Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
File: TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft (raw, json)
Hash identifier: GsRWlbITf53pSJH9M2a2holKaERQZt8eJvWFm9Km4+o=
Subject key identifier: A7:24:9E:85:D9:44:D6:4A:82:96:2C:DD:41:06:D9:7D:61:AF:94:12
Authority key identifier: 4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
Certificate issuer: /CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Certificate serial: 019DCE2B2E29036BEFF47F8461691FFEF280
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
Manifest number: 18DF
Signing time: Mon 27 Apr 2026 09:00:29 +0000
Manifest this update: Mon 27 Apr 2026 09:00:29 +0000
Manifest next update: Tue 28 Apr 2026 09:00:29 +0000
Files and hashes: 1: TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl (hash: Rn93Ip/KG0MEnpca1NPVbdkylcj95PxJ5YLS8UxTnVg=)
2: o-popO9auROaiIHZBs-GFli-ZBg.roa (hash: 3gA1UOiSr0PnnoNboQJZUsn/LeXSette67Qdwhw+aTc=)
3: x3MPjpAMv8jy4dhfPiDorj_3tLI.roa (hash: 0SB+6P5HbotJTZwxWuM7rwLO4yE+FQC9GnNEzbQTjX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:2b:2e:29:03:6b:ef:f4:7f:84:61:69:1f:fe:f2:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ccbc5e045eaa5f762a9146244c19248b62ba976
Validity
Not Before: Apr 27 09:00:29 2026 GMT
Not After : Apr 28 09:00:29 2026 GMT
Subject: CN=a7249e85d944d64a82962cdd4106d97d61af9412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0d:60:55:c0:a2:7c:1f:1b:48:93:72:d9:98:
55:7d:8a:b0:45:a8:df:11:58:cb:5e:ea:ff:86:d8:
84:eb:b5:3b:3d:b8:f6:a1:27:3d:d4:78:63:ef:50:
42:f5:fc:95:55:d5:92:11:0f:ca:80:af:1a:b9:61:
4a:b0:15:94:3b:a1:6b:ad:af:13:62:f6:b0:1f:af:
64:ee:97:05:9f:eb:eb:5f:25:19:30:c4:da:35:ba:
90:b9:7c:8a:18:50:78:e2:70:a8:36:88:ff:67:cb:
81:0e:96:a7:81:64:14:9d:d5:78:c5:41:ae:66:92:
86:1c:1e:a6:a5:34:17:59:d6:90:07:1a:79:65:c8:
27:79:09:e5:99:c5:43:2c:b8:90:5e:34:f9:66:de:
26:4c:7b:f8:d9:34:70:e3:fe:2c:71:50:48:33:d1:
30:65:3c:ea:c8:24:12:d3:13:dc:a8:fa:48:b9:ee:
f0:82:3c:85:5c:55:9b:85:03:78:fc:52:48:0c:a2:
ee:f3:3d:ca:05:57:cf:8f:3f:98:87:99:eb:e5:97:
05:60:b4:9a:44:9f:ab:f6:51:19:c3:9d:23:51:55:
fe:41:8f:03:b4:b5:9b:96:47:5c:7a:4a:45:60:c8:
66:b8:e4:ab:6a:34:b7:89:f3:9e:7f:85:ff:0a:b7:
b6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:24:9E:85:D9:44:D6:4A:82:96:2C:DD:41:06:D9:7D:61:AF:94:12
X509v3 Authority Key Identifier:
keyid:4C:CB:C5:E0:45:EA:A5:F7:62:A9:14:62:44:C1:92:48:B6:2B:A9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMvF4EXqpfdiqRRiRMGSSLYrqXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/bf66dd-6237-48de-aed7-a7c59ddcf76b/1/TMvF4EXqpfdiqRRiRMGSSLYrqXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:9c:a5:25:c8:ad:3f:01:be:2b:68:3c:d5:46:15:40:d6:66:
a0:a7:b1:fa:26:a5:8c:7d:de:8b:06:70:00:e8:82:37:ac:df:
e9:4e:5a:4d:ca:68:88:6a:e9:cb:d8:3c:c9:68:28:ef:0d:8f:
58:ef:3b:c0:95:f8:aa:bc:23:4b:e2:12:75:fa:43:fd:5a:0b:
cd:f4:af:a0:aa:08:a3:6e:50:31:91:a8:25:0d:1d:2c:59:ef:
17:77:dc:0e:65:f3:6b:43:9c:3a:b8:5a:3f:f0:57:5d:4e:ab:
08:42:6b:7a:a5:f6:86:d1:2a:7a:d7:ef:4c:ea:9c:4d:97:e6:
00:7a:fa:c2:6a:69:d7:e4:7f:b9:7c:09:1c:5e:df:d5:51:5e:
9e:0c:ad:e6:4d:d5:02:e1:a9:29:a5:fc:db:dd:fc:f4:82:73:
b2:df:45:55:90:83:b8:ac:e3:92:86:9d:e7:bf:23:b9:ca:ef:
4c:32:36:00:fe:bc:a4:65:91:f7:33:96:6e:4b:c5:c3:b8:28:
b3:e5:8b:e4:ac:d4:fa:15:c7:f3:42:06:73:df:f9:6c:fc:01:
49:4c:f3:eb:32:57:24:4e:a6:c2:6e:e1:3a:ad:49:0b:ff:20:
59:1d:5d:63:20:12:31:f6:e2:9c:89:f1:e6:16:60:40:a7:c7:
44:bd:25:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 14:34:13 2026 by rpki-client