Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
File: T4BFzPUJd-vDBmo87tj9MvHwI94.mft (raw, json)
Hash identifier: 7wCXzt8VDXckHp5GZhCzkKerw2yEU4Nw+i7ek92Cgp4=
Subject key identifier: 36:95:F4:50:E9:B8:C7:64:C7:94:AC:8D:19:BD:47:E1:B3:3C:08:26
Authority key identifier: 4F:80:45:CC:F5:09:77:EB:C3:06:6A:3C:EE:D8:FD:32:F1:F0:23:DE
Certificate issuer: /CN=4f8045ccf50977ebc3066a3ceed8fd32f1f023de
Certificate serial: 019D390A6AB700B3B6353A07C2F9B2F3B743
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
Manifest number: 17CE
Signing time: Sun 29 Mar 2026 10:01:17 +0000
Manifest this update: Sun 29 Mar 2026 10:01:17 +0000
Manifest next update: Mon 30 Mar 2026 10:01:17 +0000
Files and hashes: 1: A6gi-so3kFc6wSPDrN7dSs0W0Xw.roa (hash: eMXdGzp0+E8BUJOejeN9hz+moObGIQrtjp1B5O+rfYQ=)
2: T4BFzPUJd-vDBmo87tj9MvHwI94.crl (hash: yivoGtuE6ANu0xX2M0TzZ7A4xJr89YoeaeqKqbAAGOw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:6a:b7:00:b3:b6:35:3a:07:c2:f9:b2:f3:b7:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8045ccf50977ebc3066a3ceed8fd32f1f023de
Validity
Not Before: Mar 29 10:01:17 2026 GMT
Not After : Mar 30 10:01:17 2026 GMT
Subject: CN=3695f450e9b8c764c794ac8d19bd47e1b33c0826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:89:28:ea:ee:0e:04:35:20:60:e3:3b:95:39:
48:66:57:de:bd:db:c9:5f:48:ab:5a:fa:5e:d0:6b:
db:04:0f:37:00:92:67:41:32:f4:60:ec:5b:53:3f:
78:e6:10:e5:58:7f:7b:a8:8a:3d:9b:1e:58:5e:27:
77:a4:1d:1e:4a:a7:80:f3:02:3f:9d:7e:ee:be:06:
8e:bd:b5:95:7f:15:21:c0:46:9b:fa:5d:3b:8e:dc:
2b:9a:50:16:83:53:a6:e6:87:93:5e:d9:a7:37:79:
1c:87:d9:99:5d:6d:6f:3a:9a:10:8a:72:5a:6b:ec:
40:4e:7b:0b:4e:9f:98:2b:21:da:64:9c:87:c3:20:
12:31:61:6a:70:10:64:bf:db:20:7f:44:93:07:e0:
95:7b:ea:09:71:a5:41:b6:93:1e:b9:61:ff:ba:58:
ca:e7:e2:d6:07:e8:b0:43:51:92:ec:cd:76:96:63:
95:f3:94:20:fb:c5:01:0f:28:4b:cd:e4:33:5c:ea:
ba:04:c8:19:3b:ae:1e:3a:a4:ce:fe:d3:10:d5:4a:
a1:ae:7e:ba:a3:47:af:f3:fe:66:4c:36:02:f5:cd:
f9:6e:5a:e6:10:98:79:61:0b:5f:10:60:9e:26:83:
0c:ae:44:35:55:c8:3c:36:bd:e0:7c:5b:93:fc:db:
03:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:95:F4:50:E9:B8:C7:64:C7:94:AC:8D:19:BD:47:E1:B3:3C:08:26
X509v3 Authority Key Identifier:
keyid:4F:80:45:CC:F5:09:77:EB:C3:06:6A:3C:EE:D8:FD:32:F1:F0:23:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:6e:35:31:0b:2f:62:a3:0a:be:d0:c4:0a:b3:f4:ba:b0:45:
1c:cb:81:fd:97:bb:c4:0e:a7:13:61:33:ff:c5:89:10:c6:d6:
49:c5:ec:45:a4:12:4d:27:a0:09:88:84:06:95:a0:fb:02:8f:
22:02:be:83:76:5f:0d:88:c4:16:e8:4d:3b:e2:68:34:3a:ed:
ac:de:a3:75:9f:1f:28:b3:04:e0:81:09:b7:49:6a:3a:d2:f7:
f5:70:d4:26:52:db:2c:eb:43:de:bd:bf:27:12:61:7a:41:82:
90:eb:4c:37:32:74:74:23:f3:f4:e1:87:42:15:32:93:0e:01:
bc:4c:8a:c3:07:65:d3:8f:1d:ab:9e:d7:ce:6d:75:3d:36:2b:
fc:55:9f:7e:7a:f5:c0:55:ca:3e:8e:f6:2c:58:46:b5:f6:ad:
74:c4:88:26:f9:3c:fc:09:36:e9:22:50:d9:57:63:2f:eb:1a:
21:b5:dc:07:3a:78:4d:92:e1:6d:a8:89:8d:81:72:7b:51:fb:
cb:0e:84:95:91:a1:49:c6:9c:68:54:07:c4:7c:60:c4:36:5d:
23:d6:7a:7a:80:af:83:ac:8e:66:68:72:38:b3:de:7d:bb:7d:
8d:3a:f6:71:d5:88:cb:45:91:f2:aa:b0:c0:70:da:fb:ad:1c:
22:e7:a9:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:55:45 2026 by rpki-client