Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
File: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft (raw, json)
Hash identifier: X9vLHDy3n0unNPZzvgCs7fF2B8oCYXcUgg+qj6d9M5g=
Subject key identifier: C2:41:55:2D:5F:DB:8B:BA:51:F9:3E:EB:C9:45:C2:73:DB:F4:9F:8A
Authority key identifier: B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
Certificate issuer: /CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Certificate serial: 019E9101FEC071343702EA125D82BADDDF7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
Manifest number: 0A19
Signing time: Thu 04 Jun 2026 05:01:27 +0000
Manifest this update: Thu 04 Jun 2026 05:01:27 +0000
Manifest next update: Fri 05 Jun 2026 05:01:27 +0000
Files and hashes: 1: pf4imHRU2e6GfZe8rQKhzIc5LBg.roa (hash: dsJgVjGxo4nm0IH9s2QS1ktYyvlCS7K764cL/mH8BNg=)
2: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl (hash: dETdDw+XJybQIqkvrVP8cNe7W6arrg05xPDUv6uYxRk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 05:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:91:01:fe:c0:71:34:37:02:ea:12:5d:82:ba:dd:df:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Validity
Not Before: Jun 4 05:01:27 2026 GMT
Not After : Jun 5 05:01:27 2026 GMT
Subject: CN=c241552d5fdb8bba51f93eebc945c273dbf49f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:db:b2:c2:89:a8:60:60:91:6d:e3:7b:bd:87:
89:93:f7:32:3e:d2:3b:b3:44:50:49:71:e5:3d:59:
68:a6:dc:d3:1b:94:f9:9e:13:2b:32:e6:5c:83:2a:
78:23:42:b0:f7:d1:cf:6d:82:85:a1:db:33:3a:1c:
15:27:55:7c:c9:14:9e:9c:4b:08:3f:f9:a3:89:5d:
ab:07:a9:2c:a8:5f:d9:b2:55:f1:e5:15:1c:17:3d:
ec:b4:24:ca:b9:fb:d9:68:a8:fe:b7:c2:60:d6:83:
e2:12:3d:4b:0b:81:9a:64:1e:a8:00:61:9a:21:f3:
db:43:54:c4:d5:dc:0e:d7:c1:25:1d:23:9d:df:e7:
97:e1:a5:88:4a:99:14:61:f0:e0:51:aa:db:e1:cc:
71:8e:f9:d5:7b:ef:f1:4d:d0:9d:a5:0d:a9:fe:58:
56:a4:97:8d:28:5e:6e:41:e4:e8:14:ba:da:04:90:
08:18:1a:81:1e:10:d2:a2:67:b9:90:ed:8c:24:0c:
74:4d:08:36:5b:da:6a:71:7f:4b:4b:9f:41:e5:68:
46:c9:b7:7a:0e:a2:48:62:0c:26:8b:de:47:e8:38:
be:83:bb:e0:9c:5d:74:6d:ba:bc:5d:99:b6:eb:94:
67:08:4c:2b:27:cc:e2:5b:ac:32:1c:ae:20:82:e4:
c7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:41:55:2D:5F:DB:8B:BA:51:F9:3E:EB:C9:45:C2:73:DB:F4:9F:8A
X509v3 Authority Key Identifier:
keyid:B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:8c:87:48:3e:7f:33:d8:29:13:cc:ec:b5:cd:4d:13:f7:94:
c7:fd:00:1e:19:52:9e:cb:75:22:12:be:14:4c:ec:06:b5:88:
51:02:16:d9:6d:79:ac:07:a6:2b:21:0e:43:bf:bc:ae:4f:cc:
89:44:37:88:7e:c2:2b:45:8d:40:6d:7d:38:d5:f0:41:73:4a:
e6:8f:32:bf:97:db:42:64:a6:07:6a:98:ac:9e:b5:39:90:06:
62:45:74:96:19:10:f8:bf:2c:01:53:d6:fe:70:03:d2:f1:f7:
3e:4d:96:f6:82:8a:ad:89:b1:20:56:63:59:76:b5:85:98:ef:
d5:b2:a7:17:76:a4:31:99:a3:38:28:3e:ef:33:4d:f9:fe:38:
1b:8f:ca:08:07:11:c4:8d:7b:3b:32:e4:ee:eb:63:97:9a:7c:
a8:8f:c1:53:96:0e:02:68:ec:94:12:a7:a9:c9:6c:e1:90:e4:
9d:e4:7b:28:ad:72:00:95:02:04:9f:b1:fb:44:8e:a6:78:e0:
05:f6:ed:c5:41:12:35:ea:f8:89:f2:73:4a:5f:47:6b:17:3a:
67:b0:da:18:2d:02:b8:5f:8f:ec:21:c7:42:b3:1b:20:b4:ae:
62:bd:83:a7:2a:30:f0:72:59:a0:1e:9f:50:21:95:3b:8c:59:
ef:bf:f0:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 12:09:04 2026 by rpki-client