Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
File: TNkIkaeTL3NWqAMznaDM32OtLTU.mft (raw, json)
Hash identifier: jjHndZnajLjQLzwbERV4dG3nrdS2gGTyynlyvjy433U=
Subject key identifier: 5E:1E:41:1A:AE:E0:5D:C2:38:4B:CE:97:C2:F3:C2:28:26:FD:90:C0
Authority key identifier: 4C:D9:08:91:A7:93:2F:73:56:A8:03:33:9D:A0:CC:DF:63:AD:2D:35
Certificate issuer: /CN=4cd90891a7932f7356a803339da0ccdf63ad2d35
Certificate serial: 019EB8B4912AD45778513198064638001017
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
Manifest number: 0441
Signing time: Thu 11 Jun 2026 22:01:41 +0000
Manifest this update: Thu 11 Jun 2026 22:01:41 +0000
Manifest next update: Fri 12 Jun 2026 22:01:41 +0000
Files and hashes: 1: SyOMrq9ZPqa-CxddJFs4EYM4Fbg.roa (hash: wy5+/o73Vk3SAFiCb5cli4N7qOzZBJq1Ya6ET4kdAcw=)
2: TNkIkaeTL3NWqAMznaDM32OtLTU.crl (hash: 8T6deG0JEO+qdsCGb1o4ml0KyUHtvoIaJqQw/mAe2QQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:b4:91:2a:d4:57:78:51:31:98:06:46:38:00:10:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd90891a7932f7356a803339da0ccdf63ad2d35
Validity
Not Before: Jun 11 22:01:41 2026 GMT
Not After : Jun 12 22:01:41 2026 GMT
Subject: CN=5e1e411aaee05dc2384bce97c2f3c22826fd90c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:75:94:a4:b1:b9:a1:87:84:8f:dc:66:82:59:
8f:29:4f:a6:81:a4:dc:7a:95:ab:4f:34:0c:f3:13:
78:02:ab:5a:24:a5:98:b2:03:1b:62:13:53:49:15:
e1:4f:4a:1f:0f:bc:fc:89:3b:08:42:21:df:83:ef:
c5:9a:11:49:51:32:b7:69:03:2e:54:8e:f8:36:16:
f5:cb:9f:11:50:de:ee:bb:e7:ca:a8:87:7e:4d:4d:
d6:7d:93:99:06:7c:8a:08:f2:87:20:b0:2c:da:5b:
ce:5b:7a:bd:1d:55:8c:62:43:88:3e:bf:2f:7f:b6:
0d:a1:e5:4b:cf:9c:0a:1b:29:84:dd:33:2c:fd:4e:
f9:64:b8:5e:88:87:af:c1:09:14:8a:8f:fb:bb:e1:
29:e0:53:d7:8c:33:1d:6f:59:76:78:57:87:69:75:
63:4d:9e:4b:c8:b3:b6:66:17:64:93:d7:6d:bc:de:
b0:8d:4b:8f:51:0e:77:fc:89:a1:64:bc:1b:0c:08:
8f:a7:a2:83:59:cf:02:6a:fb:39:90:9c:dc:c1:e9:
df:17:56:db:07:e5:34:76:4b:e8:0e:88:5a:f3:ea:
ac:1c:46:7a:0f:a0:48:71:2d:19:ae:8d:c2:27:04:
16:97:ad:db:0f:16:00:19:a1:2c:03:fd:4f:76:a7:
19:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1E:41:1A:AE:E0:5D:C2:38:4B:CE:97:C2:F3:C2:28:26:FD:90:C0
X509v3 Authority Key Identifier:
keyid:4C:D9:08:91:A7:93:2F:73:56:A8:03:33:9D:A0:CC:DF:63:AD:2D:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNkIkaeTL3NWqAMznaDM32OtLTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/6a9378-2fa7-482d-8c7c-69ca4cb65f97/1/TNkIkaeTL3NWqAMznaDM32OtLTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:7e:5e:ff:86:d9:2d:34:d8:27:8b:c8:9c:0c:77:f5:19:b1:
d0:e8:f1:93:72:06:94:92:68:68:9b:64:84:ad:30:b9:9d:46:
38:f7:b4:2f:6b:3b:46:ad:70:b5:84:f4:b9:ed:0f:63:e0:59:
52:99:fd:2e:da:e5:05:b8:4a:99:9d:b4:75:51:f0:ac:90:73:
02:31:49:07:74:fd:67:1a:e6:dd:5c:36:ca:e6:10:c9:29:7f:
16:ee:59:f3:24:c9:83:d9:21:b1:15:65:10:4d:9f:6e:d5:cf:
5b:ad:e9:a4:3e:e5:f8:5e:1e:20:53:96:03:06:29:d6:6d:0e:
a7:2f:95:37:39:da:18:57:fe:00:6e:86:3a:50:63:5a:cd:d5:
26:28:2c:fb:30:b6:91:85:b1:2a:ed:9f:0f:67:65:b7:75:38:
2f:71:d8:d6:ea:f4:c1:e8:ce:9b:45:d6:73:9b:11:7e:d1:7e:
c3:d0:0a:51:32:9f:c0:c5:84:6d:51:e5:c2:c5:6a:c9:62:25:
9d:dd:f9:ae:41:17:82:18:bc:26:65:29:4a:80:11:37:75:b6:
f2:db:5f:49:d3:bd:a1:89:7e:28:86:77:44:18:a2:b0:5e:ec:
f5:9f:e7:50:94:95:f8:e3:9f:00:8e:bb:bb:7d:a0:b6:6a:5b:
66:4a:a9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 07:27:49 2026 by rpki-client