Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
File: tKOwBTZrDhDVAulBSQHNhPri3JU.mft (raw, json)
Hash identifier: meKT9wUzwIXjMsWMtnjN9zvSZz06rIMjK2D2SaWFcWg=
Subject key identifier: 2D:AD:9B:BD:29:3C:02:22:45:E6:B3:11:1C:82:E9:54:40:84:7F:91
Authority key identifier: B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95
Certificate issuer: /CN=b4a3b005366b0e10d502e9414901cd84fae2dc95
Certificate serial: 019DCED09CE1A29AEA4D1302FCF8E1C50BBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
Manifest number: 0174
Signing time: Mon 27 Apr 2026 12:01:11 +0000
Manifest this update: Mon 27 Apr 2026 12:01:11 +0000
Manifest next update: Tue 28 Apr 2026 12:01:11 +0000
Files and hashes: 1: 6ZCReiMt-9O5qTlHfdRp0QA32Z4.asa (hash: bKgoE+JkmS262GXXwRqyLtBEgk05ptq2r34ReJuCtP0=)
2: Rh-ZUnz6j4kgwPiltUC2WNESJv8.roa (hash: KaJ3DV/t9W6woGLoKmszOfnkxPqXiwxsukUttzUDmPU=)
3: tKOwBTZrDhDVAulBSQHNhPri3JU.crl (hash: Q/Z9fqvzjrLD2+XU10oenS7Cgd0cC6J1vOVO2/i9tvU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 12:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:d0:9c:e1:a2:9a:ea:4d:13:02:fc:f8:e1:c5:0b:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a3b005366b0e10d502e9414901cd84fae2dc95
Validity
Not Before: Apr 27 12:01:11 2026 GMT
Not After : Apr 28 12:01:11 2026 GMT
Subject: CN=2dad9bbd293c022245e6b3111c82e95440847f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:66:e2:1e:b3:1f:29:2d:10:3a:cf:1d:3f:71:
86:c3:08:72:81:2b:94:0e:d6:44:83:08:65:ff:4e:
2d:b2:98:1c:d8:1f:aa:3f:6c:7b:50:a7:53:0c:03:
62:9e:13:66:1a:b3:ef:a6:b6:13:4f:c5:39:f6:17:
3b:d2:ad:98:73:cb:90:b2:e7:5d:64:c2:5e:81:c2:
67:de:4c:10:23:70:ba:07:9e:31:d7:b7:35:2e:39:
b3:4e:ec:64:ba:15:49:72:77:f8:ee:9a:93:92:3a:
f0:f1:c3:f0:63:c0:f3:d2:19:dc:4a:6e:31:9c:4a:
71:c6:53:56:dc:e9:03:d8:d2:be:98:58:ac:81:20:
62:90:c7:65:93:38:5f:45:d2:23:a6:bc:cb:1a:80:
14:36:e6:65:6c:26:f3:f9:bc:7e:4f:3c:4b:bc:ff:
fa:e0:02:4d:9f:42:b7:ec:b2:57:e8:e2:aa:5e:8d:
6b:8d:a6:b9:c0:85:39:2f:94:2a:a1:51:7c:49:10:
e9:90:c7:1d:3c:4c:a5:5b:c1:cc:a0:87:ca:4b:dc:
d3:d7:87:57:09:7a:87:c0:ec:8f:39:66:f9:6b:92:
17:61:56:e0:b0:d3:78:54:b6:e7:65:18:3a:e6:c8:
56:c6:e4:2c:3c:9b:2d:67:8a:a2:a3:c3:b3:9f:82:
6a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AD:9B:BD:29:3C:02:22:45:E6:B3:11:1C:82:E9:54:40:84:7F:91
X509v3 Authority Key Identifier:
keyid:B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:2d:72:e9:c4:f9:fa:c0:70:ed:00:0b:3e:bf:2f:5d:8e:2d:
09:94:27:e3:2a:b4:20:e1:e0:fe:46:0b:f1:17:d4:3a:16:6a:
68:0d:d8:d7:df:fe:8c:a7:e4:03:b4:82:65:45:11:b2:82:d7:
79:79:bd:76:01:4f:6a:1a:fd:bf:6b:20:64:37:f6:53:89:f0:
ba:e2:d8:af:6f:fe:6e:47:0a:9e:7d:cf:c7:b5:67:e4:52:6b:
e9:9e:17:93:a4:e4:30:66:fa:4d:ff:4b:3d:65:7a:66:2d:2d:
d9:73:3d:8b:95:8a:0c:54:dc:8b:f4:15:8a:c8:ae:df:47:2b:
59:d2:f6:c6:63:ac:16:64:be:2f:7a:cf:66:b7:13:d4:e3:a5:
27:7d:9b:fc:15:4b:d4:f4:89:91:64:a4:c4:f2:a0:09:39:fa:
59:29:7e:87:38:ff:dc:ff:74:0f:62:fc:c4:a6:9d:89:67:e6:
37:10:9e:72:e1:38:9c:d4:7b:b2:c3:a3:d5:ed:6d:3d:0d:53:
fc:00:17:7e:a4:8a:78:73:b6:6a:62:58:0a:30:9d:ad:fd:24:
b7:f9:0e:b7:fc:5e:94:82:59:dc:8b:f9:4a:5d:4c:e9:66:73:
01:ea:39:b5:26:6a:12:56:b8:7a:1e:b8:74:09:9d:37:53:d5:
d8:25:18:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:06:07 2026 by rpki-client