Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
File: 1TVDIcElQ2AUXq8l9pk4uN80ezE.mft (raw, json)
Hash identifier: T7g267/pWEvWGH121Q/j6MtnngENrZWu0SxljUYE71U=
Subject key identifier: B3:CD:18:A0:9F:C5:16:AB:41:32:CB:E7:E0:5E:CF:6A:C0:0D:1D:A8
Authority key identifier: D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
Certificate issuer: /CN=d5354321c1254360145eaf25f69938b8df347b31
Certificate serial: 019D996254041D70B08292AB9DA7121DC7F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
Manifest number: 0DC3
Signing time: Fri 17 Apr 2026 03:00:51 +0000
Manifest this update: Fri 17 Apr 2026 03:00:51 +0000
Manifest next update: Sat 18 Apr 2026 03:00:51 +0000
Files and hashes: 1: 1TVDIcElQ2AUXq8l9pk4uN80ezE.crl (hash: GPuZLvzZvGNE2ebY+69Hs0a4PVqvhCnyyvq4c9+x174=)
2: yqbwyn5sfCL6hbkLZAJdRWAyPBM.roa (hash: ZWKRKB/jnik25oPS/+Y2ymZERk+OEa7DBYYnhwqGBQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:54:04:1d:70:b0:82:92:ab:9d:a7:12:1d:c7:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5354321c1254360145eaf25f69938b8df347b31
Validity
Not Before: Apr 17 03:00:51 2026 GMT
Not After : Apr 18 03:00:51 2026 GMT
Subject: CN=b3cd18a09fc516ab4132cbe7e05ecf6ac00d1da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3c:b4:4e:f3:14:fa:9b:e7:e6:35:a5:ad:fc:
84:62:88:d8:98:79:d9:96:53:7b:e3:b6:0b:b0:81:
c8:d4:ad:bc:6f:32:be:11:7b:62:26:a0:6d:56:49:
ca:8b:6c:b6:54:38:df:0f:0d:ad:4a:d1:3f:d0:cb:
e5:7e:2e:df:d1:16:51:71:55:a9:52:eb:ec:37:25:
76:55:cb:51:37:be:7f:41:99:b0:f4:46:da:17:45:
30:87:72:a0:ea:58:17:58:98:81:8d:36:c9:25:a7:
42:85:7d:b3:11:89:06:9a:3e:37:e6:d2:74:f1:53:
7d:d7:19:4b:66:12:18:91:b7:ec:65:67:93:c1:d5:
2f:2f:d6:d5:4b:16:32:c6:08:c5:e4:41:74:d5:82:
0e:6d:30:6a:97:08:49:c0:c9:7d:2d:26:e9:a9:18:
67:ed:be:5f:3d:10:83:dd:0f:89:6c:45:f1:87:8b:
c6:80:45:32:a8:40:62:fd:17:1b:ed:5c:76:19:03:
42:c0:c1:19:5d:1d:7c:13:14:f3:90:48:db:82:77:
42:48:37:75:b8:2d:1b:34:c0:eb:44:dd:5f:cd:73:
99:c2:9a:77:be:46:af:ad:08:bf:99:8d:9d:73:78:
4b:40:0a:5d:7e:48:fc:aa:1a:a7:63:f8:5e:9e:6f:
cb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:CD:18:A0:9F:C5:16:AB:41:32:CB:E7:E0:5E:CF:6A:C0:0D:1D:A8
X509v3 Authority Key Identifier:
keyid:D5:35:43:21:C1:25:43:60:14:5E:AF:25:F6:99:38:B8:DF:34:7B:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TVDIcElQ2AUXq8l9pk4uN80ezE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d9f9a8-da01-4d35-8284-b64eb8d83658/1/1TVDIcElQ2AUXq8l9pk4uN80ezE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:56:26:e5:07:9b:e2:4c:82:c1:9c:84:f2:05:52:33:1c:81:
85:6a:cb:42:b4:37:af:8a:39:8e:03:e4:1e:b5:b3:48:11:bd:
90:42:35:1a:7e:d2:86:67:83:c2:0c:f9:17:67:49:8f:88:12:
fa:60:cd:75:77:e6:68:ce:7a:37:34:44:9d:94:ef:70:47:57:
a0:9d:ce:22:90:8a:82:6b:ed:0a:93:ee:ed:05:cf:f1:1f:ce:
f5:5a:92:96:50:4c:36:7c:09:68:34:91:ab:bf:2b:64:42:64:
68:97:b8:06:0c:6d:cf:a7:2e:d3:4c:64:e5:c0:d0:bd:3e:d2:
ee:d3:a9:db:33:3c:49:73:c2:66:8e:7d:82:2d:2a:cf:64:77:
ca:0e:1d:42:c1:ec:eb:74:e3:05:65:c3:16:54:89:35:e6:fe:
45:c1:c3:e4:4e:95:64:7c:a1:71:e3:af:15:b5:19:dc:1f:b4:
a3:5a:96:39:4f:18:ee:a0:7c:c6:9f:29:e7:43:0e:c9:7f:d8:
e3:01:cc:df:07:66:1e:01:de:18:12:e5:cf:b9:34:c6:f7:c7:
2b:cc:36:17:8e:63:7e:6d:1b:76:12:97:ef:95:f3:28:27:de:
19:3b:ae:ac:86:27:d4:0a:e3:c3:a8:47:2f:a9:f2:c4:de:34:
ad:5d:0f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:24:57 2026 by rpki-client