Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
File: TvMzZvDPXk-oBO730eKSlO6lFIw.mft (raw, json)
Hash identifier: semfKEGuZVG7D74+UiknjBMyyCPikn389JyMNpwAmWs=
Subject key identifier: 92:71:4D:7A:0D:F8:67:85:79:5B:50:EC:84:3D:C6:20:41:30:D5:64
Authority key identifier: 4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
Certificate issuer: /CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Certificate serial: 019D9886793AD826F8FBA210D831139A313E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
Manifest number: 055A
Signing time: Thu 16 Apr 2026 23:00:42 +0000
Manifest this update: Thu 16 Apr 2026 23:00:42 +0000
Manifest next update: Fri 17 Apr 2026 23:00:42 +0000
Files and hashes: 1: TvMzZvDPXk-oBO730eKSlO6lFIw.crl (hash: VyCJS4q221Qfx10wxzJTb3PPnqS1xCjM8IRz+ZGOZU0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:79:3a:d8:26:f8:fb:a2:10:d8:31:13:9a:31:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ef33366f0cf5e4fa804eef7d1e29294eea5148c
Validity
Not Before: Apr 16 23:00:42 2026 GMT
Not After : Apr 17 23:00:42 2026 GMT
Subject: CN=92714d7a0df86785795b50ec843dc6204130d564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:19:c1:cc:18:c0:ea:08:8f:4d:0a:e0:8d:74:
d7:98:15:a2:c9:93:f4:de:80:c3:f2:77:ab:17:fd:
20:66:79:0a:0a:b2:82:c0:83:a7:1c:08:b1:af:cf:
95:7c:6d:5c:67:77:0f:b7:f9:fb:d5:bc:51:ad:b9:
7c:e4:55:47:f0:7b:8f:da:18:33:9b:76:c2:e3:4a:
e8:00:fa:20:1d:0e:cf:15:53:8d:7e:4d:db:20:c2:
fb:e1:81:79:7e:d8:91:42:8c:bb:43:4b:c8:ce:df:
eb:40:59:c0:a1:ae:b2:fc:ee:6d:1e:98:2c:98:14:
0a:a6:fd:85:2e:f1:7a:67:f4:5e:a8:a3:84:3c:64:
a7:0c:aa:65:16:32:8f:3f:38:72:58:b7:f7:56:e7:
33:9e:a6:39:29:dd:ae:58:62:ed:eb:5d:d5:9a:5d:
d3:fb:bd:19:2d:41:f6:e9:82:11:4b:ae:13:5c:99:
a2:96:eb:2c:98:16:3f:8d:e2:37:73:4a:f8:be:31:
98:a9:13:2e:e2:89:69:73:34:e7:ec:b6:be:82:d3:
d7:dc:15:a3:f5:6a:50:44:0e:68:f3:1e:71:95:ce:
79:45:0e:67:e5:31:4a:b8:16:da:1e:fe:a0:ef:ea:
90:2f:b1:68:e6:ed:39:59:60:8d:fe:c5:3a:55:03:
bb:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:71:4D:7A:0D:F8:67:85:79:5B:50:EC:84:3D:C6:20:41:30:D5:64
X509v3 Authority Key Identifier:
keyid:4E:F3:33:66:F0:CF:5E:4F:A8:04:EE:F7:D1:E2:92:94:EE:A5:14:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TvMzZvDPXk-oBO730eKSlO6lFIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38449c-aad8-405a-b7f7-6d9f384d2bc3/1/TvMzZvDPXk-oBO730eKSlO6lFIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:26:1e:db:a0:c7:a4:8a:4a:c2:9e:a9:41:38:fa:65:b5:3d:
d3:28:f1:b7:a8:f1:11:c6:0d:91:11:1b:6b:33:36:61:f3:26:
37:0c:c1:cf:48:86:ef:7e:6e:6a:85:5d:60:af:00:ef:7d:17:
89:11:ef:b7:d6:b3:9d:1b:b6:fe:04:e1:8a:7b:71:61:4a:85:
2a:3b:85:8e:1d:f7:79:f4:23:ba:28:bb:a2:7c:ed:d4:14:5c:
ba:87:37:b5:02:01:d9:cd:37:ef:71:dc:bc:ad:90:b1:08:9b:
6f:04:2e:7b:d9:13:88:70:c8:d4:4c:db:44:8b:59:cf:8c:c1:
11:a6:f9:c2:95:40:0a:ee:73:68:ca:1d:16:a4:28:aa:5c:99:
4e:b9:02:bb:4e:12:be:e8:0d:e6:f7:bf:d0:7b:05:a0:ac:62:
d0:4d:d8:56:55:a9:59:50:72:af:dd:83:31:06:c9:d4:4b:01:
38:8e:bd:c6:2c:f3:14:71:4d:16:06:22:4f:f1:d5:a0:8c:f8:
7f:ce:ed:ae:bc:1f:28:4a:2a:01:f3:f4:ab:cb:1a:3e:2b:d7:
f8:2a:09:d7:8c:3a:2a:68:08:9b:49:6d:43:0f:65:b1:f4:b3:
7b:e6:50:1e:ab:35:1c:49:97:9e:20:f8:b9:46:88:5c:42:84:
4d:f6:d2:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Yhnk62Cb4+6IQ2DETmjE+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZjMzMzY2ZjBjZjVlNGZhODA0ZWVmN2QxZTI5Mjk0ZWVh
NTE0OGMwHhcNMjYwNDE2MjMwMDQyWhcNMjYwNDE3MjMwMDQyWjAzMTEwLwYDVQQD
Eyg5MjcxNGQ3YTBkZjg2Nzg1Nzk1YjUwZWM4NDNkYzYyMDQxMzBkNTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBnBzBjA6giPTQrgjXTXmBWiyZP0
3oDD8nerF/0gZnkKCrKCwIOnHAixr8+VfG1cZ3cPt/n71bxRrbl85FVH8HuP2hgz
m3bC40roAPogHQ7PFVONfk3bIML74YF5ftiRQoy7Q0vIzt/rQFnAoa6y/O5tHpgs
mBQKpv2FLvF6Z/ReqKOEPGSnDKplFjKPPzhyWLf3VucznqY5Kd2uWGLt613Vml3T
+70ZLUH26YIRS64TXJmilussmBY/jeI3c0r4vjGYqRMu4olpczTn7La+gtPX3BWj
9WpQRA5o8x5xlc55RQ5n5TFKuBbaHv6g7+qQL7Fo5u05WWCN/sU6VQO7VwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJJxTXoN+GeFeVtQ7IQ9xiBBMNVkMB8GA1UdIwQY
MBaAFE7zM2bwz15PqATu99HikpTupRSMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8zODQ0OWMtYWFkOC00MDVhLWI3Zjct
NmQ5ZjM4NGQyYmMzLzEvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8zODQ0OWMtYWFkOC00MDVhLWI3ZjctNmQ5ZjM4NGQyYmMz
LzEvVHZNelp2RFBYay1vQk83MzBlS1NsTzZsRkl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIyYe26DH
pIpKwp6pQTj6ZbU90yjxt6jxEcYNkREbazM2YfMmNwzBz0iG735uaoVdYK8A730X
iRHvt9aznRu2/gThintxYUqFKjuFjh33efQjuii7onzt1BRcuoc3tQIB2c0373Hc
vK2QsQibbwQue9kTiHDI1EzbRItZz4zBEab5wpVACu5zaModFqQoqlyZTrkCu04S
vugN5ve/0HsFoKxi0E3YVlWpWVByr92DMQbJ1EsBOI69xizzFHFNFgYiT/HVoIz4
f87trrwfKEoqAfP0q8saPivX+CoJ14w6KmgIm0ltQw9lsfSze+ZQHqs1HEmXniD4
uUaIXEKETfbSSQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:26:35 2026 by rpki-client