Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
File: tKOwBTZrDhDVAulBSQHNhPri3JU.mft (raw, json)
Hash identifier: fpFNY/lRXLipOO1OJl1mdK9aGuuvpafqhSjkxyCaQns=
Subject key identifier: 18:CB:D9:D5:E5:FF:D2:5E:63:9D:AA:65:08:50:DC:9C:9E:49:CA:15
Authority key identifier: B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95
Certificate issuer: /CN=b4a3b005366b0e10d502e9414901cd84fae2dc95
Certificate serial: 019EB87CEB7D4A093B5BCF5253E5D2116598
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
Manifest number: 01ED
Signing time: Thu 11 Jun 2026 21:00:54 +0000
Manifest this update: Thu 11 Jun 2026 21:00:54 +0000
Manifest next update: Fri 12 Jun 2026 21:00:54 +0000
Files and hashes: 1: 6ZCReiMt-9O5qTlHfdRp0QA32Z4.asa (hash: bKgoE+JkmS262GXXwRqyLtBEgk05ptq2r34ReJuCtP0=)
2: Rh-ZUnz6j4kgwPiltUC2WNESJv8.roa (hash: KaJ3DV/t9W6woGLoKmszOfnkxPqXiwxsukUttzUDmPU=)
3: tKOwBTZrDhDVAulBSQHNhPri3JU.crl (hash: 1ZWx1jJaEtEIbf6XO0WIIwvLDvsyFPPueCBYNxrST5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:eb:7d:4a:09:3b:5b:cf:52:53:e5:d2:11:65:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a3b005366b0e10d502e9414901cd84fae2dc95
Validity
Not Before: Jun 11 21:00:54 2026 GMT
Not After : Jun 12 21:00:54 2026 GMT
Subject: CN=18cbd9d5e5ffd25e639daa650850dc9c9e49ca15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:b4:cd:f0:ef:0f:45:c4:86:a1:fa:8e:5b:db:
ab:90:f9:fb:ab:64:8a:2a:df:d4:46:de:78:31:36:
1f:9d:e6:2a:d3:41:5b:21:02:cf:00:dc:cb:cb:15:
ea:fe:56:4f:9b:a8:82:13:4d:cb:d6:23:92:18:ed:
41:28:5f:90:ed:2f:9e:01:d1:dd:1e:24:93:21:5e:
a8:64:6f:4f:95:c4:9a:82:16:b0:d6:c7:5c:24:13:
d4:44:b5:45:c4:0b:14:0d:ee:b5:b1:db:87:5c:06:
9e:44:b1:ca:39:e6:cd:d3:67:d5:72:5b:bf:23:1c:
c0:85:23:26:65:95:ae:3c:d4:8f:a3:b2:f1:ba:37:
9d:73:2c:31:24:db:97:5d:a6:42:ee:9f:64:ac:17:
f2:22:52:d9:dd:b4:8c:5a:b1:a0:cc:da:5e:f7:3f:
ad:0e:c7:6a:09:ad:d0:78:bd:1a:61:4e:62:7f:5e:
d1:84:c6:97:3b:dc:56:93:d7:08:d0:3a:93:70:20:
4d:08:8c:7d:24:50:37:8c:ec:5c:fb:28:e7:02:1d:
fc:f4:72:cc:9d:b2:11:bb:a7:6b:1b:68:13:0b:79:
96:e5:68:37:b7:ed:29:c3:f0:b7:6a:1f:48:9c:5e:
a0:a8:7c:a9:7b:b3:8f:56:e7:13:67:36:d3:5e:36:
bb:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:CB:D9:D5:E5:FF:D2:5E:63:9D:AA:65:08:50:DC:9C:9E:49:CA:15
X509v3 Authority Key Identifier:
keyid:B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:4d:04:a3:42:22:af:01:f1:cf:42:8c:33:52:20:98:85:da:
9f:d5:f9:ea:f5:67:b8:f9:64:84:78:4c:be:88:35:f8:14:7b:
37:9b:e9:e6:57:2d:01:41:fb:04:94:81:3d:0c:8b:40:09:fc:
13:af:3a:c8:98:11:2b:63:69:23:28:a7:94:40:ae:e7:36:7d:
e6:a9:6b:ea:15:ae:b1:74:8e:49:d6:f2:f1:fb:2a:25:a9:77:
bb:e7:2a:6f:10:17:55:41:b2:d2:e3:7f:84:03:82:03:51:3b:
fa:01:8e:74:0b:e9:d1:08:f6:ef:5f:e3:27:dc:74:c6:14:26:
11:01:9c:85:02:bc:40:1a:20:a6:ec:df:02:9e:53:5f:13:f6:
43:a3:cd:71:98:df:81:92:e6:28:99:54:4f:dc:9e:ab:0b:8f:
b3:00:4b:e1:ec:52:3c:bf:8e:b2:8e:2d:35:e9:41:2e:85:ce:
a0:e8:67:f9:77:ea:68:38:88:64:48:d6:74:1c:77:eb:ef:c4:
f8:d2:21:30:5d:63:f6:7b:f9:75:f0:db:64:50:9a:35:3f:17:
40:0f:6e:af:63:43:a9:32:48:82:37:ca:2b:e5:76:1d:b5:5b:
8c:36:58:b3:10:ba:b9:7e:f1:bb:bf:3d:8b:ed:ed:37:98:9e:
48:5e:ea:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 06:12:21 2026 by rpki-client