Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json)
Hash identifier: zsIkorw6FQVP1wG7NuH8eFHcolXvs5cfE1M8ClqrfJE=
Subject key identifier: FF:6E:10:FB:F3:B2:25:8D:7D:A1:14:FA:9D:0C:2C:F0:DA:24:35:8E
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 019DD0881A7BFAB85E71FA8F68CEAF9F58A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
Manifest number: 193E
Signing time: Mon 27 Apr 2026 20:01:13 +0000
Manifest this update: Mon 27 Apr 2026 20:01:13 +0000
Manifest next update: Tue 28 Apr 2026 20:01:13 +0000
Files and hashes: 1: 3mj4BF15-QsrQeXNqlhp9O0RF8Q.roa (hash: vXL9dy1/SgEnnpISMc/F/t6U8c7+bWH7fiwFFAUniPU=)
2: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: B+dKlG+wkR6nhPWGFapTvsbZirFaBCbVmdcqEAf1etU=)
3: dDIM-ljTCDKhWIxv1515WUGeQvk.roa (hash: /ksxNXhqwhx98qeq21Eca7WB/KLYXy3qx2dkD35mKTc=)
4: i6gAOaaWdEjygKv3yzfVHTmBR5s.roa (hash: jK1Yhe3ibqhPTKxiBNM7KW7h9KKeRctQT02L1qcBze8=)
5: kFLjuN4_tRjI-IILkJq8lcLpDdc.roa (hash: lQTRIEBvMUBY3vX80dFs9U0bSNDBYvB6Uew+srrzZ9A=)
6: qrG9XLPl84E40eGjaluMQlHH30g.roa (hash: JZCVwj3aTdfzcFTKEfr0xBq4Umu2aHhpSpk1hh5GgSQ=)
7: sNbxwr_VlMceIOoORfjNh48fthg.roa (hash: og1IfOlO+B5tux3x/JdwIjbchpmcSQUOsvTa4SrXgws=)
8: sPyU_Xm3Mi4DrCYd-xCPHCu7Yj8.roa (hash: R+jYi2MX3/3kpxkJYiEg+3YO+SpdTf42NvPMvZti0mw=)
9: yjcAiOmQGkj7hTD0MZWHr2J1Je4.roa (hash: S7VwEQTFRcxL/FXQlqzu5pVh1KvvK3fwPwSXMI469EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:88:1a:7b:fa:b8:5e:71:fa:8f:68:ce:af:9f:58:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Apr 27 20:01:13 2026 GMT
Not After : Apr 28 20:01:13 2026 GMT
Subject: CN=ff6e10fbf3b2258d7da114fa9d0c2cf0da24358e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:f3:34:bc:e7:ca:30:3a:af:72:93:94:c2:02:
28:f1:0c:47:b3:37:b9:b1:a6:e8:4c:29:d6:eb:db:
f5:21:68:7f:c2:f8:96:1b:4d:90:75:14:31:cc:09:
a0:ae:72:d0:46:7c:48:93:cb:8a:b0:00:06:d0:3a:
c7:92:d7:2c:80:d1:e4:f7:f5:5d:0d:be:b6:c4:50:
85:c5:d1:53:68:1b:96:c2:6c:4f:3e:0c:52:5d:ae:
d4:10:c5:96:95:f1:73:d5:34:1c:a4:d1:80:b4:43:
6d:bc:c4:57:87:f8:b1:1c:fd:15:5f:c4:4f:c0:bf:
d3:49:f3:9f:9f:1f:2d:96:88:25:67:7e:42:d4:d3:
4c:3f:2a:c9:80:1a:88:d2:c5:87:1b:7c:ff:45:54:
d4:28:58:9a:14:15:1c:42:17:81:af:1c:98:94:d2:
7c:d6:91:4f:48:ab:2f:0e:91:81:06:88:a5:ea:e9:
7f:db:fa:00:3f:d6:0b:29:4e:e1:2a:eb:9a:eb:2d:
c5:10:75:d5:6e:6f:3a:22:26:5b:78:0e:20:03:31:
23:06:35:01:87:c9:05:56:c1:27:de:98:0d:04:8b:
91:77:51:69:e8:9f:df:85:89:de:8a:01:61:1a:29:
f9:6e:d7:8f:56:87:9c:af:61:4b:d8:ff:07:09:85:
47:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:6E:10:FB:F3:B2:25:8D:7D:A1:14:FA:9D:0C:2C:F0:DA:24:35:8E
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:fe:5b:49:7b:1e:23:90:ff:39:fc:00:af:63:87:e3:71:31:
6c:c2:ff:a8:bf:08:41:4a:8c:6f:3f:0f:a7:31:c5:b4:d7:d1:
40:25:18:ab:f1:51:68:e9:ec:51:f5:ab:f1:b8:c7:eb:ef:ad:
fe:f0:6a:15:76:72:8c:cf:3e:45:65:58:54:ab:10:21:b5:86:
9d:16:84:b7:ae:93:96:ab:c0:b0:d9:17:e1:86:90:74:fe:5c:
94:e8:74:35:5a:22:59:6b:63:63:5d:a3:92:0a:bb:96:98:01:
86:b1:56:07:16:56:93:89:5d:28:ca:5c:95:e0:7a:b9:77:2f:
67:c3:b6:7f:7f:d2:ee:2c:a9:88:7b:87:4e:68:28:7c:e7:2b:
ea:9f:68:53:fd:2a:63:01:56:34:40:71:5e:b5:4a:00:a6:1b:
c9:7d:f3:8e:6e:b8:84:ed:c8:b8:f8:80:a5:b2:de:bc:d1:64:
e0:6e:3f:17:2b:0b:f7:59:8f:6f:80:05:df:0a:be:cb:33:73:
44:28:cc:d9:2b:7a:67:1f:43:89:8f:94:2f:40:1a:5c:50:d2:
d7:6d:4b:b3:82:21:d7:9b:7f:6e:b0:af:4a:97:2d:9e:52:62:
d4:67:9b:39:9a:e9:2f:8b:e0:a7:a8:2a:a1:f8:c2:7e:a3:99:
45:fb:1f:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 00:52:15 2026 by rpki-client