Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
File: tFOob9MIG4A-3BDSO77akdeTICU.mft (raw, json)
Hash identifier: /iSRiydwK6pUNDrB91+St+XWsKJVgdVnGQALVrjUAxA=
Subject key identifier: 01:22:CB:04:43:6B:FA:10:26:CC:49:8D:04:DC:A5:6B:CC:55:BB:A2
Authority key identifier: B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
Certificate issuer: /CN=b453a86fd3081b803edc10d23bbeda91d7932025
Certificate serial: 019E314DC3F81D01DC15557BB8DA187B39D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
Manifest number: 18A4
Signing time: Sat 16 May 2026 15:00:40 +0000
Manifest this update: Sat 16 May 2026 15:00:40 +0000
Manifest next update: Sun 17 May 2026 15:00:40 +0000
Files and hashes: 1: 1-yB-aN02FvvexRrc-rBff7cVXYQ.roa (hash: hfqxjUEwIBgbMLOiBaRuABJ5snVrD/mvftwY9OHnyNU=)
2: tFOob9MIG4A-3BDSO77akdeTICU.crl (hash: aWqXqcB1+/zLcEOwDrke5YhM5O5jCxz7hQg9n56YWqI=)
3: uz3G_zDw5uNl_xC9huZfw-K_ce4.roa (hash: lgXmUNKY9C0bvQMUFuOJnJImq7SU/P/bySj8SdoyC3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 15:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4d:c3:f8:1d:01:dc:15:55:7b:b8:da:18:7b:39:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a86fd3081b803edc10d23bbeda91d7932025
Validity
Not Before: May 16 15:00:40 2026 GMT
Not After : May 17 15:00:40 2026 GMT
Subject: CN=0122cb04436bfa1026cc498d04dca56bcc55bba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:21:32:5f:76:d4:ab:4b:40:5e:61:38:92:0d:
ff:f3:75:3d:97:da:3a:ce:52:5a:2d:f2:85:b9:94:
80:d7:f0:16:20:8c:86:e5:92:f2:b3:93:09:b3:3b:
86:e0:b3:98:d0:ed:c6:31:b6:25:b8:77:9f:6b:9a:
5c:4f:65:bd:4d:3b:9c:ac:8b:9c:b2:44:33:57:58:
2c:c4:4b:72:27:7e:0f:ef:2c:dc:78:6e:ce:4e:7a:
3e:a0:8a:a5:8d:ce:04:0b:18:88:6a:bb:4e:b9:81:
80:4a:6a:c2:4b:8d:3c:87:bf:ee:14:a2:97:dd:04:
57:b8:8b:23:d0:4e:9a:12:70:b2:dd:14:09:bf:37:
96:6d:5b:a3:5e:c0:e1:39:02:0e:12:13:18:54:71:
a5:68:36:74:87:65:47:6d:11:02:50:a9:ea:59:67:
ec:0b:6b:a9:e1:db:6b:3e:cb:c1:15:02:0f:3d:84:
89:49:24:e3:a4:2d:33:ab:62:fa:7b:a6:69:17:a2:
74:60:e3:6e:81:93:0e:99:a0:43:40:a7:11:40:02:
46:c1:0a:84:9f:3b:06:02:90:6e:9d:88:2d:25:e7:
9e:94:c3:e5:dd:5e:65:a7:6f:96:27:27:d6:1f:a9:
6a:8d:96:bc:6c:1f:a3:ab:9e:b2:e6:d4:64:fe:58:
30:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:22:CB:04:43:6B:FA:10:26:CC:49:8D:04:DC:A5:6B:CC:55:BB:A2
X509v3 Authority Key Identifier:
keyid:B4:53:A8:6F:D3:08:1B:80:3E:DC:10:D2:3B:BE:DA:91:D7:93:20:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOob9MIG4A-3BDSO77akdeTICU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/225af9-f3f5-49e4-ba10-f5ea012b84fc/1/tFOob9MIG4A-3BDSO77akdeTICU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:c8:b3:be:12:63:15:53:d4:63:b5:2e:06:e0:d3:76:bc:19:
b8:42:52:7b:4f:70:2d:60:08:20:cd:a0:4a:ed:1d:ff:52:39:
86:27:ac:7f:5a:a1:b3:dc:e4:ea:42:56:36:f0:3f:3a:29:69:
f8:95:07:0e:82:73:d0:dd:ad:79:19:aa:d8:40:66:90:28:ae:
27:26:f1:cc:65:83:83:38:f3:93:0c:27:8d:32:0c:5d:92:86:
66:e7:e2:99:2f:c6:7b:6d:50:4f:37:30:d9:28:69:58:e9:4c:
b1:38:3b:47:63:3a:a7:64:01:9d:b8:f1:bb:8d:b8:67:17:98:
81:0a:b1:13:b6:47:ca:a4:71:f4:83:f3:47:5c:ef:ba:0f:05:
d8:40:6f:3b:67:d4:b1:93:6d:bb:c9:a0:bd:61:f8:f4:9d:09:
8b:6f:95:80:25:df:3e:d8:62:9d:4f:26:e8:58:f1:d3:cc:a4:
8f:26:0e:cc:57:ac:aa:fe:b0:d0:54:1e:ce:7d:a2:48:cd:db:
bd:8a:6a:7f:d7:1e:30:0e:22:5a:8c:4e:57:43:50:8d:04:68:
1d:68:58:9a:82:96:7c:d2:87:f0:62:ff:09:6a:df:47:9c:1d:
e9:b1:98:6f:31:27:13:88:77:0a:ab:fe:08:db:9d:36:ed:83:
09:9f:6a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 01:15:03 2026 by rpki-client