Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
File: TlyvXlSV9UsDnx0PJHERJGfJeRw.mft (raw, json)
Hash identifier: ohNcEg2uVsJDDgRNeucw++KMrstSBDjU7kb6L8kAt1Q=
Subject key identifier: 6F:B0:B4:8E:93:F3:32:71:46:61:77:A6:A7:6A:57:AC:4D:3D:29:6D
Authority key identifier: 4E:5C:AF:5E:54:95:F5:4B:03:9F:1D:0F:24:71:11:24:67:C9:79:1C
Certificate issuer: /CN=4e5caf5e5495f54b039f1d0f2471112467c9791c
Certificate serial: 019EB87D275BB6D2D9848B8D6553E1ACD89B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TlyvXlSV9UsDnx0PJHERJGfJeRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
Manifest number: 1959
Signing time: Thu 11 Jun 2026 21:01:10 +0000
Manifest this update: Thu 11 Jun 2026 21:01:10 +0000
Manifest next update: Fri 12 Jun 2026 21:01:10 +0000
Files and hashes: 1: TlyvXlSV9UsDnx0PJHERJGfJeRw.crl (hash: 0rScaV6tEMmOlPc/3JKZenu35PQ3Leq5ZszNJzMqhKI=)
2: Xo1iMQ3Ij7PUWeAGoOzLhIVZke8.roa (hash: hvxy9UVnq6BjnNCsQhrvZPVQxyWtXfd0lX9H8Cmba5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/TlyvXlSV9UsDnx0PJHERJGfJeRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7d:27:5b:b6:d2:d9:84:8b:8d:65:53:e1:ac:d8:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e5caf5e5495f54b039f1d0f2471112467c9791c
Validity
Not Before: Jun 11 21:01:10 2026 GMT
Not After : Jun 12 21:01:10 2026 GMT
Subject: CN=6fb0b48e93f33271466177a6a76a57ac4d3d296d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:42:c9:2b:7b:6e:22:7e:b0:d9:f3:0a:49:7c:
8c:3d:23:cb:71:ca:ff:fe:a7:74:49:91:c9:a0:8e:
33:41:8d:e6:c0:68:fd:bc:5f:fb:44:5c:81:45:59:
f8:ba:81:46:30:73:28:d6:ab:20:e2:cd:e7:49:a4:
d1:2b:1c:a1:f5:76:20:e9:c0:5a:c4:ad:71:b1:b2:
69:95:55:23:18:1a:ea:dc:49:78:b8:d0:cd:bb:82:
94:50:a4:0c:09:bb:5d:d9:68:90:d2:68:90:5f:5a:
3f:53:c1:18:bd:99:1e:38:00:cf:08:08:91:64:0b:
91:cf:1f:42:28:4e:a6:e7:9c:1e:14:b5:95:37:70:
4d:66:4c:e0:4b:90:49:89:29:c4:77:47:d8:f9:ac:
33:9e:a1:c4:c3:20:5f:c9:f6:09:4e:32:4a:44:fc:
22:3c:d3:77:43:95:06:cb:24:68:f9:98:e3:14:75:
7f:5f:d1:af:84:57:f7:44:6e:3c:cd:68:99:2d:71:
f6:b1:bd:ad:78:b3:2d:a8:ca:22:9d:35:5e:9c:1c:
da:a5:59:f6:d4:fb:a9:e0:73:42:a9:ba:c1:27:0f:
b7:ce:27:ec:a6:4e:7a:58:d0:93:65:c1:d0:46:35:
1d:37:2f:17:1c:f0:e8:ed:57:33:bd:f4:c4:38:0b:
cf:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B0:B4:8E:93:F3:32:71:46:61:77:A6:A7:6A:57:AC:4D:3D:29:6D
X509v3 Authority Key Identifier:
keyid:4E:5C:AF:5E:54:95:F5:4B:03:9F:1D:0F:24:71:11:24:67:C9:79:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TlyvXlSV9UsDnx0PJHERJGfJeRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/f89685-1174-45d5-a5dc-09db57469bb8/1/TlyvXlSV9UsDnx0PJHERJGfJeRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:ba:40:2e:11:08:74:bc:56:c0:3f:93:e7:9e:77:8d:da:2d:
30:ae:8e:03:4b:19:76:7d:72:5e:f5:d9:de:42:54:f9:a3:21:
43:28:0b:7c:e4:1e:85:26:00:76:19:30:4f:41:b4:85:e9:1d:
48:7f:16:7a:66:7b:81:7b:4c:00:9b:d1:63:28:5a:19:79:9a:
aa:49:bd:97:f3:87:a9:1a:0a:09:eb:08:68:88:07:4c:e4:f4:
5e:22:4b:2f:9a:4c:54:90:22:c2:3b:5c:ca:53:91:ea:bc:27:
31:f1:63:7e:a3:95:74:47:65:91:99:64:2f:7d:21:e8:bc:04:
a4:97:ef:b2:08:1f:e3:ae:0d:a8:36:0a:a2:12:a9:b2:bf:c0:
24:9d:78:76:82:71:af:e6:5b:fa:1b:33:ec:31:cd:d0:b5:8c:
13:22:30:30:7c:32:66:c4:45:2f:88:7a:7a:5a:64:84:4b:a9:
71:82:87:5b:73:6b:3a:61:e2:69:53:6a:26:af:d3:eb:29:93:
a9:1a:ae:64:05:83:24:8b:33:a2:58:ff:c7:c4:96:d7:2a:a0:
15:a7:80:91:d7:de:9c:da:3f:cd:f4:ad:6d:3a:27:98:d7:d9:
ae:be:a8:9a:fc:81:af:5d:63:cc:fb:db:d8:66:af:ab:73:19:
f3:7a:c1:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 01:10:46 2026 by rpki-client