Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
File: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft (raw, json)
Hash identifier: nY3a/cO6yF7kbtG6mEiIy3RRspR5SeLDxagFIeixFPA=
Subject key identifier: 34:71:75:19:17:74:7F:5E:30:75:E0:6F:77:B8:65:2F:6E:C4:22:73
Authority key identifier: 4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
Certificate issuer: /CN=4d1527d1839bf830360d71590134354e6d904697
Certificate serial: 019D98F4AC0FD390C00395155687BDE33C6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 01:01:04 +0000
Manifest this update: Fri 17 Apr 2026 01:01:04 +0000
Manifest next update: Sat 18 Apr 2026 01:01:04 +0000
Files and hashes: 1: 5IRwRfh8Fym_BtVi99L5BSoQylk.roa (hash: zVO1DYlBvdQtHAVcl2WpceQxT4SVa8kf2zP0TMDOH1A=)
2: TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl (hash: jKIfkEiwhmuvR5e8MxHd0T5JviKRfWMjBf5dg2YlqpI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:ac:0f:d3:90:c0:03:95:15:56:87:bd:e3:3c:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d1527d1839bf830360d71590134354e6d904697
Validity
Not Before: Apr 17 01:01:04 2026 GMT
Not After : Apr 18 01:01:04 2026 GMT
Subject: CN=3471751917747f5e3075e06f77b8652f6ec42273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b1:9c:bb:d3:92:85:da:1b:6e:d0:30:bf:66:
57:aa:3e:9e:71:0b:19:5a:63:47:1a:19:11:6f:08:
e6:9d:8d:b2:f6:39:e9:36:f1:fd:10:2a:91:f5:20:
29:49:26:d1:3e:04:4a:92:43:28:de:f6:e9:61:8f:
b9:f1:d3:4c:05:f0:8d:6c:be:65:0d:74:a7:7d:b1:
bb:d2:2d:64:c1:58:cb:67:a6:5c:36:00:2d:3a:6e:
2f:94:ae:0d:f3:5e:b4:07:97:ac:c7:92:0e:30:6d:
59:23:c9:0f:5e:27:e1:fe:5e:be:41:27:41:eb:7e:
1a:34:5f:b7:04:54:a7:ed:ea:94:01:80:b9:dd:59:
0a:d8:bd:06:14:5c:dd:3d:28:64:ae:e9:08:98:6b:
0d:e1:0b:05:00:c3:11:ac:98:cd:b6:f5:43:a6:a3:
d8:d7:db:ba:c6:30:9e:3c:8b:46:27:6c:4a:ca:df:
35:1a:31:0d:e6:02:5d:f3:7b:64:01:b8:39:b0:dd:
90:e0:42:8e:5e:cf:6b:4c:9c:04:5f:ec:17:f7:ab:
59:ac:d6:7a:18:8e:ff:25:69:1c:e8:3f:78:c8:b2:
46:19:80:d2:7a:3d:50:01:80:2d:45:83:cc:3e:1e:
b9:e6:93:21:d8:8e:68:aa:cf:70:03:2c:bb:17:b1:
ec:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:71:75:19:17:74:7F:5E:30:75:E0:6F:77:B8:65:2F:6E:C4:22:73
X509v3 Authority Key Identifier:
keyid:4D:15:27:D1:83:9B:F8:30:36:0D:71:59:01:34:35:4E:6D:90:46:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/309d36-c420-4321-9540-f3df673ea58c/1/TRUn0YOb-DA2DXFZATQ1Tm2QRpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:72:e4:f2:61:7b:9d:1b:d0:83:0a:92:f9:b0:c8:c0:4c:da:
c3:8c:72:e9:31:72:61:91:84:ca:98:88:04:67:0d:ec:1c:00:
31:fb:7c:a1:84:3d:dc:8b:8e:36:78:b7:42:7c:1f:95:cb:31:
8c:25:8c:4c:cf:7e:67:5e:01:09:a7:07:6b:d2:67:2d:f8:26:
a6:41:74:7c:4e:2b:60:84:86:aa:49:0b:4c:54:16:0d:c2:c4:
e0:58:94:45:15:26:20:d0:f1:40:89:f3:4c:e7:5c:37:88:5e:
26:07:4d:25:0f:c0:07:db:5e:e9:ea:bb:73:ae:4e:98:c6:ce:
d8:88:29:d3:1a:35:6d:de:1a:ad:f4:17:80:03:8b:dd:fd:ba:
ea:89:a6:22:89:8d:ed:ce:3e:ec:07:6f:9e:81:b0:a6:93:ba:
3e:88:56:7d:ee:d1:8e:05:f5:75:de:1b:79:f7:40:d8:4d:4d:
55:a4:d9:00:75:c8:b4:ec:94:c7:81:7d:15:15:6a:5d:1e:45:
96:09:9e:18:8b:88:90:66:ac:b7:10:6d:1c:b5:6a:96:92:da:
ce:cd:69:7b:80:78:8b:85:45:5d:76:e7:23:25:d2:78:a3:4e:
88:ff:8a:57:7f:b5:e7:f0:3c:8e:71:e6:89:cb:72:0d:bf:a2:
c9:c3:6b:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:49:34 2026 by rpki-client