Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json)
Hash identifier: Tg1ZCus6nElIR9Zlgkc29NB+O1WuPpvGQB1lHuelbKI=
Subject key identifier: 4F:85:1D:80:A9:C9:B5:E1:AC:79:6F:FC:A8:C9:0F:89:38:FA:19:A9
Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c
Certificate serial: 019DFB3BEDE4A39F0C9BAD116F0195A07B1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
Manifest number: 047A
Signing time: Wed 06 May 2026 03:01:41 +0000
Manifest this update: Wed 06 May 2026 03:01:41 +0000
Manifest next update: Thu 07 May 2026 03:01:41 +0000
Files and hashes: 1: 1-w3-HT-b4gN55Ez02d0Ltxhd_18.roa (hash: SZE3EWQBz3QYJjq31FoNPzS9VUyILcF5vCKxR6HmvGg=)
2: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: 1hhvvJWCAMoN6w1Q1qSubqUKCH5otYKbhAoZBUBQFc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 May 2026 03:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fb:3b:ed:e4:a3:9f:0c:9b:ad:11:6f:01:95:a0:7b:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c
Validity
Not Before: May 6 03:01:41 2026 GMT
Not After : May 7 03:01:41 2026 GMT
Subject: CN=4f851d80a9c9b5e1ac796ffca8c90f8938fa19a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4a:52:31:f7:d4:2d:d0:e1:53:66:ed:ae:5e:
15:0b:0e:0f:6c:f4:46:96:27:d3:f8:3f:fa:6d:c8:
d4:eb:de:1a:1e:05:96:3f:45:93:b4:02:3e:75:b1:
a1:fa:16:af:80:4c:48:bf:51:03:5d:e0:21:59:3b:
1a:0d:40:d7:8e:c2:0a:43:f1:63:78:4f:87:2b:ad:
d8:a3:70:82:8e:db:1f:c3:34:ae:90:11:5b:b3:a0:
99:e5:73:e1:ac:be:5f:e7:ad:6f:9d:50:b1:f2:0b:
fe:cf:b3:a0:b3:1a:1d:98:99:dd:bc:b9:25:18:90:
3c:a2:41:1f:ac:0b:3b:7b:86:46:5d:78:d7:29:64:
1d:68:74:13:1e:a4:59:c1:85:3c:d2:8f:82:1f:73:
d1:3c:cf:73:55:83:0c:3d:55:0f:da:1d:5b:49:62:
f3:40:ba:ac:80:23:11:b5:e8:74:d0:f5:ba:f7:95:
e7:b0:91:f4:fd:58:01:99:7d:14:7d:cf:40:4f:c8:
40:26:4f:63:00:fd:20:02:05:b1:36:e1:54:d0:f1:
af:e8:38:6f:32:2b:98:1b:60:7e:ae:84:81:1a:53:
19:3e:75:a6:e1:88:94:ed:d7:e3:1c:51:f3:e7:5c:
f8:c5:e8:cd:c1:fa:b9:09:e4:c7:33:12:9e:c3:e8:
bf:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:85:1D:80:A9:C9:B5:E1:AC:79:6F:FC:A8:C9:0F:89:38:FA:19:A9
X509v3 Authority Key Identifier:
keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:b9:f3:e5:ff:84:c7:d3:df:e1:c4:1b:35:4a:78:ba:4e:34:
55:59:ec:7d:0d:67:19:f2:b4:03:0c:88:4e:05:00:c4:3a:4c:
c1:09:c1:8c:77:33:1e:63:fb:da:8d:d2:3a:5c:55:e1:38:75:
34:98:c0:0e:ec:b3:d2:cf:0a:20:a7:98:54:81:71:ef:e8:cf:
76:a6:bb:5b:b8:df:2c:dd:f1:e1:0f:2d:fb:c1:26:a1:cf:18:
ce:1f:e3:ed:0e:ae:08:b1:8a:03:9b:3b:85:25:79:13:d0:d2:
de:57:1a:36:1c:af:b0:bc:a0:a3:c1:3e:aa:eb:1b:db:fc:30:
e7:6e:e2:fb:27:79:55:92:37:fc:a9:9a:25:a7:70:9a:8f:ad:
f1:84:a5:0e:6a:bf:10:57:48:76:9a:9b:12:a4:d9:6f:fe:24:
21:d0:9c:9e:f1:77:0c:f0:24:86:07:a5:46:a5:9a:ec:98:2f:
c0:91:cd:54:a7:87:26:02:21:fb:a3:d6:52:c3:dd:18:93:e1:
68:06:fb:26:83:7b:ca:7d:3d:4d:05:53:fe:07:13:7a:c2:82:
40:c7:29:f1:95:55:9f:6e:07:1c:6d:86:52:01:b4:8f:48:8d:
b8:f6:e3:07:15:eb:cd:a2:8b:18:e9:67:84:02:4a:e9:0f:72:
f3:68:d7:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 13:24:12 2026 by rpki-client