Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
File: tUFVgYH3hjEZv0oVVMddqx9sUpI.mft (raw, json)
Hash identifier: HFcpsd61SJop/vFCrcNeE7hnktdQIQSCbAaxVWG308Q=
Subject key identifier: C4:67:8D:53:21:88:C4:34:FB:02:9D:2A:2D:53:17:DD:89:6B:F8:E0
Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292
Certificate serial: 019DDBE7DC2257E786DF60586125945B8843
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
Manifest number: 070A
Signing time: Thu 30 Apr 2026 01:01:38 +0000
Manifest this update: Thu 30 Apr 2026 01:01:38 +0000
Manifest next update: Fri 01 May 2026 01:01:38 +0000
Files and hashes: 1: D1q3YLzj8lZ_AqtFs6QHKSAISFg.roa (hash: 4mLTnHJ65SEHMBkEh6tPiLrvo21+0C3dC/USJa8YdTw=)
2: FAR1JGDRfBlwTrXiCrjWu-9KPYY.roa (hash: ubnjQ9mTdiJtNsVEHvSHl8U6qYQGX98XEG0kwEFpsdo=)
3: OteesfxlXNW_6oy-uZPA0RjwQqs.roa (hash: BVMKBS9it+saptlczy0sxrdp/hGNaoRQGuAEe0tEzJQ=)
4: jJqmq7ctfCRljbEe-rA7H6MPeAI.roa (hash: O+1YuOF5X9Aph1d+IEQe3EcREqu8Qs7VAkwaJPtR+U0=)
5: tUFVgYH3hjEZv0oVVMddqx9sUpI.crl (hash: PIV0GJ5nz08onU1lJbTIuhNnsVP7LUJFSHQZ/nfQm1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 01 May 2026 01:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:db:e7:dc:22:57:e7:86:df:60:58:61:25:94:5b:88:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292
Validity
Not Before: Apr 30 01:01:38 2026 GMT
Not After : May 1 01:01:38 2026 GMT
Subject: CN=c4678d532188c434fb029d2a2d5317dd896bf8e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4c:03:40:75:58:c5:b8:9e:69:37:7b:d2:1f:
89:7d:7c:61:c8:5b:67:0d:d2:aa:be:39:06:77:3b:
90:1f:36:14:8d:6a:29:3c:06:a2:47:de:39:f3:33:
26:9d:37:cf:d9:07:ea:79:fa:cf:66:08:4b:cb:44:
7b:51:a0:17:14:00:33:c2:87:c7:d1:16:07:5f:30:
2e:63:0d:7e:d4:15:86:31:35:65:53:8e:6e:d0:19:
f9:5e:9f:90:11:08:ec:6d:e0:05:20:1f:42:e4:f8:
df:53:e6:6a:c5:98:30:de:00:62:68:02:db:24:dd:
71:c8:90:1b:dc:ac:06:bf:cf:db:f1:04:f0:66:7c:
c3:57:a5:b5:19:22:e8:a6:a1:49:84:fb:26:bb:21:
85:c5:77:c1:9d:e6:36:a5:39:ee:c2:f6:75:61:66:
fc:2b:cc:a5:35:d9:8e:39:4b:23:1e:52:f3:41:e1:
01:9c:21:04:66:b7:d4:be:37:bb:66:34:90:e3:b6:
8c:fd:0e:82:96:38:84:31:7d:9e:fa:bd:d9:b3:1d:
0e:11:15:b9:65:a0:07:7d:20:1d:5d:94:34:ac:5e:
aa:d9:e5:31:03:67:ce:50:a7:86:48:4c:f9:ab:e6:
da:a8:7c:77:a6:8f:75:65:f3:cd:f6:f4:61:eb:bb:
57:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:67:8D:53:21:88:C4:34:FB:02:9D:2A:2D:53:17:DD:89:6B:F8:E0
X509v3 Authority Key Identifier:
keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:fd:e5:c2:f1:19:a5:31:6a:b8:34:01:50:dc:38:cf:5d:f1:
80:21:b4:c7:29:45:42:03:91:37:1b:04:78:5c:50:9f:6b:cf:
1a:96:66:1e:1b:74:03:60:f8:be:e8:5d:75:8a:3d:eb:90:a0:
b4:b8:48:18:99:bf:e7:b9:ca:20:5a:93:a3:79:18:98:25:53:
68:d8:cb:e0:42:9e:10:29:8c:50:a1:56:4a:f3:44:34:55:1d:
89:0f:0c:d6:75:fa:16:7d:d7:f0:14:47:f7:62:60:e7:31:a7:
50:50:28:49:97:5e:ce:fd:83:23:ec:72:01:e4:9a:1d:06:08:
33:71:ae:d5:cc:37:dd:93:c0:6e:bb:03:3a:48:50:ff:75:2d:
fb:28:13:73:e7:dc:c2:e6:29:b5:24:e3:64:f3:53:18:4a:e9:
4f:4f:86:45:c3:54:fb:f9:d0:a6:23:b1:bf:8e:3b:c7:cb:0e:
37:0c:b0:1a:a2:ea:ee:98:16:fd:96:ec:3a:ff:6d:78:34:d8:
e8:9f:f6:3a:51:02:e6:d5:4e:a6:b0:fb:5a:28:e9:36:d1:96:
39:bd:ad:2b:62:84:80:99:92:4d:02:3a:ed:96:f4:38:2c:6c:
fe:37:b6:f8:c9:be:e8:c4:02:1c:18:5c:ea:3a:d2:9a:2a:c9:
e2:fd:28:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 30 10:08:20 2026 by rpki-client