Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: Ure8gj0uHMt6szFEMINbW4qKINgjWJLEyeb8kAGWOpc=
Subject key identifier: A6:D4:C4:B2:80:8C:B7:45:36:54:B5:79:6C:5D:20:51:A0:3D:ED:9D
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 019EBAD8A4592D4EB0C4DBA578DD75808039
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 1955
Signing time: Fri 12 Jun 2026 08:00:20 +0000
Manifest this update: Fri 12 Jun 2026 08:00:20 +0000
Manifest next update: Sat 13 Jun 2026 08:00:20 +0000
Files and hashes: 1: awToJLBsyk0T4IcWFD08IQBrMn8.roa (hash: D6jszyrJ34yNygrEuO9QJPaleqlFTsrRTxhepr3reTI=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: c/0SU15p4VTnDZgrhabfbmlbGTbPbcbDDvFlmjGLbhs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:d8:a4:59:2d:4e:b0:c4:db:a5:78:dd:75:80:80:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Jun 12 08:00:20 2026 GMT
Not After : Jun 13 08:00:20 2026 GMT
Subject: CN=a6d4c4b2808cb7453654b5796c5d2051a03ded9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c8:6a:64:0e:ca:20:ea:fb:8e:01:63:53:b9:
ff:80:c0:05:49:8e:ff:b2:e4:45:cd:b8:da:b2:df:
96:ec:f2:f6:a0:78:1c:f9:39:dd:e1:df:d4:8b:94:
d4:4f:cc:02:97:3e:2b:bd:bb:0b:e8:69:c7:a4:70:
27:00:f8:68:cb:1a:5d:47:e3:be:31:ef:5a:cf:b6:
7c:03:f0:99:40:ae:36:51:da:29:85:cf:ec:7e:16:
9a:07:53:b3:54:8f:d0:8f:f9:c1:8e:90:26:82:45:
05:1d:61:7a:00:3d:6f:b1:17:ca:d9:64:4d:52:91:
34:ee:95:7f:80:b1:fd:ef:66:7f:b8:c4:f3:72:e4:
29:18:9b:aa:c2:1c:ea:83:45:23:af:19:54:03:37:
40:2c:68:42:aa:a2:da:72:90:e4:eb:28:0a:ab:86:
86:89:77:0f:9b:35:d2:e7:ee:1c:73:af:b8:8e:ac:
fa:b8:d3:d0:df:35:f9:bd:e8:95:50:6b:ed:33:b8:
5d:d7:6f:74:4d:8e:66:7c:a8:cf:ae:4e:eb:ae:29:
ce:e5:24:b5:11:52:c6:9b:e5:78:8a:70:45:e6:81:
dc:b9:1b:03:eb:02:e2:b6:2e:5f:c9:81:5c:56:ab:
cd:d0:36:7c:e7:56:d7:ac:e1:fc:50:f2:a4:af:82:
98:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D4:C4:B2:80:8C:B7:45:36:54:B5:79:6C:5D:20:51:A0:3D:ED:9D
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:a5:58:10:53:22:cf:db:81:ec:3e:e4:e8:86:69:22:a0:9b:
f7:f7:39:e5:4d:8c:cd:df:bc:c0:b5:57:83:9d:65:3f:b1:91:
18:ed:e5:55:cd:bd:6f:18:dd:d2:e3:62:87:5b:3e:e1:1a:b9:
02:a2:63:da:dd:81:3f:44:4a:ef:3c:b6:33:66:d2:b1:22:d3:
bc:f6:27:b3:a4:2f:af:1b:a0:07:79:cc:76:8a:60:76:65:cf:
4e:20:95:0e:de:c3:a8:6f:1d:1d:25:19:b7:a0:34:bc:0d:af:
1c:63:cc:a8:d9:c5:a6:da:14:3c:c7:7c:58:df:56:6b:45:49:
86:c0:e6:92:77:9c:36:74:c4:e1:46:01:80:1e:9a:2e:90:2c:
81:25:eb:77:e6:4f:b2:2f:c1:9e:d0:e2:d0:df:21:aa:d1:ba:
e4:ae:ab:8b:65:c1:55:f9:3d:77:ab:ef:a2:67:7b:90:97:aa:
39:ea:ac:5f:56:1f:4e:99:dd:e5:12:c6:7f:34:6a:92:ad:54:
e5:d9:76:83:89:93:a0:6c:9a:22:5e:e7:7f:8a:38:a0:d0:8c:
b6:8b:77:ce:c3:35:fb:5e:f7:a6:d2:fa:63:01:d1:e2:26:35:
0b:77:24:b5:df:85:f0:e1:ad:b9:75:a9:a1:e4:2f:4b:7b:01:
8d:c8:98:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 17:09:53 2026 by rpki-client