Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
File: tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft (raw, json)
Hash identifier: Z4Tf97x5mA/7SDRTppiPZ0ZUBXwzqWvbg+L8EvHwAWo=
Subject key identifier: C5:60:85:43:48:B9:DC:00:C2:D1:18:95:03:D8:56:60:41:F3:2C:46
Authority key identifier: B4:D8:B2:7A:AA:55:E5:1A:34:5F:6A:45:19:E3:67:95:50:46:C3:0A
Certificate issuer: /CN=b4d8b27aaa55e51a345f6a4519e367955046c30a
Certificate serial: 019D9AE312D8CF87EBE8F02ABA2287992EEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
Manifest number: 146B
Signing time: Fri 17 Apr 2026 10:01:05 +0000
Manifest this update: Fri 17 Apr 2026 10:01:05 +0000
Manifest next update: Sat 18 Apr 2026 10:01:05 +0000
Files and hashes: 1: tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl (hash: iY0u1XP2MXA+RMTFU2pIACuFLj/1U+T0ba4XFLsRWpY=)
2: xqMEiaPGgAlIQo3TzS_5VB2M2OQ.roa (hash: Y2eUYtTDjf9bWENJZhOD8HXOBzywjtXZMecCETD0P0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:12:d8:cf:87:eb:e8:f0:2a:ba:22:87:99:2e:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4d8b27aaa55e51a345f6a4519e367955046c30a
Validity
Not Before: Apr 17 10:01:05 2026 GMT
Not After : Apr 18 10:01:05 2026 GMT
Subject: CN=c560854348b9dc00c2d1189503d8566041f32c46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c8:5b:ce:a0:36:00:d2:0e:d9:f8:ee:f7:03:
5b:b3:27:f5:44:94:59:60:c2:b7:2d:e1:9f:51:c0:
8a:8a:59:f2:a9:16:c0:f2:05:99:1d:d7:80:8a:f8:
be:dd:19:be:54:17:95:f6:a6:78:65:f0:4b:70:2e:
64:0e:86:cc:6b:8a:2d:2a:da:e5:8d:62:95:ed:a1:
a1:8a:d8:f0:d1:ba:e1:82:5a:f1:9d:c4:89:2d:8c:
18:2f:09:67:36:07:97:87:45:da:e8:ac:00:95:26:
fc:72:7f:75:85:c2:73:68:66:3c:99:e9:e4:7f:9b:
ce:58:42:af:fc:fe:96:1a:fb:fe:9b:db:95:7e:ca:
6a:b9:40:59:71:98:8e:bf:bb:c8:36:e2:3c:cf:8e:
59:58:66:94:ee:6e:6c:e0:b3:fd:e2:35:e0:e0:c9:
d1:17:c7:24:6d:31:3e:41:68:03:34:eb:ac:9c:2f:
ef:7c:e6:29:08:a2:8b:53:f1:29:7a:33:21:61:9a:
ad:65:1c:e7:f2:5c:a6:c4:d1:74:bb:99:99:85:83:
be:0d:25:a6:86:41:9b:4a:63:32:81:c5:ea:bd:66:
9d:08:c9:9b:59:32:b3:65:32:2a:b5:12:af:19:8c:
e7:7f:f4:e2:a7:3e:9e:1b:4a:b3:13:b6:f1:04:d7:
1b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:60:85:43:48:B9:DC:00:C2:D1:18:95:03:D8:56:60:41:F3:2C:46
X509v3 Authority Key Identifier:
keyid:B4:D8:B2:7A:AA:55:E5:1A:34:5F:6A:45:19:E3:67:95:50:46:C3:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/d3c1d5-e923-4831-804c-c7586282fe13/1/tNiyeqpV5Ro0X2pFGeNnlVBGwwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:ea:3e:28:83:54:d6:6a:c5:4e:0d:92:51:98:dd:2c:f8:98:
c2:3c:0e:7d:76:f1:49:ab:1a:0c:7d:65:1a:d3:11:dd:1a:ba:
98:fa:eb:de:2b:cb:79:75:2e:f9:01:a2:93:9d:da:50:57:92:
dd:42:bb:07:3f:95:ac:ca:bf:5d:9c:96:27:7b:cb:a1:6b:64:
ae:43:e6:63:0c:a3:69:77:67:e6:4b:e4:5a:a3:7c:16:00:dc:
7f:54:74:68:bd:97:da:bb:37:bc:91:08:f2:06:51:6d:49:d9:
cd:24:85:23:ab:ec:f8:ce:e4:39:b1:30:35:e7:ad:b7:79:43:
15:af:21:15:8e:90:d2:43:de:fa:81:14:17:33:6e:39:6f:71:
02:16:10:94:45:11:8e:fc:e1:fe:8b:0a:e8:8d:2a:43:a8:87:
88:f3:72:08:19:67:9d:9e:b2:11:39:0b:ff:95:6e:c8:04:46:
3e:a4:1f:dc:ca:13:21:59:d7:44:e4:1c:3f:8a:75:2d:d0:cf:
9a:d4:4b:bf:b3:45:61:69:60:b6:b2:6e:3b:dc:db:59:cc:d0:
2c:3b:14:ac:f8:c6:a4:fe:12:83:ba:c1:dd:fe:e8:d3:72:53:
25:df:95:ea:9c:99:90:18:44:13:a1:f8:c4:f5:b8:02:cb:0a:
7e:80:7e:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:57:09 2026 by rpki-client