Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
File: TzLUClO7YLhnWebsClIHMAtBr3A.mft (raw, json)
Hash identifier: Jtl9G5P6/hsTkxgLou+m94+1doKEB65un5eSVfKxVvU=
Subject key identifier: 8B:78:39:B6:2D:C3:3B:12:4F:EB:37:84:3C:45:F0:AB:FD:F8:B3:5C
Authority key identifier: 4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
Certificate issuer: /CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Certificate serial: 019D98BD8D12EE096DD8CB2C866A1A902E16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
Manifest number: 18C1
Signing time: Fri 17 Apr 2026 00:00:52 +0000
Manifest this update: Fri 17 Apr 2026 00:00:52 +0000
Manifest next update: Sat 18 Apr 2026 00:00:52 +0000
Files and hashes: 1: TzLUClO7YLhnWebsClIHMAtBr3A.crl (hash: cRH2XFLCN5fKtbu/ZHf6fWnMHhTVTPlM8HMMc6nZWpo=)
2: bsiJMh925Q6yXtQJa1CQ5jNihts.roa (hash: X9V/B7+nYNlAPiuflw59MNnI7H3EmEftfAgXQa1P4vk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:8d:12:ee:09:6d:d8:cb:2c:86:6a:1a:90:2e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f32d40a53bb60b86759e6ec0a5207300b41af70
Validity
Not Before: Apr 17 00:00:52 2026 GMT
Not After : Apr 18 00:00:52 2026 GMT
Subject: CN=8b7839b62dc33b124feb37843c45f0abfdf8b35c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b1:b7:68:0d:83:51:e3:3f:5b:8e:80:2e:72:
44:be:c8:d3:17:87:15:a2:5a:c1:f0:b1:56:f8:ec:
ae:2b:8c:70:f3:8a:82:7e:78:4e:e0:74:87:f4:14:
38:a0:2e:57:65:35:e3:ee:23:45:02:1d:05:32:7c:
c9:50:54:ae:c0:d9:9f:ae:c4:ac:79:46:43:2c:1e:
f3:52:2f:5a:eb:e1:fe:fe:72:2e:db:da:8e:d1:48:
2a:d6:28:e1:cf:e2:20:da:c3:a1:cd:f9:27:4b:cd:
79:ae:d2:16:11:c4:8a:43:9b:a5:06:9f:46:13:58:
1a:7a:8d:92:f2:86:82:22:f9:67:3e:e9:c8:49:0c:
de:d3:c2:9c:cd:b7:74:7f:7e:64:54:d7:3d:ad:87:
9d:02:71:20:47:d3:f0:71:ef:5d:12:c4:d0:a8:b1:
69:f9:a0:e8:e2:d6:98:42:70:37:74:f4:12:3a:ff:
7c:be:c7:9d:1e:f6:ab:9d:b1:2f:1f:25:06:e4:07:
09:a6:5c:b6:0e:e3:5a:1f:c1:2f:29:4b:d3:13:fa:
16:4a:fa:67:c1:e2:d9:5b:90:ad:3d:fe:42:3e:3b:
d4:59:61:75:72:57:03:53:14:38:59:34:d4:f8:df:
e4:44:7b:26:89:7d:78:34:ae:17:a1:2f:34:36:fc:
0a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:78:39:B6:2D:C3:3B:12:4F:EB:37:84:3C:45:F0:AB:FD:F8:B3:5C
X509v3 Authority Key Identifier:
keyid:4F:32:D4:0A:53:BB:60:B8:67:59:E6:EC:0A:52:07:30:0B:41:AF:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzLUClO7YLhnWebsClIHMAtBr3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a75e63-8149-49c6-939f-c6bf2ffb7253/1/TzLUClO7YLhnWebsClIHMAtBr3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:6f:bb:62:2a:57:78:d4:29:ea:b3:8d:94:22:f1:b0:63:0a:
78:fd:9a:bd:7e:7c:46:71:30:75:45:84:ae:67:97:5d:f0:e1:
aa:11:dd:e1:02:de:10:d1:ea:54:f4:8a:0f:b2:f5:37:00:33:
3e:db:3b:4b:9e:3d:e0:4e:34:23:7c:c1:0d:16:35:4e:b1:11:
5c:de:99:8b:e3:7b:d4:e3:20:1a:a4:a5:03:44:8e:5f:85:1b:
97:62:7d:9d:cd:6c:45:f7:eb:dc:2c:39:9b:64:5c:ca:85:ce:
16:d0:1c:ae:9b:7b:84:22:31:3f:f3:e0:a8:bf:a8:cb:2b:3b:
ff:12:39:4f:5a:40:b2:6c:79:83:c4:1e:66:b9:55:aa:2b:c6:
95:ff:23:00:b4:62:d1:51:7c:7b:29:2a:ea:23:e1:04:c4:b1:
18:84:d4:a2:c1:0c:83:0d:17:10:07:fe:a2:77:a8:65:8a:03:
fa:98:b0:2c:eb:ad:c3:83:67:0f:3b:b7:96:db:1e:17:78:1a:
4e:27:d4:52:a1:35:e7:0f:81:f2:db:81:4b:25:60:ab:f3:66:
a3:a3:55:77:49:08:a2:de:f8:97:f7:8e:61:3d:c3:71:9a:16:
8a:2d:9c:5d:ec:1a:55:b6:7b:b9:1e:8f:76:9e:fb:6d:82:b3:
6f:fe:e8:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:33:55 2026 by rpki-client