Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
File: tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft (raw, json)
Hash identifier: 6a0ULT8vKqgi6VHvIWvf+Z3+36SwzuyESPUnTolrOS8=
Subject key identifier: 74:16:50:9E:E0:E1:07:1E:14:4D:06:31:6E:16:C9:41:48:EB:2E:3D
Authority key identifier: B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
Certificate issuer: /CN=b4430ba11506741d676ea202e291ec7ec6191b17
Certificate serial: 019DA30AA338F190F5B3184EEB5135664E69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
Manifest number: 18CB
Signing time: Sun 19 Apr 2026 00:01:16 +0000
Manifest this update: Sun 19 Apr 2026 00:01:16 +0000
Manifest next update: Mon 20 Apr 2026 00:01:16 +0000
Files and hashes: 1: NDhq8_kQqGPgm41GchZ3TtgeGeg.roa (hash: +9TejtgpguDTAT190VXenQHqi2LFLLtouTU0DZkmU8U=)
2: tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl (hash: X0Yw/7pV6Yg+I4pXs2g95stD2XixYqYQHW7UFEzDvY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:0a:a3:38:f1:90:f5:b3:18:4e:eb:51:35:66:4e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4430ba11506741d676ea202e291ec7ec6191b17
Validity
Not Before: Apr 19 00:01:16 2026 GMT
Not After : Apr 20 00:01:16 2026 GMT
Subject: CN=7416509ee0e1071e144d06316e16c94148eb2e3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b0:c6:f0:e6:b1:33:2d:fa:93:3e:0f:49:ae:
9f:bf:57:2b:2d:b9:89:c3:87:e7:b7:64:ea:82:0e:
40:2a:fb:b4:cf:0d:32:6c:09:84:be:85:a7:bf:d0:
cf:f4:6d:c1:de:b7:42:dd:a1:f4:32:a4:a7:c5:e6:
90:cb:bb:eb:b2:42:f4:c5:a3:57:23:08:69:aa:aa:
6f:ee:c4:a8:df:51:bb:2b:30:ba:af:bc:61:d5:d0:
aa:fb:8a:28:66:27:45:59:7d:a7:2b:58:ee:a7:d8:
39:f4:a2:6d:b5:53:3c:bf:ae:24:87:6d:56:eb:c7:
9c:bd:73:50:76:1d:52:09:33:ce:9f:ef:1d:b0:e6:
73:ef:3c:8f:12:61:f8:40:19:24:75:cc:bf:b7:48:
7d:22:43:21:ff:0d:f8:bb:24:fb:53:32:a7:dc:ca:
e4:73:3c:37:44:ea:d2:af:1a:5a:2a:cf:3e:1d:f7:
9c:91:c6:c7:b3:21:fa:54:32:7a:c9:de:00:08:e5:
9b:ca:e3:11:0b:28:be:56:c2:3b:65:a5:41:dc:ff:
ac:0f:8f:d0:96:f0:fa:c6:fd:c2:2d:af:a5:c5:c7:
9f:d9:8d:26:e1:08:30:58:a6:f4:d6:d2:96:3a:b5:
21:a0:83:b3:f4:c8:0d:08:2b:cd:14:f7:4a:e3:82:
ba:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:16:50:9E:E0:E1:07:1E:14:4D:06:31:6E:16:C9:41:48:EB:2E:3D
X509v3 Authority Key Identifier:
keyid:B4:43:0B:A1:15:06:74:1D:67:6E:A2:02:E2:91:EC:7E:C6:19:1B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEMLoRUGdB1nbqIC4pHsfsYZGxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/60ccfa-0930-46b4-8317-f8ca9cb63317/1/tEMLoRUGdB1nbqIC4pHsfsYZGxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:f0:27:e2:62:02:24:d1:78:3e:59:39:e5:03:bc:a4:22:2c:
ab:de:d9:44:ef:3b:24:f0:e9:1d:46:e8:14:a6:9a:36:2e:b8:
37:1a:d9:82:3c:1b:c3:31:82:b3:bd:f8:ef:5e:72:b2:89:45:
98:cd:42:e1:b7:91:df:69:e1:f3:63:6b:46:75:b4:90:37:ef:
08:20:8e:a9:b6:c7:f7:15:48:2d:0a:84:40:bb:73:30:46:70:
65:d1:60:f2:1c:1a:a0:c1:15:5d:bf:f2:b1:2d:2d:f7:72:3c:
3f:d0:ff:c1:8a:02:17:30:9c:48:89:b3:88:1b:81:6c:ca:e8:
52:6e:ed:06:6e:a6:82:60:48:37:00:95:94:35:75:09:87:76:
24:2f:29:e8:ed:6b:0a:42:c3:67:2d:fd:aa:3a:64:e5:f8:8f:
a9:05:a3:87:29:77:5d:fd:86:fd:44:0a:e2:d1:63:e2:41:ed:
7a:b8:25:08:7d:9a:f7:66:00:15:0d:f9:c8:30:e2:86:d2:65:
c8:04:d9:a7:0f:57:e3:55:6f:92:d4:4e:0b:9a:7b:19:68:28:
95:11:b3:40:fc:56:99:7a:f0:c4:2c:b7:13:ea:54:b6:3d:ce:
1f:3a:09:49:fa:68:a1:7e:c6:87:16:71:af:0f:ae:75:2f:a5:
95:f0:47:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2jCqM48ZD1sxhO61E1Zk5pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NDMwYmExMTUwNjc0MWQ2NzZlYTIwMmUyOTFlYzdlYzYx
OTFiMTcwHhcNMjYwNDE5MDAwMTE2WhcNMjYwNDIwMDAwMTE2WjAzMTEwLwYDVQQD
Eyg3NDE2NTA5ZWUwZTEwNzFlMTQ0ZDA2MzE2ZTE2Yzk0MTQ4ZWIyZTNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbDG8OaxMy36kz4PSa6fv1crLbmJ
w4fnt2Tqgg5AKvu0zw0ybAmEvoWnv9DP9G3B3rdC3aH0MqSnxeaQy7vrskL0xaNX
Iwhpqqpv7sSo31G7KzC6r7xh1dCq+4ooZidFWX2nK1jup9g59KJttVM8v64kh21W
68ecvXNQdh1SCTPOn+8dsOZz7zyPEmH4QBkkdcy/t0h9IkMh/w34uyT7UzKn3Mrk
czw3ROrSrxpaKs8+HfeckcbHsyH6VDJ6yd4ACOWbyuMRCyi+VsI7ZaVB3P+sD4/Q
lvD6xv3CLa+lxcef2Y0m4QgwWKb01tKWOrUhoIOz9MgNCCvNFPdK44K6yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHQWUJ7g4QceFE0GMW4WyUFI6y49MB8GA1UdIwQY
MBaAFLRDC6EVBnQdZ26iAuKR7H7GGRsXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEVNTG9SVUdkQjFuYnFJQzRwSHNmc1laR3hjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi82MGNjZmEtMDkzMC00NmI0LTgzMTct
ZjhjYTljYjYzMzE3LzEvdEVNTG9SVUdkQjFuYnFJQzRwSHNmc1laR3hjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi82MGNjZmEtMDkzMC00NmI0LTgzMTctZjhjYTljYjYzMzE3
LzEvdEVNTG9SVUdkQjFuYnFJQzRwSHNmc1laR3hjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAvAn4mIC
JNF4Plk55QO8pCIsq97ZRO87JPDpHUboFKaaNi64NxrZgjwbwzGCs734715ysolF
mM1C4beR32nh82NrRnW0kDfvCCCOqbbH9xVILQqEQLtzMEZwZdFg8hwaoMEVXb/y
sS0t93I8P9D/wYoCFzCcSImziBuBbMroUm7tBm6mgmBINwCVlDV1CYd2JC8p6O1r
CkLDZy39qjpk5fiPqQWjhyl3Xf2G/UQK4tFj4kHterglCH2a92YAFQ35yDDihtJl
yATZpw9X41VvktROC5p7GWgolRGzQPxWmXrwxCy3E+pUtj3OHzoJSfpooX7GhxZx
rw+udS+llfBHow==
-----END CERTIFICATE-----
Generated at Sun Apr 19 10:05:31 2026 by rpki-client