Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
File: TzvVbotU5tonu-ZiLaxny_Aqgeo.mft (raw, json)
Hash identifier: Hhz+uzQIbnrrfnJFaX2wKUfQsJi/WQE2qrrxyVWB0wM=
Subject key identifier: 21:FD:F1:F8:38:34:FC:40:CD:E6:B2:5B:AA:99:E2:16:CD:D2:7C:A0
Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
Certificate issuer: /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Certificate serial: 019E49FB8CBC7B39059ECE6E019EC2FC945A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
Manifest number: 191F
Signing time: Thu 21 May 2026 10:01:22 +0000
Manifest this update: Thu 21 May 2026 10:01:22 +0000
Manifest next update: Fri 22 May 2026 10:01:22 +0000
Files and hashes: 1: 6h3DLRd0aoO08FWkuvK-DIL1TAI.roa (hash: QbNhinBRvnYOWmudxD6YkQ5YvTv3wj3nF5VH2568D0c=)
2: TzvVbotU5tonu-ZiLaxny_Aqgeo.crl (hash: iCvQzC53m+CTDD0u98wSN3LTjK9+hUa+XC7H3CyCHZk=)
3: kzYQmwQKzbuQvS3iB2mDUlnw91Y.roa (hash: bz4ecHp+kkkRf1WW8soaqZgJTcHf8FiOXW+H4gSzf48=)
4: lv8af-jyuveaHC9x_OKdx2NgSxI.roa (hash: qC6P7LJylLpMoNR/tNemeZF9+aw6XACba3yU1fASXaI=)
5: wMLINqfRL31emUgeWzPrQ7en_WU.roa (hash: 28WktakjRSH95PtqAXbEMoIgPvxQiYsWki+RGQe70G0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 May 2026 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:49:fb:8c:bc:7b:39:05:9e:ce:6e:01:9e:c2:fc:94:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Validity
Not Before: May 21 10:01:22 2026 GMT
Not After : May 22 10:01:22 2026 GMT
Subject: CN=21fdf1f83834fc40cde6b25baa99e216cdd27ca0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:46:0e:90:5d:51:8d:f0:ee:37:a9:a7:04:8d:
dc:29:29:64:d2:77:b5:da:5a:06:ea:03:a1:b0:c9:
a5:47:3d:e1:16:50:c0:a0:77:ea:16:cb:b8:25:05:
c0:64:50:da:b0:66:9e:e2:81:03:eb:26:67:59:57:
ac:ad:6f:b3:d4:cd:87:88:66:c0:50:58:3a:c0:e9:
d6:44:d0:4e:a5:13:f4:fc:f7:78:41:34:f5:e4:aa:
aa:4e:22:fb:84:47:5e:4a:61:53:14:6a:db:6a:26:
4c:88:43:ca:ee:b9:7f:2b:90:da:56:ad:f1:27:57:
c5:87:a7:66:2b:56:33:48:2c:13:2c:f8:7c:e4:a7:
91:74:63:02:3c:a4:dd:6e:63:f7:a1:da:17:90:b0:
41:ac:8e:1b:f8:97:0a:58:d4:89:bb:64:05:ac:20:
fd:79:e8:2b:57:b2:7a:40:82:13:f2:a7:d7:ca:97:
af:c6:b0:5a:91:a8:21:69:a3:ea:bf:5b:4e:9f:a2:
38:8c:88:26:f9:51:dd:1b:a3:2b:2c:e2:bb:d7:a2:
9c:71:bb:87:79:79:ee:bf:bd:9a:05:14:77:cf:1e:
44:f2:04:aa:16:ef:09:f9:9a:8b:48:a7:1e:d3:58:
c1:02:d0:d9:b4:14:97:08:12:37:8b:dd:25:a9:90:
d1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:FD:F1:F8:38:34:FC:40:CD:E6:B2:5B:AA:99:E2:16:CD:D2:7C:A0
X509v3 Authority Key Identifier:
keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:78:c3:0d:e9:f2:13:1c:18:f0:68:ba:57:aa:78:9a:3a:e4:
dd:17:4b:2e:ad:5f:9b:84:d9:34:26:98:74:a5:7a:35:33:0f:
54:d8:5e:0e:4e:f3:d0:e9:aa:ea:e7:05:06:23:d7:13:6b:b4:
41:c9:dd:a0:4f:d0:59:aa:5c:06:f4:17:36:34:c8:23:5c:c3:
78:b1:ce:a1:de:48:71:e4:04:f3:1c:22:28:1e:c4:8b:6a:f0:
be:4c:9f:4c:61:c7:ab:d8:22:7f:03:d5:f3:a1:05:51:55:f1:
fe:64:14:cc:83:8a:c7:86:93:c9:aa:a1:aa:70:4c:60:de:f0:
44:e3:c3:8f:a9:e4:ff:ec:31:b7:98:98:44:37:d8:72:ff:62:
09:a4:73:e8:15:fa:68:b9:3c:84:ca:ff:e4:cb:84:58:90:2b:
09:d9:94:3b:97:7c:68:d4:1e:26:5e:7d:71:9c:55:26:71:b5:
6c:04:b3:ad:0f:e6:e7:df:bb:69:0c:49:36:9b:06:a1:b1:ac:
a1:59:b8:fc:05:c4:93:68:f1:fa:31:db:08:53:7c:11:36:54:
f1:1a:b2:c6:07:77:17:a3:83:e1:28:c9:45:45:f0:a2:69:99:
ec:79:ab:28:72:c6:24:41:65:cd:37:de:df:fa:01:87:6a:48:
95:16:d9:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 21 12:58:36 2026 by rpki-client