Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json)
Hash identifier: ZGhbSsUZrHAvTEo8bJPS86vuYooUebuWdV1AGEHzuV0=
Subject key identifier: 03:B5:A4:40:9D:42:E4:04:31:92:0B:83:67:0E:A8:27:64:DD:C0:2B
Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Certificate serial: 019EE69F26CFCF6454526849DFA32683EC31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
Manifest number: 19CE
Signing time: Sat 20 Jun 2026 20:00:50 +0000
Manifest this update: Sat 20 Jun 2026 20:00:50 +0000
Manifest next update: Sun 21 Jun 2026 20:00:50 +0000
Files and hashes: 1: 3mj4BF15-QsrQeXNqlhp9O0RF8Q.roa (hash: vXL9dy1/SgEnnpISMc/F/t6U8c7+bWH7fiwFFAUniPU=)
2: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: 1glaz4NOOvXqZGj0KqkIuaJzw42brIV4CAzsEZX07vg=)
3: dDIM-ljTCDKhWIxv1515WUGeQvk.roa (hash: /ksxNXhqwhx98qeq21Eca7WB/KLYXy3qx2dkD35mKTc=)
4: i6gAOaaWdEjygKv3yzfVHTmBR5s.roa (hash: jK1Yhe3ibqhPTKxiBNM7KW7h9KKeRctQT02L1qcBze8=)
5: kFLjuN4_tRjI-IILkJq8lcLpDdc.roa (hash: lQTRIEBvMUBY3vX80dFs9U0bSNDBYvB6Uew+srrzZ9A=)
6: qrG9XLPl84E40eGjaluMQlHH30g.roa (hash: JZCVwj3aTdfzcFTKEfr0xBq4Umu2aHhpSpk1hh5GgSQ=)
7: sNbxwr_VlMceIOoORfjNh48fthg.roa (hash: og1IfOlO+B5tux3x/JdwIjbchpmcSQUOsvTa4SrXgws=)
8: sPyU_Xm3Mi4DrCYd-xCPHCu7Yj8.roa (hash: R+jYi2MX3/3kpxkJYiEg+3YO+SpdTf42NvPMvZti0mw=)
9: yjcAiOmQGkj7hTD0MZWHr2J1Je4.roa (hash: S7VwEQTFRcxL/FXQlqzu5pVh1KvvK3fwPwSXMI469EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e6:9f:26:cf:cf:64:54:52:68:49:df:a3:26:83:ec:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9
Validity
Not Before: Jun 20 20:00:50 2026 GMT
Not After : Jun 21 20:00:50 2026 GMT
Subject: CN=03b5a4409d42e40431920b83670ea82764ddc02b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8e:9d:6d:c2:79:5d:7e:be:8d:27:27:69:a0:
85:42:dc:97:f4:12:fa:88:7f:aa:82:75:b4:90:02:
1c:00:79:f5:1e:df:ec:06:5c:79:07:3a:bc:15:3f:
71:53:cc:d8:11:0d:8b:24:8f:33:7e:1e:3e:b1:f0:
6d:2f:92:57:70:12:2f:75:60:78:84:1c:68:89:68:
98:f6:89:c8:90:18:fe:55:b5:b6:3f:2a:a2:12:f5:
bd:c2:7f:88:0f:c2:7e:b9:0d:59:39:7f:b0:2b:c2:
50:86:13:16:34:74:c7:03:93:ce:1f:c6:c5:5c:5d:
4b:ea:ea:ee:11:ce:bc:15:6d:91:ff:68:0a:65:84:
c9:e0:36:29:94:5b:fc:fa:2a:42:99:a9:19:82:74:
0f:49:1a:bd:e2:b6:28:6c:5c:86:33:f3:fb:b1:fc:
fd:2e:a3:69:43:ae:de:b7:e5:7a:de:05:e4:e2:b1:
96:36:d7:d5:9a:00:23:48:03:c9:7b:d5:53:b8:af:
8f:43:ae:55:72:fe:27:4a:0c:55:5d:c8:93:96:54:
68:24:50:3f:80:c0:ce:b9:e6:c1:7b:f6:5e:2e:c9:
11:33:26:70:e6:b1:cd:48:13:af:14:4f:5f:2e:ce:
05:f2:e5:73:f6:df:05:ba:00:23:a3:fb:1d:61:d7:
03:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:B5:A4:40:9D:42:E4:04:31:92:0B:83:67:0E:A8:27:64:DD:C0:2B
X509v3 Authority Key Identifier:
keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:7f:54:b5:89:21:eb:6b:ea:f2:32:06:45:e6:01:8e:ae:b2:
05:7c:16:c3:27:c2:64:5a:88:bc:51:79:dc:6d:48:b2:fe:de:
ad:b7:bc:47:1f:67:b7:60:b5:ee:71:2e:92:d1:33:07:d5:9e:
34:11:c8:6c:ed:09:7f:c9:f3:15:85:d7:e7:6c:ae:53:89:1d:
ad:5f:94:71:67:cf:f2:6c:39:06:22:55:c0:d3:f3:5f:3b:43:
d6:eb:96:98:91:fc:a6:60:1a:8d:a7:ff:89:68:b1:4e:99:27:
76:a4:9e:a3:66:3a:f4:12:77:a0:8a:65:84:bd:39:af:53:03:
a1:bd:a9:49:89:bc:4a:9d:cd:88:fe:69:b7:85:20:b4:d0:95:
94:fc:11:72:4f:78:c1:8a:2a:59:db:e7:fd:94:2d:af:a8:a7:
7c:77:d3:af:a9:10:75:5e:5b:bc:64:bf:d0:ad:69:a2:c9:c6:
33:82:97:9b:e4:ac:92:06:d6:0b:16:02:00:d5:67:db:81:4e:
f4:07:9f:df:21:59:dc:df:d8:e3:f7:31:70:86:74:19:20:ac:
21:f8:a5:d6:a7:8b:b3:d7:6e:bd:55:d0:aa:18:33:b7:b3:6d:
50:e8:f7:26:60:69:35:b2:3d:a7:c2:8b:40:8f:a6:54:e1:95:
02:c3:66:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 03:20:51 2026 by rpki-client