Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
File: _tdzOdk4vvCHWZKTwgGzufgiNiM.mft (raw, json)
Hash identifier: +7z0/TkMnLjbih6x11Y+gD8nC/kb7mRL34vFFI6PcTg=
Subject key identifier: 1F:DC:B9:D4:88:99:3E:1A:05:5B:19:6D:DC:75:40:DD:5E:EF:FF:D1
Authority key identifier: FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
Certificate issuer: /CN=fed77339d938bef087599293c201b3b9f8223623
Certificate serial: 019EB8EA8A840CB1B1B72385915504D38A61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
Manifest number: 18E8
Signing time: Thu 11 Jun 2026 23:00:38 +0000
Manifest this update: Thu 11 Jun 2026 23:00:38 +0000
Manifest next update: Fri 12 Jun 2026 23:00:38 +0000
Files and hashes: 1: _tdzOdk4vvCHWZKTwgGzufgiNiM.crl (hash: akvtic/ozL32h3Tx0Yxc6JIq7ClOA1OsXJ2jJhpFrK0=)
2: dVMqcvXursPYfDYSCDAE4DhRFlc.roa (hash: Yq3X9779TMJZn56pp7FdF+bqg71vRgvQymxrtb6IBFY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:8a:84:0c:b1:b1:b7:23:85:91:55:04:d3:8a:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fed77339d938bef087599293c201b3b9f8223623
Validity
Not Before: Jun 11 23:00:38 2026 GMT
Not After : Jun 12 23:00:38 2026 GMT
Subject: CN=1fdcb9d488993e1a055b196ddc7540dd5eefffd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:56:1c:e4:db:40:b4:f2:e4:be:60:e7:bd:54:
9d:49:71:86:a5:93:31:f9:34:8d:a9:55:7c:f7:be:
1f:19:e3:2a:cd:fc:38:88:f4:dd:d6:3f:d3:74:41:
4c:31:db:c3:1e:dc:46:07:f1:70:a2:9e:cc:e4:d5:
a0:f9:5d:9d:27:8d:e2:63:99:7e:72:2f:8c:8c:68:
41:98:c0:6b:b4:6a:c1:bf:d8:e0:04:23:1e:d4:2d:
75:66:eb:09:b1:fe:2d:22:c8:40:e2:ef:1b:b2:b3:
fa:b2:1b:71:c6:3c:7b:ef:fe:84:9f:c0:50:5c:5f:
a5:db:18:5c:fb:0f:19:a2:37:90:35:a7:44:f7:cd:
6e:fe:6f:d7:fb:78:ca:14:21:d9:06:74:b4:4d:95:
75:13:9d:12:f3:79:1f:26:ee:8f:30:a0:01:36:41:
df:6c:a7:af:dd:56:c7:61:8c:ad:85:a8:56:c5:0f:
25:92:aa:29:20:b5:6b:c7:0c:fc:94:0e:e1:aa:a1:
04:8a:01:bc:1b:69:fa:8a:f9:fd:ce:61:8a:8b:ab:
90:ee:ee:40:fd:ce:63:00:b7:50:6d:ea:70:7e:02:
64:35:68:1b:fd:f1:02:a0:65:ce:27:1d:e1:38:d7:
83:21:ee:d4:c2:c6:1a:9e:99:52:ba:39:94:c5:51:
9a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:DC:B9:D4:88:99:3E:1A:05:5B:19:6D:DC:75:40:DD:5E:EF:FF:D1
X509v3 Authority Key Identifier:
keyid:FE:D7:73:39:D9:38:BE:F0:87:59:92:93:C2:01:B3:B9:F8:22:36:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_tdzOdk4vvCHWZKTwgGzufgiNiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/bfb817-7e2d-4458-bab1-d1750020caf5/1/_tdzOdk4vvCHWZKTwgGzufgiNiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:27:13:3f:95:be:ec:76:e2:9c:d6:54:49:04:54:67:da:93:
da:26:be:ab:f7:3d:c0:e6:d4:6c:07:69:4e:44:98:8f:18:ea:
60:e6:80:32:73:da:30:fc:5c:61:54:b7:a4:84:db:31:1d:63:
d5:61:d3:80:e6:68:6d:d6:7f:d7:8f:a6:70:6d:bb:27:01:12:
1a:1e:e9:37:38:ac:9f:2a:1a:84:ce:c9:73:61:cd:70:a6:4e:
e2:13:f7:83:e8:42:f8:83:59:a4:e6:4a:30:5e:72:9c:f6:93:
d0:e5:0e:2e:6e:81:ca:8e:8d:64:41:59:13:ba:4f:50:b2:72:
a1:df:4a:61:1c:14:ed:79:22:56:12:8e:49:ba:3e:41:3e:da:
4f:74:3c:b1:b7:5f:2d:26:9a:5c:b9:21:12:4b:84:7c:72:e7:
fe:e1:40:c3:ff:88:79:ba:05:a8:98:05:be:7c:dd:ea:9c:cd:
da:7a:f2:9c:07:6f:9b:35:c4:ea:e0:a9:67:4c:79:ae:f5:cd:
32:82:52:98:a7:2c:d0:a0:4d:5b:71:72:72:f7:0a:bc:93:ca:
8c:f0:56:35:ec:52:c0:21:b2:d7:42:5b:31:42:53:97:27:13:
2a:c7:58:aa:1b:82:69:89:d7:a4:40:c8:90:1a:d0:49:ee:d9:
18:12:c7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:13:53 2026 by rpki-client