Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
File: tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft (raw, json)
Hash identifier: 0MZsvOY1zm4MzYYf8TQKgImJC8mhGqV+pXa0ZADub3U=
Subject key identifier: F3:C8:ED:42:F1:29:81:18:F8:A9:8D:22:DD:9B:01:57:91:4D:54:F5
Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Certificate serial: 019DCF073236EC200FA7AF40C79C0D477B40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
Manifest number: 18E3
Signing time: Mon 27 Apr 2026 13:00:48 +0000
Manifest this update: Mon 27 Apr 2026 13:00:48 +0000
Manifest next update: Tue 28 Apr 2026 13:00:48 +0000
Files and hashes: 1: LDYOOwc3ElUwgsoAhX1VAVoDz7A.roa (hash: LnEQSIV2ZJKxc3kP1NpzkPN+GxvmT9Fs9kvIu+YHy1w=)
2: RNoONMgjC7AI9bUiPXHJnoNxdw4.roa (hash: EyX2BbVopJ5hjqPnGfS3gH2lJBH+hCeBYJzhz4A8ggc=)
3: _Kvo8y_R7krVK88kzx8nMzPfxVY.roa (hash: hJFEckwW05pWdYupq2RWtNuX2TmzieG8g1SpfTLtVnQ=)
4: tNl2UUnZ4217WSLfqRDSI0O_BWU.roa (hash: TJsFtOL6bWviF8Z8b9ypqKLo31djdrQdvLmCXkT7uLQ=)
5: tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl (hash: EKDNjjtgdm6Xz+DMY67k1xlZi/b3fS0GNVhdTRlO60s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:07:32:36:ec:20:0f:a7:af:40:c7:9c:0d:47:7b:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Validity
Not Before: Apr 27 13:00:48 2026 GMT
Not After : Apr 28 13:00:48 2026 GMT
Subject: CN=f3c8ed42f1298118f8a98d22dd9b0157914d54f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a1:fc:15:bf:2d:6d:0f:0e:9e:59:af:ea:68:
16:f7:e8:4d:c6:10:dd:e8:b7:2f:3f:73:16:95:f1:
d1:b4:f3:5b:1a:ad:e7:64:bd:f5:a4:d6:0b:8f:e4:
99:f6:93:c8:c3:87:8f:c7:cc:f5:ef:ca:bb:10:19:
09:06:ca:bf:6a:16:0e:38:7b:75:e5:86:35:d6:bc:
f3:0d:9a:dd:30:f8:2d:e0:e0:28:7d:2b:5e:e7:4f:
49:2b:99:a8:cd:51:33:28:05:c4:16:3a:6d:e1:8a:
ca:04:62:89:ba:2a:f6:0e:5d:3e:a4:68:3b:36:fe:
ff:f9:90:4b:b7:85:a8:ae:bc:ae:4e:dd:5e:9e:a8:
0a:88:18:98:a8:d3:7d:66:c0:64:12:cf:6a:a0:a4:
70:20:d3:8a:2a:5a:3b:10:0d:1e:8e:a7:a8:21:c2:
a0:85:e4:0d:6d:21:5d:13:d9:e2:fa:92:6c:42:f6:
3d:f4:ee:78:4a:04:bd:08:9a:36:86:ac:17:60:71:
4c:14:e4:a2:b8:d2:92:6c:d8:60:8d:7f:23:0c:8e:
1c:4a:37:1e:2a:7a:76:2a:9f:80:c8:7f:28:30:6d:
80:bd:eb:eb:d8:65:3b:4c:cc:a5:4c:24:23:a5:52:
0d:ab:9a:86:99:b5:65:f3:98:12:0c:94:3f:bb:5d:
a0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:C8:ED:42:F1:29:81:18:F8:A9:8D:22:DD:9B:01:57:91:4D:54:F5
X509v3 Authority Key Identifier:
keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:e2:48:03:9f:c8:cb:c6:ec:2b:f5:cf:50:67:be:cd:01:e1:
e3:e0:f7:8c:c8:1a:a8:44:d2:d6:6e:69:b6:d3:e7:fa:8a:49:
4e:13:fa:10:ed:27:76:aa:a3:c4:a2:c8:eb:74:ab:be:a4:25:
e6:fb:81:03:7a:21:3d:54:48:97:7a:0b:0a:30:89:18:91:ef:
15:29:a7:71:9d:b2:39:59:79:0e:d5:3d:22:1b:0c:70:b4:ca:
78:f7:7a:9a:56:59:7c:81:38:f9:f7:63:bc:de:12:6f:35:e4:
aa:1f:6c:f5:34:06:b8:ec:1d:86:d2:11:80:f4:d3:b0:b1:53:
14:d4:f3:43:49:ac:be:f6:9c:6a:7d:0d:f8:af:4c:ff:5e:b0:
64:26:0b:5b:46:19:5c:95:1d:0c:8e:da:ef:dc:88:d2:8f:49:
ff:ab:f8:3c:03:f1:c0:df:7c:6e:8e:19:4a:bc:0d:67:7e:53:
23:d3:5b:6d:21:d5:6c:da:8b:9c:59:1a:11:e7:7c:e8:ce:72:
c8:40:d4:bc:cf:17:fd:31:0a:9b:41:69:95:88:4b:53:fd:6a:
f3:08:1c:81:a4:80:0f:00:ad:bf:6a:f8:7c:06:ae:20:82:9f:
09:b3:e5:15:b8:7b:82:d3:d8:fd:f9:e3:4e:6e:03:53:7e:00:
ff:81:0f:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3PBzI27CAPp69Ax5wNR3tAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NDI3ZWE0OWY5NzJkMTljNTYzOTNhNjg5ZTdjYmViOTkw
ZDVkN2EwHhcNMjYwNDI3MTMwMDQ4WhcNMjYwNDI4MTMwMDQ4WjAzMTEwLwYDVQQD
EyhmM2M4ZWQ0MmYxMjk4MTE4ZjhhOThkMjJkZDliMDE1NzkxNGQ1NGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnaH8Fb8tbQ8Onlmv6mgW9+hNxhDd
6LcvP3MWlfHRtPNbGq3nZL31pNYLj+SZ9pPIw4ePx8z178q7EBkJBsq/ahYOOHt1
5YY11rzzDZrdMPgt4OAofSte509JK5mozVEzKAXEFjpt4YrKBGKJuir2Dl0+pGg7
Nv7/+ZBLt4WorryuTt1enqgKiBiYqNN9ZsBkEs9qoKRwINOKKlo7EA0ejqeoIcKg
heQNbSFdE9ni+pJsQvY99O54SgS9CJo2hqwXYHFMFOSiuNKSbNhgjX8jDI4cSjce
Knp2Kp+AyH8oMG2Avevr2GU7TMylTCQjpVINq5qGmbVl85gSDJQ/u12g1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPPI7ULxKYEY+KmNIt2bAVeRTVT1MB8GA1UdIwQY
MBaAFLVCfqSfly0ZxWOTponny+uZDV16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1Mjgt
MGM0OTU0NzdjYTEwLzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9kMmJiNjgtOWJjNy00NzkxLTg1MjgtMGM0OTU0NzdjYTEw
LzEvdFVKLXBKLVhMUm5GWTVPbWllZkw2NWtOWFhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMuJIA5/I
y8bsK/XPUGe+zQHh4+D3jMgaqETS1m5pttPn+opJThP6EO0ndqqjxKLI63SrvqQl
5vuBA3ohPVRIl3oLCjCJGJHvFSmncZ2yOVl5DtU9IhsMcLTKePd6mlZZfIE4+fdj
vN4SbzXkqh9s9TQGuOwdhtIRgPTTsLFTFNTzQ0msvvacan0N+K9M/16wZCYLW0YZ
XJUdDI7a79yI0o9J/6v4PAPxwN98bo4ZSrwNZ35TI9NbbSHVbNqLnFkaEed86M5y
yEDUvM8X/TEKm0FplYhLU/1q8wgcgaSADwCtv2r4fAauIIKfCbPlFbh7gtPY/fnj
Tm4DU34A/4EP6g==
-----END CERTIFICATE-----
Generated at Mon Apr 27 15:01:31 2026 by rpki-client