Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
File: TLbePNkQ87_3_4Xe1FLEMbHopSA.mft (raw, json)
Hash identifier: YyI19Te63Gc1wbLMahsuuWJ8O8i701nUNMrF00eHL2A=
Subject key identifier: 84:D9:C8:AE:13:DC:CB:8C:FB:3E:81:F4:FA:CC:68:A7:1B:E4:FB:3D
Authority key identifier: 4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20
Certificate issuer: /CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520
Certificate serial: 019D9CD122D4B14C9C56ECE774C238CCC6C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
Manifest number: 18C5
Signing time: Fri 17 Apr 2026 19:00:44 +0000
Manifest this update: Fri 17 Apr 2026 19:00:44 +0000
Manifest next update: Sat 18 Apr 2026 19:00:44 +0000
Files and hashes: 1: 3s9WMYEcQ2eeR7WmEF0cPyYnnoc.roa (hash: I5I/yKJ6+N12F+Oii5+qZSRYetGEm6Nazf/isv9EOH0=)
2: TLbePNkQ87_3_4Xe1FLEMbHopSA.crl (hash: QUUtN7mfJOY4k3ynxDDwZgiZLxDapwOgS1tJQbQFpys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:d1:22:d4:b1:4c:9c:56:ec:e7:74:c2:38:cc:c6:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cb6de3cd910f3bff7ff85ded452c431b1e8a520
Validity
Not Before: Apr 17 19:00:44 2026 GMT
Not After : Apr 18 19:00:44 2026 GMT
Subject: CN=84d9c8ae13dccb8cfb3e81f4facc68a71be4fb3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:41:38:22:69:9e:63:aa:20:4c:5e:83:5d:6e:
12:e6:f3:80:4c:9b:7a:8a:df:56:63:62:8e:a9:cd:
86:86:c6:8e:de:ef:ac:aa:08:e9:cf:b0:18:6d:f2:
81:d9:30:f1:a1:d1:a9:08:c7:8c:68:57:3a:a2:03:
16:18:c9:23:1c:32:6a:c8:4c:3e:9f:98:7c:1e:ef:
71:6e:01:56:ec:7a:0d:62:fa:6e:73:5c:11:89:3f:
8c:fd:b0:a1:99:84:33:ce:72:c4:24:00:5d:b1:59:
4c:90:c5:a7:08:e0:bd:c4:d7:f8:4d:52:1b:7a:d8:
2a:42:84:10:fa:b0:a9:fa:ee:d3:c9:76:c7:13:c3:
fd:c7:f6:f0:06:e5:35:88:ec:76:90:26:70:b1:2b:
6b:ec:f4:07:c5:40:2b:ef:df:3f:f5:54:02:d6:a2:
bb:c5:fd:97:31:a7:18:1a:9c:4d:6c:8a:f4:ee:0f:
8c:88:0f:e5:ce:f0:28:50:82:c7:02:17:f8:0a:e2:
61:4a:a9:1c:ef:81:fd:b7:8b:0e:66:4d:38:5f:ac:
60:e1:bf:c0:aa:85:64:fe:44:a5:1a:e0:e0:fe:a5:
7e:eb:d6:b3:85:cf:e9:29:45:59:fa:8d:5a:90:88:
13:c0:86:41:2b:2e:be:56:c6:20:81:e3:ef:8b:f7:
9b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D9:C8:AE:13:DC:CB:8C:FB:3E:81:F4:FA:CC:68:A7:1B:E4:FB:3D
X509v3 Authority Key Identifier:
keyid:4C:B6:DE:3C:D9:10:F3:BF:F7:FF:85:DE:D4:52:C4:31:B1:E8:A5:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TLbePNkQ87_3_4Xe1FLEMbHopSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/8fa354-4bd5-454d-b2d8-03f604324fcf/1/TLbePNkQ87_3_4Xe1FLEMbHopSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:e4:c8:10:df:d8:02:9b:2e:29:a0:8d:c7:4b:09:b0:a2:5d:
85:a8:e3:dc:33:ae:b7:99:51:59:e8:a0:d4:9c:61:2b:69:84:
ae:f8:87:f7:89:75:11:5a:44:0a:4d:32:42:46:55:f5:be:80:
17:82:63:10:cf:58:65:ca:5d:00:68:c7:d7:a5:a6:0c:24:a9:
b2:c2:9f:9c:94:51:32:84:9b:c4:2a:a4:b6:16:1a:00:d1:51:
9b:5c:9e:15:a0:55:9c:db:06:d5:73:31:12:02:ba:0a:12:10:
a1:0c:f8:f7:c4:16:e6:eb:44:d0:e3:5f:1d:29:eb:78:eb:f3:
c1:d3:dc:11:f4:28:4c:73:43:52:a1:b7:bf:92:c4:92:fa:49:
2b:41:65:85:c8:63:44:03:37:a2:e6:c3:65:88:9b:98:d7:4f:
11:50:d6:bb:5f:55:ad:c4:e4:3f:9d:14:84:3d:56:7d:b5:c4:
51:f2:7e:f5:3e:38:13:4a:10:3e:4b:2f:1a:3b:32:1e:92:2e:
ba:fe:52:31:e3:a1:e2:02:57:ea:bd:1b:60:a8:eb:bb:47:31:
9e:0e:f6:d0:c6:33:96:c0:4f:75:a0:02:17:d1:5b:a0:ee:28:
14:4a:d9:c6:2a:69:c5:f7:8c:0d:98:b3:db:a6:1a:c6:90:62:
f8:1e:31:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:58:14 2026 by rpki-client