Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json)
Hash identifier: gu61hXS3AlGLnm6HoCsoijICtgs+CHHm+pTfeeWeNOw=
Subject key identifier: 16:25:34:11:45:4E:A3:C7:1C:17:DE:10:4A:C1:52:A3:52:A2:D4:79
Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Certificate serial: 019EB6C5154E752C8A700F0170DA1CB516AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
Manifest number: 1958
Signing time: Thu 11 Jun 2026 13:00:29 +0000
Manifest this update: Thu 11 Jun 2026 13:00:29 +0000
Manifest next update: Fri 12 Jun 2026 13:00:29 +0000
Files and hashes: 1: N79dGcqXOAWTraGm-dUGr_n7g5o.roa (hash: izRmr4QFMP3HYYiVhDYKTcRuMtp1aQuZsgseKcKqny4=)
2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: 8uKG2El46xUDfwId+A8dl1AsaeVId9JeHzbbb1ewH8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:c5:15:4e:75:2c:8a:70:0f:01:70:da:1c:b5:16:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Validity
Not Before: Jun 11 13:00:29 2026 GMT
Not After : Jun 12 13:00:29 2026 GMT
Subject: CN=16253411454ea3c71c17de104ac152a352a2d479
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:19:02:8c:3c:2c:5e:01:f7:1f:e3:0c:13:e2:
98:7e:fe:6c:02:c6:2c:ca:ac:e0:40:e6:eb:59:5a:
3b:35:39:18:4c:67:a9:db:23:d0:6c:d9:75:2a:27:
47:c0:b5:fa:e6:44:bb:b1:12:9c:6d:51:d4:4b:cf:
03:11:8e:4b:48:e8:76:cd:5f:39:4b:82:58:dd:d9:
4a:38:bb:e3:5d:6c:42:5c:01:8e:0c:ca:32:fd:8e:
f7:d0:3d:3a:17:35:49:87:5e:c8:cb:33:89:47:08:
e9:b0:b2:7d:d0:40:7b:ab:a2:33:94:06:69:75:51:
f1:10:61:77:fc:f4:a0:0a:a7:22:49:98:9d:cf:06:
97:e9:72:8a:28:21:aa:92:4d:8b:7e:31:b0:ac:f7:
cf:45:b8:02:71:be:5e:30:c3:4d:52:d1:22:89:5c:
09:f6:96:55:cd:d7:e9:3c:60:46:50:71:45:18:17:
3b:2a:7e:9c:83:d9:84:5e:cc:92:86:b9:26:54:ed:
14:83:19:bf:57:77:7e:93:f2:96:aa:74:ab:5c:91:
67:02:cb:a6:4c:49:4b:86:7a:8f:23:0c:e2:75:54:
f2:d9:9a:37:99:c2:5a:53:26:c9:ed:36:bc:e9:ea:
b1:7c:25:60:02:90:07:fc:47:9d:1c:4f:09:d2:97:
fb:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:25:34:11:45:4E:A3:C7:1C:17:DE:10:4A:C1:52:A3:52:A2:D4:79
X509v3 Authority Key Identifier:
keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:07:52:a4:a5:d1:f8:a9:9d:b4:63:c0:06:b2:42:af:4d:c0:
a6:fb:55:24:32:4a:17:b1:6c:71:46:b7:dc:ae:84:04:ab:80:
9a:1b:b4:a9:1b:7f:bb:da:3d:90:b1:a1:50:2e:61:fc:96:5c:
51:b4:39:38:47:ce:b7:69:b2:9d:0b:44:bd:be:b7:88:6c:31:
f7:1e:43:bd:6c:39:38:33:33:eb:df:e2:fe:8d:fe:3e:88:ef:
52:de:96:97:4d:72:ac:be:e7:df:84:ba:74:8a:76:e0:9f:27:
5a:57:4f:e9:ec:10:87:1d:39:57:79:49:65:dc:b4:13:c0:2b:
aa:00:9b:d5:46:9d:97:67:bc:be:f9:35:d4:b1:03:c3:82:09:
60:ad:d6:f5:5b:bf:ff:09:b5:d3:87:99:d0:27:12:8a:b5:9f:
1f:ae:b5:3a:d1:b6:04:ff:6f:49:99:2f:cc:f2:b4:8c:a0:e8:
7e:f8:55:9c:1d:c6:e9:c1:22:1c:90:33:0a:c0:a4:14:30:a2:
be:e3:f7:9c:82:9b:22:07:45:6b:f9:e5:c8:eb:b8:8a:c1:54:
e6:7f:98:11:99:4f:d2:7e:ce:cc:2a:99:9f:d0:eb:ca:bc:3e:
a3:e4:51:e7:3e:58:0b:7d:f6:ec:c4:f9:a8:fc:aa:32:e2:b1:
50:81:ba:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:53:56 2026 by rpki-client