Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json)
Hash identifier: Jq9So2Dv2yZG76DOrN0zvutKwWhFPt1sR6iSyGZeIiI=
Subject key identifier: DD:B6:47:6E:AD:23:B7:BF:A8:E0:1C:3F:E2:AE:25:EE:01:73:BA:BF
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 019CE4ECB0705A800F91D53CAE553A5EC19D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
Manifest number: 18C4
Signing time: Fri 13 Mar 2026 02:00:42 +0000
Manifest this update: Fri 13 Mar 2026 02:00:42 +0000
Manifest next update: Sat 14 Mar 2026 02:00:42 +0000
Files and hashes: 1: 3mj4BF15-QsrQeXNqlhp9O0RF8Q.roa (hash: vXL9dy1/SgEnnpISMc/F/t6U8c7+bWH7fiwFFAUniPU=)
2: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: HjzgoYF/BJg9CA2XEzXOi8hevVejnH7PTHduL0YQ8ZI=)
3: dDIM-ljTCDKhWIxv1515WUGeQvk.roa (hash: /ksxNXhqwhx98qeq21Eca7WB/KLYXy3qx2dkD35mKTc=)
4: i6gAOaaWdEjygKv3yzfVHTmBR5s.roa (hash: jK1Yhe3ibqhPTKxiBNM7KW7h9KKeRctQT02L1qcBze8=)
5: kFLjuN4_tRjI-IILkJq8lcLpDdc.roa (hash: lQTRIEBvMUBY3vX80dFs9U0bSNDBYvB6Uew+srrzZ9A=)
6: qrG9XLPl84E40eGjaluMQlHH30g.roa (hash: JZCVwj3aTdfzcFTKEfr0xBq4Umu2aHhpSpk1hh5GgSQ=)
7: sNbxwr_VlMceIOoORfjNh48fthg.roa (hash: og1IfOlO+B5tux3x/JdwIjbchpmcSQUOsvTa4SrXgws=)
8: sPyU_Xm3Mi4DrCYd-xCPHCu7Yj8.roa (hash: R+jYi2MX3/3kpxkJYiEg+3YO+SpdTf42NvPMvZti0mw=)
9: yjcAiOmQGkj7hTD0MZWHr2J1Je4.roa (hash: S7VwEQTFRcxL/FXQlqzu5pVh1KvvK3fwPwSXMI469EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:ec:b0:70:5a:80:0f:91:d5:3c:ae:55:3a:5e:c1:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Mar 13 02:00:42 2026 GMT
Not After : Mar 14 02:00:42 2026 GMT
Subject: CN=ddb6476ead23b7bfa8e01c3fe2ae25ee0173babf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2c:60:24:4f:ea:02:28:1a:98:63:40:3b:5a:
49:94:62:0c:e7:4d:47:33:9d:82:53:95:61:f1:91:
7d:11:3f:e0:e6:10:12:f1:dc:94:fa:80:c8:12:76:
eb:67:70:bb:54:f7:84:36:93:09:09:23:12:86:ce:
9d:9c:7e:99:6a:7e:81:12:d9:96:e9:d0:5b:a2:e2:
80:62:b0:bc:47:21:f5:fc:ea:26:28:c1:41:4e:dd:
97:fe:cc:96:4f:dd:8a:bd:fd:73:bf:47:96:ed:78:
fa:c7:88:99:c5:92:1b:33:77:cf:9f:dd:85:dd:95:
24:11:e2:8b:80:f4:4b:ad:12:fd:fc:11:d4:dc:cc:
2c:53:4f:73:1b:31:9e:c5:71:f6:ce:d6:f7:6e:d1:
24:c5:db:86:ea:3e:c8:f4:af:07:84:7b:da:43:f7:
b3:72:b0:c4:8e:7f:52:4f:97:94:21:0c:19:ef:61:
c2:f1:0b:75:ca:5e:b5:12:5b:fa:b9:b7:55:64:73:
82:c6:85:b2:cd:11:40:62:07:34:95:25:8a:85:d3:
69:0b:ed:fc:06:f0:6a:90:07:54:ab:7d:7f:1c:88:
20:67:53:c7:38:8d:64:dd:fb:fd:54:fa:f1:71:45:
82:1d:fa:d5:80:07:1d:a8:3b:93:b2:67:61:98:00:
ac:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:B6:47:6E:AD:23:B7:BF:A8:E0:1C:3F:E2:AE:25:EE:01:73:BA:BF
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:45:2a:02:c7:13:35:04:bd:5a:3c:1a:ed:23:da:16:11:6e:
a1:99:4c:48:0a:f6:e4:ed:e9:ab:ab:65:61:51:40:84:af:53:
3d:79:f5:1b:6d:5f:79:f4:82:87:54:19:d6:5b:88:d4:7e:d0:
62:8c:6f:6e:5c:89:f2:48:0b:b6:6e:7f:ca:ef:53:13:c9:86:
50:01:d9:5e:4a:d6:31:54:ef:7d:e2:89:f3:d2:14:a3:4c:0a:
2d:07:19:01:39:07:d8:e7:bf:81:2e:b1:03:89:75:c8:1c:55:
84:ec:c5:83:a9:89:c0:35:12:3d:fa:77:3a:6f:fd:da:ba:4e:
22:2e:de:46:f4:08:04:b8:fb:9f:a6:c6:ea:ce:bc:18:22:2a:
12:27:b0:6e:fc:0d:c3:48:88:27:4e:a9:72:f7:f2:57:7b:dd:
dd:ad:14:23:79:63:65:4d:3c:29:3e:eb:59:55:db:eb:a6:85:
dd:2d:0e:a4:b9:4a:bf:0e:74:b4:b2:f9:3c:f5:c5:03:a6:d6:
50:95:b1:3e:5a:37:94:46:09:41:45:06:cf:9f:78:35:9c:c7:
74:8d:0a:43:96:ad:a2:6c:5e:b4:b1:dc:15:66:ad:62:bb:1b:
35:d7:7b:dc:cf:fd:17:e2:e6:2c:ec:36:59:e5:34:2a:a1:26:
9b:dc:ea:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 09:26:03 2026 by rpki-client