Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
File: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft (raw, json)
Hash identifier: CcIvp723VpYWk/QAryYVshq8ppU/Ea4QaTP8+PJ2mx0=
Subject key identifier: EF:EE:40:9E:5E:A1:90:D3:77:F9:26:FA:6B:9D:5C:05:68:00:07:1A
Authority key identifier: 4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
Certificate issuer: /CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Certificate serial: 019DCDF574439DC7DDA8E46311CF459C0DD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
Manifest number: 0FC3
Signing time: Mon 27 Apr 2026 08:01:48 +0000
Manifest this update: Mon 27 Apr 2026 08:01:48 +0000
Manifest next update: Tue 28 Apr 2026 08:01:48 +0000
Files and hashes: 1: Mw_jlWOX47w8ZEpuvWB3HZ4VYvQ.roa (hash: sfhBIh2mCq2mgYz96ptYyTEOfSgYQ6EGFDmjhxXGLyI=)
2: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl (hash: xAOHVhfRcmdPB5iW1puOyt/rwJjtrWKW5PCa8wTCJSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f5:74:43:9d:c7:dd:a8:e4:63:11:cf:45:9c:0d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Validity
Not Before: Apr 27 08:01:48 2026 GMT
Not After : Apr 28 08:01:48 2026 GMT
Subject: CN=efee409e5ea190d377f926fa6b9d5c056800071a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f7:42:69:96:bb:db:c5:6b:27:09:47:38:52:
f0:01:49:ed:d8:c8:46:2b:f5:d3:ab:69:8a:9a:f7:
f6:53:7e:81:02:9f:6e:d6:1d:29:d3:1e:e4:08:b5:
23:1f:70:2b:0a:cc:11:fb:56:6c:5d:68:d6:b9:b1:
21:77:1c:3f:4a:c4:e6:45:09:ef:4b:b6:a6:dc:1a:
9f:93:f9:11:2e:85:56:26:cf:92:f4:69:ed:2f:c0:
73:f7:e2:b0:90:ea:97:dc:81:da:18:31:2c:75:7c:
c2:0a:84:bb:37:54:47:4a:68:df:d3:78:34:6d:c7:
26:99:b9:cc:f0:38:f3:9f:65:2d:b5:27:2f:c0:bd:
a6:55:e8:9f:99:29:c9:4e:48:d9:f3:85:73:8f:8a:
d7:67:cd:fd:22:77:d7:13:1f:6d:98:fe:a9:38:62:
b4:3a:cd:15:32:df:cb:3e:ad:8c:75:2b:19:1c:ab:
7a:73:df:1a:01:18:d0:31:67:4b:59:89:a2:93:2e:
8c:01:e7:68:e3:6f:51:7c:5b:f7:82:93:1f:41:2f:
db:d1:6b:9e:19:22:48:a3:5d:51:c9:88:11:ba:f5:
1d:bf:e5:c9:b9:ff:60:b5:57:93:a2:64:94:50:1c:
e0:66:ab:84:80:dd:28:7a:5f:5e:f9:0b:80:cb:49:
d3:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:EE:40:9E:5E:A1:90:D3:77:F9:26:FA:6B:9D:5C:05:68:00:07:1A
X509v3 Authority Key Identifier:
keyid:4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:31:df:a9:55:71:dd:88:65:bd:a0:cc:b4:42:6f:7f:9d:df:
be:92:d2:fc:57:38:a7:bc:33:28:af:c5:a3:04:c8:43:c3:b6:
31:e9:3e:25:5c:5e:b6:57:62:85:df:3c:c1:fa:22:14:39:d1:
f8:d2:86:c4:9c:52:03:ba:88:7a:7d:b6:b3:ef:d4:cf:60:55:
f3:63:02:64:29:49:31:b2:dd:3f:ae:f5:46:ec:67:91:8d:1c:
63:c3:3d:cb:9b:66:19:50:30:8a:3d:c6:e2:b8:a4:4d:81:b7:
ed:d4:1c:77:06:67:e5:3e:dc:b1:3c:36:23:b9:b8:d2:c6:57:
13:4a:fd:f3:05:a5:76:d8:1d:92:dc:86:88:1c:97:7a:79:4a:
38:b4:6d:6e:30:2a:27:7c:aa:59:6f:1b:56:bc:d8:bd:89:50:
80:fa:2d:4c:89:48:d9:2d:7a:b2:d2:22:6d:0a:86:29:6a:81:
ad:b3:36:fa:db:03:3b:7b:a4:e0:b1:8f:e1:b8:44:f5:b8:46:
d7:55:42:ce:13:88:f4:63:a3:dc:24:0d:d7:be:72:43:47:28:
d1:2e:0f:c4:a7:60:04:ea:a4:d8:e6:76:38:89:ce:92:9b:04:
51:1c:9c:87:29:c9:28:11:b3:50:34:51:c0:cd:c3:c9:b4:d3:
7d:11:e0:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 17:20:51 2026 by rpki-client