Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
File: tUcxKN5Ul222LZvRYU53xD3uObU.mft (raw, json)
Hash identifier: egkggDQzxOQ0CI0d1rJP9+/koLhWLLRrGx65oTYVkTU=
Subject key identifier: F1:C8:5C:A1:FE:80:E6:5E:84:A2:A0:E7:34:5D:07:6B:C0:A5:77:7A
Authority key identifier: B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5
Certificate issuer: /CN=b5473128de54976db62d9bd1614e77c43dee39b5
Certificate serial: 019DDD67F0309DD3A53382B19C1FA11DE4C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
Manifest number: 15BD
Signing time: Thu 30 Apr 2026 08:01:09 +0000
Manifest this update: Thu 30 Apr 2026 08:01:09 +0000
Manifest next update: Fri 01 May 2026 08:01:09 +0000
Files and hashes: 1: TmvOzGWnmK2lk0JBtr2hwCa8AyI.asa (hash: jT3uzkFsF2IKke7bmyYM9JWOSf+ukPwuY/SlyIWkCoE=)
2: ptdE_5xWn-ZmMAkY4AdscmyvcGk.roa (hash: eOGLE8Tlqokd5s+tmbzOxg0+2W1g2wypnR3SH77Owog=)
3: tUcxKN5Ul222LZvRYU53xD3uObU.crl (hash: osiKrOonmGFn17g8xmW2OfFc31AyLx84JxU20mxKZxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:dd:67:f0:30:9d:d3:a5:33:82:b1:9c:1f:a1:1d:e4:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5473128de54976db62d9bd1614e77c43dee39b5
Validity
Not Before: Apr 30 08:01:09 2026 GMT
Not After : May 1 08:01:09 2026 GMT
Subject: CN=f1c85ca1fe80e65e84a2a0e7345d076bc0a5777a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:88:51:b9:3e:e1:73:9a:be:2e:4e:f0:88:9e:
9d:00:72:7f:5b:98:0c:6b:f4:93:94:44:f4:f8:a7:
7f:c6:d7:f8:20:2b:3b:1f:b0:65:86:f9:f9:a4:b3:
af:09:5e:58:56:94:bc:5f:a7:12:0a:6e:78:b7:2d:
4d:ca:c5:63:d8:34:f2:fc:2f:ae:03:28:14:e5:c4:
27:d9:bd:df:e6:fd:8d:2c:c6:f0:34:2f:6b:3d:f2:
c3:ec:fe:a1:a5:17:de:f0:45:b2:35:77:68:27:35:
98:c6:da:4c:6e:cc:2e:e3:f5:26:43:18:be:b5:38:
83:70:69:7d:82:1d:14:fa:a5:22:d7:f1:6c:f3:c8:
60:18:5a:7f:36:63:7c:e7:89:ef:d7:61:7d:a4:63:
6c:19:15:b9:c5:0c:95:45:d4:1b:19:12:5a:d3:ee:
f7:04:7a:19:7e:c8:7b:1e:1d:44:ca:1c:dd:20:97:
11:f7:d6:f0:e8:ed:20:50:71:ec:58:fa:eb:9b:05:
37:b3:6c:64:d1:94:83:74:0d:6b:4a:cb:a9:6e:96:
a6:76:be:31:ee:ae:27:b2:65:83:7b:29:4a:40:eb:
09:3d:3e:a4:e7:d4:e3:04:54:77:d4:29:ae:4e:18:
09:7a:c1:df:eb:b4:82:d6:06:1f:c4:d2:41:bc:5d:
bb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C8:5C:A1:FE:80:E6:5E:84:A2:A0:E7:34:5D:07:6B:C0:A5:77:7A
X509v3 Authority Key Identifier:
keyid:B5:47:31:28:DE:54:97:6D:B6:2D:9B:D1:61:4E:77:C4:3D:EE:39:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUcxKN5Ul222LZvRYU53xD3uObU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/70de80-50e9-4c1d-a7b4-e904318342ee/1/tUcxKN5Ul222LZvRYU53xD3uObU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:4f:e3:f0:e6:a6:2b:cf:de:5b:6f:28:c7:18:92:84:24:07:
00:99:b5:60:30:28:6f:a3:4c:c7:43:11:48:cd:fc:9f:b3:b1:
61:fb:5f:70:f9:9a:27:39:29:88:6a:39:38:2f:21:45:cf:a9:
51:9d:83:19:e9:9b:76:b4:b4:c1:4f:eb:49:73:6b:d2:aa:9a:
45:79:1f:50:e2:65:d3:ff:1b:c8:cf:5c:63:b1:ba:03:ed:3c:
9d:cb:1e:f6:63:f9:76:45:7a:7a:ea:9c:5e:e9:97:43:71:82:
0c:f3:4a:44:a8:f6:35:28:d9:24:9d:9f:c4:d1:c7:ed:07:11:
41:01:85:5d:e8:ec:06:9f:b1:f4:66:c5:ec:57:29:69:d9:d6:
43:a4:76:f4:e1:ed:e4:75:d5:96:ed:f1:85:fe:00:bf:73:4a:
4b:33:ef:a0:72:f5:e4:73:53:f1:6c:67:24:30:11:25:03:39:
57:34:40:6a:97:b3:da:35:6b:b0:3d:ed:59:6f:fa:b3:ca:2d:
05:fc:6e:7a:d7:10:b7:d2:8c:6f:08:9e:6e:4b:5e:21:3f:16:
da:f9:aa:62:77:2e:ae:9a:c5:83:85:d8:79:08:52:a5:b2:e8:
45:78:4a:89:46:16:11:aa:11:ba:3f:89:99:5d:e9:95:32:53:
c0:d9:00:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3dZ/AwndOlM4KxnB+hHeTGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NDczMTI4ZGU1NDk3NmRiNjJkOWJkMTYxNGU3N2M0M2Rl
ZTM5YjUwHhcNMjYwNDMwMDgwMTA5WhcNMjYwNTAxMDgwMTA5WjAzMTEwLwYDVQQD
EyhmMWM4NWNhMWZlODBlNjVlODRhMmEwZTczNDVkMDc2YmMwYTU3NzdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYhRuT7hc5q+Lk7wiJ6dAHJ/W5gM
a/STlET0+Kd/xtf4ICs7H7Blhvn5pLOvCV5YVpS8X6cSCm54ty1NysVj2DTy/C+u
AygU5cQn2b3f5v2NLMbwNC9rPfLD7P6hpRfe8EWyNXdoJzWYxtpMbswu4/UmQxi+
tTiDcGl9gh0U+qUi1/Fs88hgGFp/NmN854nv12F9pGNsGRW5xQyVRdQbGRJa0+73
BHoZfsh7Hh1EyhzdIJcR99bw6O0gUHHsWPrrmwU3s2xk0ZSDdA1rSsupbpamdr4x
7q4nsmWDeylKQOsJPT6k59TjBFR31CmuThgJesHf67SC1gYfxNJBvF27yQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPHIXKH+gOZehKKg5zRdB2vApXd6MB8GA1UdIwQY
MBaAFLVHMSjeVJdtti2b0WFOd8Q97jm1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFVjeEtONVVsMjIyTFp2UllVNTN4RDN1T2JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC83MGRlODAtNTBlOS00YzFkLWE3YjQt
ZTkwNDMxODM0MmVlLzEvdFVjeEtONVVsMjIyTFp2UllVNTN4RDN1T2JVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC83MGRlODAtNTBlOS00YzFkLWE3YjQtZTkwNDMxODM0MmVl
LzEvdFVjeEtONVVsMjIyTFp2UllVNTN4RDN1T2JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmE/j8Oam
K8/eW28oxxiShCQHAJm1YDAob6NMx0MRSM38n7OxYftfcPmaJzkpiGo5OC8hRc+p
UZ2DGembdrS0wU/rSXNr0qqaRXkfUOJl0/8byM9cY7G6A+08ncse9mP5dkV6euqc
XumXQ3GCDPNKRKj2NSjZJJ2fxNHH7QcRQQGFXejsBp+x9GbF7FcpadnWQ6R29OHt
5HXVlu3xhf4Av3NKSzPvoHL15HNT8WxnJDARJQM5VzRAapez2jVrsD3tWW/6s8ot
BfxuetcQt9KMbwiebkteIT8W2vmqYncurprFg4XYeQhSpbLoRXhKiUYWEaoRuj+J
mV3plTJTwNkAHA==
-----END CERTIFICATE-----
Generated at Thu Apr 30 12:48:53 2026 by rpki-client