM8ijnzCr3OKjZ5fHqI=
Subject key identifier: 27:EB:2A:8F:62:E7:AC:10:92:B0:DB:4D:F3:DA:BF:4A:77:F5:5A:F6
Authority key identifier: 4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11
Certificate issuer: /CN=4d13128815103574417ca7a70412da3ab3b84511
Certificate serial: 019D97749A563364AA9514566F33F46BAB29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
Manifest number: 18C4
Signing time: Thu 16 Apr 2026 18:01:34 +0000
Manifest this update: Thu 16 Apr 2026 18:01:34 +0000
Manifest next update: Fri 17 Apr 2026 18:01:34 +0000
Files and hashes: 1: TRMSiBUQNXRBfKenBBLaOrO4RRE.crl (hash: hiwBmaijx5Ve34DnwSc/T1gGKlI7d/5vgtfu++/YtVc=)
2: mGlCacge7YnUjqIQY4CvKFnqpx4.roa (hash: AVo0MRQRTy6CdeGacGKP+5uMUkB7HT3z+0JrAGp0xWk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 18:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:74:9a:56:33:64:aa:95:14:56:6f:33:f4:6b:ab:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d13128815103574417ca7a70412da3ab3b84511
Validity
Not Before: Apr 16 18:01:34 2026 GMT
Not After : Apr 17 18:01:34 2026 GMT
Subject: CN=27eb2a8f62e7ac1092b0db4df3dabf4a77f55af6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a6:2f:e4:23:21:18:14:ee:2b:ea:30:12:1e:
2f:7c:e3:d1:db:72:30:d2:eb:60:7e:24:96:90:a9:
5b:f6:af:20:63:04:e6:59:b4:4e:bc:3d:e3:59:fa:
4b:80:c2:48:ee:b3:a2:fa:c5:0b:cb:62:da:65:ef:
9f:94:06:8b:49:ca:c6:91:38:93:70:0f:98:39:84:
41:cc:12:22:87:ef:8d:9b:32:de:ad:a6:79:3b:2e:
e6:74:25:dc:a1:a1:18:30:c1:30:f1:15:f6:72:09:
88:2c:09:aa:0f:46:cd:0c:98:e5:e5:7c:5a:a9:25:
fd:8b:29:63:d5:70:39:1e:d4:3d:08:3b:c4:a7:2a:
6a:4d:64:95:95:c5:95:e4:83:b4:e1:ce:4b:7e:20:
e0:d5:83:da:a3:28:07:1c:27:ee:ee:05:9d:19:08:
f6:45:59:52:9b:f2:58:69:16:35:00:32:cc:7e:0a:
61:aa:75:20:b9:d9:98:10:ca:91:3b:0a:7f:30:06:
c9:70:00:25:a6:1b:3b:5e:06:53:2f:5c:f6:b5:dc:
da:a2:1b:5b:4c:37:dc:f8:59:b9:e5:64:5e:b0:15:
94:b4:b4:0b:c0:5b:53:07:cf:4c:66:fb:7f:00:a5:
7d:15:a4:2e:2c:af:ee:9e:f5:11:c0:d9:31:cb:79:
24:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:EB:2A:8F:62:E7:AC:10:92:B0:DB:4D:F3:DA:BF:4A:77:F5:5A:F6
X509v3 Authority Key Identifier:
keyid:4D:13:12:88:15:10:35:74:41:7C:A7:A7:04:12:DA:3A:B3:B8:45:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRMSiBUQNXRBfKenBBLaOrO4RRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/faffc2-9517-4d18-8993-f55ea48ce75a/1/TRMSiBUQNXRBfKenBBLaOrO4RRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:79:1f:bf:7b:51:b3:a9:de:e5:d8:71:5b:ab:ec:b6:19:ef:
ea:45:4d:fd:43:30:10:6e:4d:1d:8f:a5:05:6e:85:e3:8a:1c:
75:93:3a:9a:56:80:22:01:08:f7:d2:99:63:08:1e:ca:a0:38:
86:de:10:b7:f2:53:a8:e0:5e:e8:1a:f3:01:bb:cd:90:6e:29:
c3:6c:f1:85:67:4e:47:59:7a:b3:4b:75:50:ad:a3:17:46:b8:
27:d3:3e:4e:14:da:95:f6:5e:ef:44:90:f6:8f:bc:78:9f:da:
81:37:9e:94:96:5d:18:c6:80:7a:a9:6f:07:d5:00:ad:5f:02:
c7:7c:96:0e:b1:fd:21:45:d1:9c:b8:d3:fe:0a:3c:3f:18:69:
aa:78:36:c5:f4:a6:47:4d:8a:75:64:b9:5d:9a:54:d0:10:03:
da:5c:b8:0c:ed:a1:88:aa:18:7f:0c:a3:cf:f6:e3:5b:84:b5:
49:db:35:bd:48:e5:76:3f:1b:46:73:b7:26:80:8b:02:43:dd:
20:dd:a4:99:d8:cf:5f:b9:fc:51:42:a5:40:a1:51:b3:f0:d0:
ae:e3:f4:6a:be:53:f7:85:6a:15:e9:6e:48:c2:cf:7f:8e:95:
16:67:3b:78:c7:08:d7:5d:3d:9d:50:dc:3b:25:0b:01:13:4a:
ea:e3:e2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:06:45 2026 by rpki-client