Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
File: TKE73qVPdrioVxKv22FRhrM4OME.mft (raw, json)
Hash identifier: yW/BWZNPTBD+LdV92et1VjXyjsu+DkEB9ApynE0GyW8=
Subject key identifier: CD:3E:A3:65:83:F7:0A:E1:17:96:3C:84:63:16:A8:1C:3C:C3:18:0B
Authority key identifier: 4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
Certificate issuer: /CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Certificate serial: 019DCE2B57AFF2528B387217F5E2885B617B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
Manifest number: 18E5
Signing time: Mon 27 Apr 2026 09:00:40 +0000
Manifest this update: Mon 27 Apr 2026 09:00:40 +0000
Manifest next update: Tue 28 Apr 2026 09:00:40 +0000
Files and hashes: 1: Qxxba2Z0l_Oo3VLzB9UPPLzLHh0.roa (hash: XhyQFSQAtoaUlYwvcU/d0bS+hKuIarz0HhNEQgTiZRY=)
2: TKE73qVPdrioVxKv22FRhrM4OME.crl (hash: ZJBZemt23eYoE0jJX3DB/FhRLxaXefDhkQNgU+N7OGk=)
3: wRfimvYG6uP1BQuztrYnul5AxK4.roa (hash: mNygzVCgId8/gWan0H+Y7eRS9fJ6Q7D8ydV4jRxwL1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:2b:57:af:f2:52:8b:38:72:17:f5:e2:88:5b:61:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Validity
Not Before: Apr 27 09:00:40 2026 GMT
Not After : Apr 28 09:00:40 2026 GMT
Subject: CN=cd3ea36583f70ae117963c846316a81c3cc3180b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3a:dd:ba:4a:7d:4d:7e:e2:f9:d4:c8:2b:1c:
15:4b:af:a3:90:06:34:75:7a:09:ea:d2:b5:b4:3b:
16:75:2b:00:e6:7a:17:f5:05:36:d1:66:54:71:f7:
18:82:1a:1a:79:a7:17:f0:67:43:0d:3e:67:22:a8:
f6:b2:fc:07:04:be:58:1f:08:5c:62:c1:0f:ee:bd:
74:0c:9d:45:cc:f4:29:a5:19:0e:4c:a5:61:e0:de:
9c:e9:9a:26:c5:e6:7b:fa:a4:02:66:3c:3d:16:e9:
e1:e8:87:8f:88:98:39:c2:91:1e:1c:4c:96:15:c8:
f6:e2:5f:f1:e9:02:75:fa:0f:7d:1f:47:a5:4c:0b:
a7:e0:0d:90:4e:f3:64:eb:58:0e:5a:ea:33:dc:cb:
98:49:91:ab:fe:70:00:9f:2a:ab:f2:aa:19:64:8c:
c4:f6:97:4e:3c:13:60:04:c0:41:bb:25:be:b2:ff:
67:f3:dd:56:e6:de:b6:39:ba:49:01:1d:ce:2a:fc:
66:9f:ea:e6:c2:f3:72:6d:19:ec:18:c9:42:23:e9:
ef:01:60:be:38:40:74:d3:d1:63:64:93:2f:98:ad:
db:3c:ae:36:78:5d:f6:b4:59:f5:63:ea:53:aa:07:
cd:db:47:8e:e1:9f:54:ad:c9:95:8a:80:10:4f:14:
ae:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:3E:A3:65:83:F7:0A:E1:17:96:3C:84:63:16:A8:1C:3C:C3:18:0B
X509v3 Authority Key Identifier:
keyid:4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:a1:53:bc:11:83:6a:4f:34:c5:49:b7:09:67:38:e7:32:c7:
f3:59:4d:3d:c8:a2:09:cd:c8:a3:44:c0:46:61:b0:4f:e5:4c:
54:93:05:85:f3:61:c9:fe:3d:be:97:be:85:1f:c4:33:c4:73:
b4:fe:e4:a1:32:4d:bd:83:73:ea:32:2a:07:67:9a:be:8f:bd:
21:11:77:d3:c8:36:15:a0:71:6d:db:d2:43:8c:66:22:e2:d0:
bb:2a:1a:31:0f:91:97:af:fd:ef:d3:62:54:5e:90:6f:95:b0:
7f:44:f8:5e:cf:08:2b:f9:9a:46:e8:74:28:0f:68:d9:1b:c1:
45:35:74:1f:3b:78:08:2a:61:42:94:76:7e:08:5e:0d:99:89:
29:67:72:be:53:f9:79:b8:93:c3:4d:50:aa:ba:bf:ac:2a:9a:
02:77:6c:f0:8f:28:25:bf:f5:bf:f0:48:d2:b0:43:d9:51:44:
e0:c4:d1:d1:b7:e7:9c:05:fd:2b:c9:01:02:81:96:a2:bf:e5:
d7:1d:62:3e:4b:bf:e1:6a:b8:66:36:2e:6f:0a:16:a3:a8:9d:
46:4c:9c:b5:64:5e:46:cd:93:a5:4b:b8:20:86:af:9a:24:70:
16:58:0f:47:69:24:87:9a:fa:fd:b7:07:1a:62:37:d8:85:b5:
74:f3:d1:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3OK1ev8lKLOHIX9eKIW2F7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjYTEzYmRlYTU0Zjc2YjhhODU3MTJhZmRiNjE1MTg2YjMz
ODM4YzEwHhcNMjYwNDI3MDkwMDQwWhcNMjYwNDI4MDkwMDQwWjAzMTEwLwYDVQQD
EyhjZDNlYTM2NTgzZjcwYWUxMTc5NjNjODQ2MzE2YTgxYzNjYzMxODBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujrdukp9TX7i+dTIKxwVS6+jkAY0
dXoJ6tK1tDsWdSsA5noX9QU20WZUcfcYghoaeacX8GdDDT5nIqj2svwHBL5YHwhc
YsEP7r10DJ1FzPQppRkOTKVh4N6c6ZomxeZ7+qQCZjw9Funh6IePiJg5wpEeHEyW
Fcj24l/x6QJ1+g99H0elTAun4A2QTvNk61gOWuoz3MuYSZGr/nAAnyqr8qoZZIzE
9pdOPBNgBMBBuyW+sv9n891W5t62ObpJAR3OKvxmn+rmwvNybRnsGMlCI+nvAWC+
OEB009FjZJMvmK3bPK42eF32tFn1Y+pTqgfN20eO4Z9UrcmVioAQTxSuxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM0+o2WD9wrhF5Y8hGMWqBw8wxgLMB8GA1UdIwQY
MBaAFEyhO96lT3a4qFcSr9thUYazODjBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEtFNzNxVlBkcmlvVnhLdjIyRlJock00T01FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jNjJkMTMtN2YwMy00ZDE5LThiNDYt
ZmM5MTQzM2QzNjdkLzEvVEtFNzNxVlBkcmlvVnhLdjIyRlJock00T01FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9jNjJkMTMtN2YwMy00ZDE5LThiNDYtZmM5MTQzM2QzNjdk
LzEvVEtFNzNxVlBkcmlvVnhLdjIyRlJock00T01FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ6FTvBGD
ak80xUm3CWc45zLH81lNPciiCc3Io0TARmGwT+VMVJMFhfNhyf49vpe+hR/EM8Rz
tP7koTJNvYNz6jIqB2eavo+9IRF308g2FaBxbdvSQ4xmIuLQuyoaMQ+Rl6/979Ni
VF6Qb5Wwf0T4Xs8IK/maRuh0KA9o2RvBRTV0Hzt4CCphQpR2fgheDZmJKWdyvlP5
ebiTw01Qqrq/rCqaAnds8I8oJb/1v/BI0rBD2VFE4MTR0bfnnAX9K8kBAoGWor/l
1x1iPku/4Wq4ZjYubwoWo6idRkyctWReRs2TpUu4IIavmiRwFlgPR2kkh5r6/bcH
GmI32IW1dPPRKg==
-----END CERTIFICATE-----
Generated at Mon Apr 27 16:29:56 2026 by rpki-client