Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
File: TKE73qVPdrioVxKv22FRhrM4OME.mft (raw, json)
Hash identifier: Hp0yeqpqXIkKCRxbm6BKPruIEZ4cj9EK7kSzTZ6uxwc=
Subject key identifier: 17:ED:21:06:3F:DD:45:21:31:73:9C:E3:98:2E:47:D7:A2:99:A4:B9
Authority key identifier: 4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
Certificate issuer: /CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Certificate serial: 019CE5C8ABD5BB1E70DD98B5050C5ED561A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
Manifest number: 186C
Signing time: Fri 13 Mar 2026 06:00:59 +0000
Manifest this update: Fri 13 Mar 2026 06:00:59 +0000
Manifest next update: Sat 14 Mar 2026 06:00:59 +0000
Files and hashes: 1: K51zXkg1aSl_rsYaPgBKlZz7NZk.roa (hash: fiZ7r/he+qme26623UWVqiKQ/igOBcXXkogZZFlFQfg=)
2: Qxxba2Z0l_Oo3VLzB9UPPLzLHh0.roa (hash: XhyQFSQAtoaUlYwvcU/d0bS+hKuIarz0HhNEQgTiZRY=)
3: TKE73qVPdrioVxKv22FRhrM4OME.crl (hash: oKP95+Eomiq7W3GfqhcNvPZujDbTnHOpLdOx57Qm+1M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:c8:ab:d5:bb:1e:70:dd:98:b5:05:0c:5e:d5:61:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ca13bdea54f76b8a85712afdb615186b33838c1
Validity
Not Before: Mar 13 06:00:59 2026 GMT
Not After : Mar 14 06:00:59 2026 GMT
Subject: CN=17ed21063fdd452131739ce3982e47d7a299a4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:80:ea:3b:0b:90:4b:94:1a:b1:b8:39:05:02:
29:14:7c:50:f2:7c:4d:17:f8:e4:19:c5:30:aa:19:
a6:1d:e2:8c:20:82:d6:b2:bd:06:83:f8:9d:0c:ca:
44:bd:9d:92:13:d3:2d:26:45:31:a6:e4:d1:7b:b8:
3e:be:06:d5:10:ca:10:91:df:35:12:f9:ac:29:5d:
46:14:d6:0f:bb:49:67:50:20:18:1a:d6:04:40:9d:
5b:73:66:fa:c0:42:79:81:47:54:16:8e:d7:b4:9a:
6a:ea:27:3a:be:72:fa:bf:11:ef:50:d5:fb:4a:00:
ef:9f:e1:ef:d2:02:a2:ba:8c:7f:67:f5:f8:14:08:
f3:ae:33:ef:1c:17:83:41:34:7b:bf:81:d3:de:13:
27:37:65:6e:7a:4e:7d:fa:2d:a2:77:8d:27:19:15:
e6:49:86:1a:8d:6b:d1:29:a3:32:6d:85:f5:9a:d9:
c2:a5:f1:bc:45:0e:f5:50:e3:cd:35:72:ed:08:e7:
5d:7e:1e:44:90:01:49:67:a0:59:8b:a8:66:5d:51:
f0:6c:66:34:29:2d:aa:90:74:4e:f4:ad:c5:8f:c4:
c4:17:ec:17:a8:c1:c2:8a:b3:3b:36:88:b3:c8:99:
c1:21:fe:6c:c6:85:cb:e1:fb:9d:e7:fe:e5:e1:48:
39:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:ED:21:06:3F:DD:45:21:31:73:9C:E3:98:2E:47:D7:A2:99:A4:B9
X509v3 Authority Key Identifier:
keyid:4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:e3:b7:a5:6c:a2:10:0d:64:b7:b5:4e:50:cc:e1:50:31:c9:
db:0f:65:05:f3:dd:40:89:15:b2:56:fd:03:f8:ab:b6:b0:83:
fc:ce:4e:ca:d8:a0:d4:ad:9f:86:fb:c9:09:18:7a:49:f3:2c:
11:2b:a3:02:e0:69:25:d0:10:90:ea:15:fc:51:9c:c8:26:2f:
5c:5e:b0:65:b7:45:f6:e3:69:28:2a:fa:29:2e:90:3b:1f:2e:
d7:a7:e2:41:37:f2:7e:e2:d0:b0:a0:0a:a0:7d:17:0c:b1:09:
ed:a6:b4:c3:50:84:ea:39:19:64:65:63:c7:d6:75:99:e9:55:
2e:32:89:5b:d3:5b:b1:06:19:50:16:91:ad:92:48:4e:22:d0:
fc:1f:c4:d7:b4:cf:22:23:6b:7e:d6:a7:ab:1f:ba:4b:e2:f0:
bc:16:90:79:8d:48:fa:72:ce:02:1e:67:91:e0:a5:fd:58:54:
e1:4f:f7:69:db:c7:08:bc:53:6d:b2:ef:e0:be:9f:54:19:85:
fa:cb:fb:bc:00:8d:33:71:89:d7:6b:7b:6b:8d:8c:32:df:32:
ba:7b:ae:d0:1b:90:d8:e2:c9:33:25:fb:4d:b8:3a:e7:24:25:
d5:9f:46:bd:92:90:84:62:32:64:29:4e:a3:b9:84:c1:08:b1:
d2:14:f7:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 10:40:12 2026 by rpki-client