Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
File: tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft (raw, json)
Hash identifier: iaqdZHAcUpcm+L2D+AhK05Gn34tCWwhqQzgi66OYUd8=
Subject key identifier: 3D:A5:D1:FD:2C:1A:04:B5:C0:5E:7B:C5:4F:91:9B:20:DD:BD:2D:EB
Authority key identifier: B5:3A:CA:36:84:6D:2D:30:23:64:8E:AC:58:1C:7D:9B:63:17:EE:DC
Certificate issuer: /CN=b53aca36846d2d3023648eac581c7d9b6317eedc
Certificate serial: 019D97E1F3E6ACB56296288EFA24BCADB580
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
Manifest number: 04BF
Signing time: Thu 16 Apr 2026 20:01:00 +0000
Manifest this update: Thu 16 Apr 2026 20:01:00 +0000
Manifest next update: Fri 17 Apr 2026 20:01:00 +0000
Files and hashes: 1: tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl (hash: BBMLMXm49cVAn9mC9nmb3xK3ENc1iRqrOnzMh1GCgFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e1:f3:e6:ac:b5:62:96:28:8e:fa:24:bc:ad:b5:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53aca36846d2d3023648eac581c7d9b6317eedc
Validity
Not Before: Apr 16 20:01:00 2026 GMT
Not After : Apr 17 20:01:00 2026 GMT
Subject: CN=3da5d1fd2c1a04b5c05e7bc54f919b20ddbd2deb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:83:32:d2:5e:91:07:ca:df:ab:90:4e:8b:d6:
c4:1c:fe:9d:e1:cf:8a:d1:62:f3:e6:85:9d:99:0b:
f9:44:ed:4c:07:d1:51:0b:96:de:b7:4e:3a:e9:ba:
09:f7:a7:f4:de:66:2d:63:78:5f:a7:fb:32:36:7a:
f5:32:cc:b0:bb:5b:cb:09:cc:03:b0:a9:5f:d1:47:
10:be:b6:29:80:46:c5:66:c2:9a:cd:55:db:7d:d4:
d3:a8:21:a5:c1:03:b2:12:a2:ad:c3:5f:6e:ca:64:
2d:b9:01:d5:58:c6:c7:35:0e:c4:69:e0:6c:34:9c:
ee:4f:c6:54:26:3c:a0:cc:aa:99:ef:70:fe:01:ed:
38:74:d1:4e:25:80:e4:0e:8b:25:ba:c2:b0:8f:46:
ab:22:c4:cc:e4:1d:25:6d:38:e6:1d:7c:92:1b:70:
79:8b:9e:a4:e5:63:1b:85:c5:f6:78:8e:f4:f4:9b:
61:bb:8f:24:c2:a5:c6:91:6b:b7:66:ad:e3:00:8d:
13:7d:72:ff:d0:34:66:46:74:9f:46:b9:d5:b8:e0:
9e:7b:92:0b:c2:4e:73:37:7d:9d:e9:a4:00:ad:79:
8a:23:99:95:69:bd:ac:69:36:08:93:d9:fa:f0:b5:
dc:b3:c0:ed:44:57:d4:af:85:ef:ae:c3:fa:73:fe:
1f:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A5:D1:FD:2C:1A:04:B5:C0:5E:7B:C5:4F:91:9B:20:DD:BD:2D:EB
X509v3 Authority Key Identifier:
keyid:B5:3A:CA:36:84:6D:2D:30:23:64:8E:AC:58:1C:7D:9B:63:17:EE:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:e2:78:f2:11:55:45:0a:90:2e:b7:90:4a:c3:6d:db:a9:c7:
80:5b:78:dd:f2:fc:95:ea:60:88:b0:12:c9:02:01:dd:0c:d5:
96:c2:ac:10:10:25:18:48:2c:4c:70:b7:c3:c7:36:c1:71:56:
8d:15:8d:4c:7e:3c:42:f7:f1:0b:7d:0b:58:b6:5f:32:a1:27:
e9:45:2f:32:e6:7e:83:cc:1f:75:25:99:29:5a:aa:16:7e:57:
c7:47:7c:54:66:38:53:5a:50:fd:c1:ec:bc:d8:91:57:06:92:
ed:00:05:82:6a:8d:69:b0:6d:29:14:0b:a2:be:c2:13:5c:15:
8b:fa:15:29:e1:72:f1:f2:c8:cc:16:05:9f:67:1d:73:49:92:
05:43:a4:0b:f4:5a:07:d0:8e:08:1c:3b:ac:09:5d:ad:a1:31:
09:32:a3:e9:bf:dc:78:42:e7:33:e7:c6:43:e7:d4:1d:7c:6f:
98:46:36:1d:db:30:2f:44:56:6f:c7:4d:cd:89:2c:56:bf:7c:
b8:50:d9:0e:a8:26:03:c2:b7:0e:37:a4:4c:e7:82:51:f8:1e:
79:2f:9d:a5:ce:20:a8:a4:0d:40:18:64:ca:bc:44:21:eb:c9:
ac:4d:41:3e:1a:0b:b0:19:66:6e:92:d4:ef:41:69:75:77:15:
2f:04:bb:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:05:56 2026 by rpki-client