Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
File: TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft (raw, json)
Hash identifier: m19CEylKfV259zggn2Sjk+qlPw02IQYpCyfRb/3fi1Y=
Subject key identifier: 30:FE:70:BA:9E:BA:0E:02:9B:2C:68:FC:9E:59:78:19:74:C8:31:1D
Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Certificate serial: 019EB7D8386A6A41715BB9BDEB93005F003E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
Manifest number: 1958
Signing time: Thu 11 Jun 2026 18:01:01 +0000
Manifest this update: Thu 11 Jun 2026 18:01:01 +0000
Manifest next update: Fri 12 Jun 2026 18:01:01 +0000
Files and hashes: 1: TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl (hash: oMU+U1tkG6i9G8IQ12NKupliXrXtmaOfOS3LY5TQTmg=)
2: o-popO9auROaiIHZBs-GFli-ZBg.roa (hash: 3gA1UOiSr0PnnoNboQJZUsn/LeXSette67Qdwhw+aTc=)
3: x3MPjpAMv8jy4dhfPiDorj_3tLI.roa (hash: 0SB+6P5HbotJTZwxWuM7rwLO4yE+FQC9GnNEzbQTjX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 18:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:d8:38:6a:6a:41:71:5b:b9:bd:eb:93:00:5f:00:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Validity
Not Before: Jun 11 18:01:01 2026 GMT
Not After : Jun 12 18:01:01 2026 GMT
Subject: CN=30fe70ba9eba0e029b2c68fc9e59781974c8311d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:17:e2:8b:a7:58:15:6e:3b:b6:73:73:2d:22:
79:aa:2b:a1:49:e5:12:15:cb:e5:35:d1:6b:6c:fb:
0e:7b:6b:f8:35:ed:72:b5:cb:93:ca:b2:1b:48:98:
ed:86:c9:08:8c:0f:33:67:ab:c7:88:29:23:40:14:
ef:f6:2c:e7:5a:6c:15:7c:86:26:3c:85:4a:87:db:
6e:4c:48:8b:4e:0d:37:c6:2f:df:d5:5c:96:93:54:
04:54:db:76:a5:d3:2a:37:29:19:e9:1d:0f:f4:44:
69:a9:f2:26:73:18:f6:ed:71:9d:c6:c5:fb:c4:53:
0a:a1:d7:70:26:d2:6e:e1:d7:3b:e6:6f:6c:56:fb:
7d:65:b9:81:90:75:33:7b:ef:50:b1:4c:2d:d7:ba:
2b:ef:47:fa:5b:ee:05:69:4b:af:d1:8b:18:d7:9a:
d5:38:82:1b:1f:87:3e:0d:da:17:dd:69:71:ea:82:
f5:d3:5f:9b:06:c3:00:fe:49:73:c8:32:1b:eb:9c:
30:7b:43:56:09:8e:4a:2f:41:ad:24:e6:61:29:70:
fe:5a:86:d8:3b:15:a9:a5:72:40:c7:95:d4:d4:d3:
66:d1:1f:35:4f:90:09:9d:c2:64:01:4b:b8:de:1a:
97:e8:ad:0e:11:a0:31:97:6b:4e:0c:f2:22:f1:c0:
58:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FE:70:BA:9E:BA:0E:02:9B:2C:68:FC:9E:59:78:19:74:C8:31:1D
X509v3 Authority Key Identifier:
keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:5a:01:44:16:b9:b1:01:8b:96:c3:7f:3c:3a:14:cd:49:e0:
b8:31:54:e9:18:4f:b2:54:eb:3d:d0:26:1e:38:ad:0a:b6:5e:
6c:5b:ea:a2:b3:a9:55:61:e3:dc:99:1c:6b:00:18:bc:13:7e:
de:a1:9d:d8:b7:87:32:80:64:5b:9e:ab:d5:76:11:9f:d8:8b:
a9:cf:e8:33:66:63:58:4a:e1:ed:6c:93:92:df:9f:16:b1:ac:
96:c2:a5:f9:32:92:83:e5:8d:b4:14:a5:27:f9:eb:73:48:f1:
95:38:7d:b6:8f:47:da:9c:21:64:fe:41:ef:b2:0a:4a:80:11:
40:6b:8c:40:68:34:6d:51:9b:9c:7b:35:18:67:0a:58:b7:0c:
ec:54:24:eb:48:65:7e:f8:4d:d5:a8:2f:40:8d:80:d2:68:ba:
3c:63:51:1b:aa:ab:0b:69:27:34:a5:98:da:84:a8:99:e9:6f:
dd:23:00:6e:78:9c:fa:1e:65:b0:46:ac:7d:81:28:83:9d:52:
38:c4:78:3f:73:a3:87:0e:a8:21:a1:e3:5c:f9:ea:c7:1a:68:
54:94:15:3a:5f:66:d2:cf:19:0d:a3:ce:a9:45:a9:91:f3:10:
60:82:ab:8f:4c:40:80:d4:d2:c9:1f:1a:e8:d4:75:bc:2b:5d:
50:3a:74:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:12:41 2026 by rpki-client