Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
File: tPSWmNCOjCg8DfKoLxaZfmJZurY.mft (raw, json)
Hash identifier: xFkK8rpqaaoOr21Xh25KDccUIiKfg9M3ItoIBr2Bgfc=
Subject key identifier: C3:0B:B7:4B:C8:E4:AD:EE:86:C9:1C:93:7C:7B:85:C5:28:D8:B2:71
Authority key identifier: B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
Certificate issuer: /CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Certificate serial: 019EB8EABF9C2C8BA656FEC3D4BBEE1CEFC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
Manifest number: 0B23
Signing time: Thu 11 Jun 2026 23:00:52 +0000
Manifest this update: Thu 11 Jun 2026 23:00:52 +0000
Manifest next update: Fri 12 Jun 2026 23:00:52 +0000
Files and hashes: 1: HhEHXcVrA4jYly_4JLZyYZncnvg.roa (hash: 6iTpuhytQNXUI4g8368tGo5DhJ/PIFrnzj+J0UysgLI=)
2: tPSWmNCOjCg8DfKoLxaZfmJZurY.crl (hash: 8cEI0/fmzpfRfRG58rAPRHpO5iigCAs6LMNf14Jf0GQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:bf:9c:2c:8b:a6:56:fe:c3:d4:bb:ee:1c:ef:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f49698d08e8c283c0df2a82f16997e6259bab6
Validity
Not Before: Jun 11 23:00:52 2026 GMT
Not After : Jun 12 23:00:52 2026 GMT
Subject: CN=c30bb74bc8e4adee86c91c937c7b85c528d8b271
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d2:03:e2:f9:ee:9d:90:8a:28:27:62:42:21:
e0:07:b7:7a:fb:6c:9f:fc:db:34:e4:dd:09:2a:7a:
98:8c:a9:5c:bb:2b:84:da:5a:d1:1a:dc:c2:39:5b:
69:49:67:50:ed:da:7d:be:df:4d:f4:dc:c2:f1:87:
15:b4:4c:23:c5:bd:fb:15:38:02:19:f7:48:b5:63:
01:f6:77:57:a4:af:b0:30:ed:12:1f:93:d5:59:f7:
dc:ca:a4:bf:bd:02:2e:55:c4:7f:84:f9:df:37:6b:
f1:32:20:8e:11:a5:65:f0:d7:05:81:63:0c:22:81:
ba:5e:d4:a2:fc:38:5b:4b:02:38:a0:e6:0a:9e:c3:
6d:fc:6b:fd:e0:d0:e5:42:7f:0f:a6:0b:06:0c:58:
92:58:da:65:2b:6e:8f:ec:b7:6c:29:b4:68:b6:d6:
8c:44:60:3b:4a:51:37:a3:db:c4:65:e9:a0:b9:a1:
32:e1:72:78:8e:24:9c:bf:ec:50:b6:84:e9:a1:9d:
5d:e6:45:cc:02:7e:f9:4c:21:dc:d7:60:7e:0b:65:
ee:9d:e1:8c:8a:cf:61:b3:dc:d1:74:0a:c6:75:dc:
2c:6e:77:7b:71:02:a0:73:e7:fc:16:09:78:30:e6:
25:e6:16:df:fb:67:28:ec:32:86:72:cb:a7:d7:d0:
9d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0B:B7:4B:C8:E4:AD:EE:86:C9:1C:93:7C:7B:85:C5:28:D8:B2:71
X509v3 Authority Key Identifier:
keyid:B4:F4:96:98:D0:8E:8C:28:3C:0D:F2:A8:2F:16:99:7E:62:59:BA:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPSWmNCOjCg8DfKoLxaZfmJZurY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f63d76-2fb6-43a2-bfec-9f7aa094303b/1/tPSWmNCOjCg8DfKoLxaZfmJZurY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:59:f7:d4:21:72:21:1a:a7:60:f2:e0:bb:c1:e8:63:9c:f2:
6e:76:ff:ec:f1:aa:40:35:03:72:be:9b:e9:a0:17:1a:d2:fb:
70:93:fa:eb:4b:55:2d:f8:fa:97:18:33:47:fd:ee:59:f3:1c:
9e:4b:c7:12:10:0b:a8:e9:05:64:6f:94:a8:d8:c2:7b:5f:ae:
fc:a2:c0:67:2b:4d:fe:51:0f:45:89:5e:45:43:6c:ba:02:3b:
10:f7:ef:26:36:a6:21:c0:5e:92:e3:82:3b:9a:17:4a:bb:ce:
68:92:78:20:51:59:f8:80:2b:46:1c:5f:52:c8:35:8e:be:9d:
21:2c:42:68:63:79:4d:05:b5:a7:64:bb:a5:be:7f:dc:84:a1:
99:78:1c:a2:96:1e:a1:81:67:1c:fe:5a:8f:97:96:0e:b4:fc:
66:c4:59:3f:0e:5d:c9:76:08:ce:56:3f:7b:4f:20:ef:60:54:
e9:11:a2:59:aa:1c:b7:c8:4e:43:c3:a9:c1:62:46:c3:39:d6:
01:a6:08:5e:ed:31:1d:0f:bc:4b:3a:92:c3:8f:ef:01:8a:ef:
a4:c1:da:50:b2:91:22:c2:49:e1:d2:12:63:cb:e3:17:60:6c:
f0:fd:f2:f3:7a:de:50:9b:fb:e7:87:02:d1:7f:e6:26:55:d5:
48:95:7f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:03:55 2026 by rpki-client