Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
File: T8muTFD6CwOCrdpfPH30GPeSWGQ.mft (raw, json)
Hash identifier: tWEQ+wsUkVJX86QyztxUPLX2kJ0lCC/Xtakx6cPhs+w=
Subject key identifier: F5:A3:B6:E8:29:FA:E8:35:E3:35:DC:E5:35:0D:24:11:F0:70:27:09
Authority key identifier: 4F:C9:AE:4C:50:FA:0B:03:82:AD:DA:5F:3C:7D:F4:18:F7:92:58:64
Certificate issuer: /CN=4fc9ae4c50fa0b0382adda5f3c7df418f7925864
Certificate serial: 019D99D096FED7AF941E56B982DDD2402E44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
Manifest number: 024E
Signing time: Fri 17 Apr 2026 05:01:17 +0000
Manifest this update: Fri 17 Apr 2026 05:01:17 +0000
Manifest next update: Sat 18 Apr 2026 05:01:17 +0000
Files and hashes: 1: KQelvFl-0S2BnhTjmwfeewzy0K0.roa (hash: eHfnP6Dgwq60SUqBjtwY/17CbS0N6nRtKkrY1JJPGsI=)
2: T8muTFD6CwOCrdpfPH30GPeSWGQ.crl (hash: dx1jdeav2BR1qafeueyRzG6hhiD4HOjRpnpVSBBHrqo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:96:fe:d7:af:94:1e:56:b9:82:dd:d2:40:2e:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc9ae4c50fa0b0382adda5f3c7df418f7925864
Validity
Not Before: Apr 17 05:01:17 2026 GMT
Not After : Apr 18 05:01:17 2026 GMT
Subject: CN=f5a3b6e829fae835e335dce5350d2411f0702709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:88:c9:bd:5b:14:c7:cb:41:82:5c:95:9f:16:
81:9c:a6:0a:16:9f:a5:e5:18:75:16:6d:be:d5:f9:
2e:ac:21:7f:bf:ae:19:28:32:77:ad:0d:4e:f8:3b:
0a:5a:27:67:70:17:ab:69:2e:89:a9:75:11:83:61:
f4:c4:92:c7:7e:69:8a:41:c2:95:fc:74:0c:0b:71:
25:5b:e6:a3:58:f4:d6:6b:d4:3d:5a:dc:3c:a5:d5:
d8:c8:8a:ce:04:5d:38:62:7a:87:db:98:42:e9:0f:
5c:4f:bb:9b:8c:df:e1:72:25:79:fe:81:92:34:b6:
ee:c0:57:e0:ff:d6:a3:ca:c0:9b:5e:78:de:08:41:
53:c7:72:08:3a:5c:36:7d:ba:52:f4:70:ff:c1:24:
10:64:95:ac:06:66:c6:e5:f1:a1:91:db:31:8b:74:
1f:65:5e:c7:b7:7d:ba:55:91:a6:fa:58:98:88:a5:
6b:ee:25:8b:4b:2a:31:04:27:ac:75:24:d9:49:4d:
18:83:c0:d8:89:e9:52:e9:e2:40:8b:9b:be:de:43:
a2:c4:af:67:cb:bc:fd:50:6f:a2:9c:73:1e:05:1d:
8c:df:2d:0a:50:64:09:26:05:96:f3:b0:dc:9a:60:
55:f2:04:50:56:b6:ce:cd:bb:24:bd:d0:4e:82:e2:
0c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:A3:B6:E8:29:FA:E8:35:E3:35:DC:E5:35:0D:24:11:F0:70:27:09
X509v3 Authority Key Identifier:
keyid:4F:C9:AE:4C:50:FA:0B:03:82:AD:DA:5F:3C:7D:F4:18:F7:92:58:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:c8:74:ee:f0:36:5c:72:1d:1b:5b:ce:3a:57:07:cb:b3:f4:
bd:f9:f9:4f:8d:b6:10:47:da:cd:78:77:48:95:e0:93:ab:b4:
2f:cd:70:51:21:56:2e:18:4c:ce:e4:f9:24:7e:78:f7:e7:7d:
a1:5c:d1:b8:90:76:e8:d4:e8:36:f8:f1:d1:40:7a:b5:a0:34:
37:e5:d7:7b:92:bc:a3:da:9a:c3:7f:de:f7:47:29:bc:b5:93:
8b:c6:4c:a0:db:b0:62:a7:ef:f5:3c:b5:04:f7:62:90:fb:57:
f2:97:fc:d9:d2:5b:f9:74:86:45:3f:44:ae:63:03:f7:23:17:
2c:b7:48:52:0f:7a:49:3b:12:56:3b:fb:e0:98:19:eb:80:c6:
58:54:aa:e8:45:bb:87:07:77:2a:b3:b8:c6:3a:a4:62:80:e9:
39:b9:e4:53:74:a4:0f:d5:05:47:01:61:c3:12:92:60:a7:1d:
8a:bc:21:4d:20:42:ec:54:ba:f4:1d:e1:35:a6:6d:ef:e3:a6:
8e:36:da:2b:3f:45:d4:bd:67:65:a6:b1:38:47:c1:77:9a:77:
32:02:dc:73:c5:1d:a6:73:05:09:69:52:b8:6b:87:62:ad:84:
e1:0a:9b:b2:34:2b:62:f3:ad:89:73:31:80:58:af:07:1a:89:
2c:e5:55:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:47:48 2026 by rpki-client