Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
File: TQiJTKQFMefSApQJEojnetEsKXk.mft (raw, json)
Hash identifier: lNziq32onepJp1bYAj5MHw0MDnvsroyT0/+F9KJY9go=
Subject key identifier: D4:66:4B:72:3F:DA:5B:2A:6B:B2:A4:50:20:AB:6B:A8:A7:2C:94:A7
Authority key identifier: 4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
Certificate issuer: /CN=4d08894ca40531e7d20294091288e77ad12c2979
Certificate serial: 019D28BBA49AB6DBE15FAFF0147C606223B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
Manifest number: 094E
Signing time: Thu 26 Mar 2026 06:01:18 +0000
Manifest this update: Thu 26 Mar 2026 06:01:18 +0000
Manifest next update: Fri 27 Mar 2026 06:01:18 +0000
Files and hashes: 1: 1SYQW-AytRFT8X7H178C63GJxjA.roa (hash: ZzI22LUMgcKDVR6FP27XHCqtHrqNmJBOs8nOGmHXP4g=)
2: TQiJTKQFMefSApQJEojnetEsKXk.crl (hash: /HaiAfCTXk7KDbogAXLi3jLnQRQsYikQh1JWCRM6Ho8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:a4:9a:b6:db:e1:5f:af:f0:14:7c:60:62:23:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d08894ca40531e7d20294091288e77ad12c2979
Validity
Not Before: Mar 26 06:01:18 2026 GMT
Not After : Mar 27 06:01:18 2026 GMT
Subject: CN=d4664b723fda5b2a6bb2a45020ab6ba8a72c94a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:eb:2b:60:0f:19:04:a4:c3:06:86:af:1d:50:
67:49:69:c6:80:84:7c:be:a9:3c:2d:dc:28:27:38:
8e:b2:71:5f:a2:2a:ca:d1:19:2e:df:cd:1e:af:77:
dd:4e:31:18:ce:f4:37:11:7d:15:51:1b:eb:60:81:
bb:be:85:fe:ce:49:c0:73:4a:d9:8a:4c:e3:f7:df:
86:37:9c:ef:ba:b9:a2:4f:74:03:80:01:a4:2b:66:
7c:61:3a:df:14:7e:ff:30:87:13:ab:43:e8:e3:0d:
91:2e:eb:2b:1e:79:5e:69:a7:ad:28:2f:58:30:aa:
c3:06:83:93:9c:e9:67:86:89:b6:24:13:64:aa:6f:
33:20:be:bd:48:e4:8e:25:43:0c:8b:b5:ec:84:8f:
03:1e:27:a4:df:ad:f1:66:3e:3a:eb:73:62:66:1c:
aa:23:06:4c:c9:1b:35:ca:2e:da:92:65:10:bd:fc:
d3:c2:86:d7:a3:8f:63:5a:3a:bb:ce:c5:fb:18:28:
1f:b1:08:16:2e:4a:1d:54:96:a3:d2:be:1e:52:a9:
1d:77:40:30:f6:bd:39:5e:3d:e8:55:1e:15:08:78:
a7:92:0c:c1:28:27:2f:43:b8:04:b2:31:09:d7:4e:
85:6d:de:87:58:09:4b:93:e6:69:10:2f:97:73:76:
34:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:66:4B:72:3F:DA:5B:2A:6B:B2:A4:50:20:AB:6B:A8:A7:2C:94:A7
X509v3 Authority Key Identifier:
keyid:4D:08:89:4C:A4:05:31:E7:D2:02:94:09:12:88:E7:7A:D1:2C:29:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQiJTKQFMefSApQJEojnetEsKXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9a08b0-cfec-4c91-b8eb-4abadb5aea9a/1/TQiJTKQFMefSApQJEojnetEsKXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:f1:c8:f0:6c:85:84:4d:1f:d9:ab:97:f1:08:73:f1:76:1d:
89:f0:bd:27:28:cf:ce:22:ed:45:92:c0:07:3f:18:33:87:d8:
bd:bf:d6:bb:6e:60:db:0d:e5:95:32:64:46:9f:d2:cf:99:b9:
0b:7e:43:9e:70:c3:84:9d:95:45:10:a7:40:52:cd:49:d0:56:
4f:66:8b:42:4b:75:9e:e7:84:c5:0b:e0:33:e5:e3:84:a0:05:
77:b9:f7:ec:41:9c:81:4f:9e:81:bf:8c:3e:94:da:0d:01:6a:
19:a6:e0:b7:18:99:ff:ac:b3:45:52:6e:a4:92:e3:42:60:c8:
6c:1e:a6:30:50:bb:53:5e:f2:59:c4:2f:3c:eb:61:91:80:25:
ad:7f:9f:a2:e9:53:1f:8d:06:5f:8d:09:ef:b0:d2:aa:b3:ec:
3e:3d:10:6d:00:8c:29:f4:bb:32:2b:26:52:12:61:8a:ef:5b:
8e:d4:5e:ae:8f:bd:82:5a:16:66:95:c2:66:c1:4d:2d:74:11:
0e:43:7e:2c:74:af:f8:68:2a:82:a0:2b:a9:e1:43:65:a0:9f:
1e:eb:dd:77:8a:d5:33:ba:51:24:f1:1a:1c:71:7b:7c:f1:06:
ed:ea:25:de:b8:10:8d:73:04:c2:22:23:49:c2:51:e9:ea:48:
2b:1c:6b:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ou6SattvhX6/wFHxgYiO5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMDg4OTRjYTQwNTMxZTdkMjAyOTQwOTEyODhlNzdhZDEy
YzI5NzkwHhcNMjYwMzI2MDYwMTE4WhcNMjYwMzI3MDYwMTE4WjAzMTEwLwYDVQQD
EyhkNDY2NGI3MjNmZGE1YjJhNmJiMmE0NTAyMGFiNmJhOGE3MmM5NGE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuesrYA8ZBKTDBoavHVBnSWnGgIR8
vqk8LdwoJziOsnFfoirK0Rku380er3fdTjEYzvQ3EX0VURvrYIG7voX+zknAc0rZ
ikzj99+GN5zvurmiT3QDgAGkK2Z8YTrfFH7/MIcTq0Po4w2RLusrHnleaaetKC9Y
MKrDBoOTnOlnhom2JBNkqm8zIL69SOSOJUMMi7XshI8DHiek363xZj4663NiZhyq
IwZMyRs1yi7akmUQvfzTwobXo49jWjq7zsX7GCgfsQgWLkodVJaj0r4eUqkdd0Aw
9r05Xj3oVR4VCHinkgzBKCcvQ7gEsjEJ106Fbd6HWAlLk+ZpEC+Xc3Y0VwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNRmS3I/2lsqa7KkUCCra6inLJSnMB8GA1UdIwQY
MBaAFE0IiUykBTHn0gKUCRKI53rRLCl5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFFpSlRLUUZNZWZTQXBRSkVvam5ldEVzS1hrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85YTA4YjAtY2ZlYy00YzkxLWI4ZWIt
NGFiYWRiNWFlYTlhLzEvVFFpSlRLUUZNZWZTQXBRSkVvam5ldEVzS1hrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS85YTA4YjAtY2ZlYy00YzkxLWI4ZWItNGFiYWRiNWFlYTlh
LzEvVFFpSlRLUUZNZWZTQXBRSkVvam5ldEVzS1hrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFPHI8GyF
hE0f2auX8Qhz8XYdifC9JyjPziLtRZLABz8YM4fYvb/Wu25g2w3llTJkRp/Sz5m5
C35DnnDDhJ2VRRCnQFLNSdBWT2aLQkt1nueExQvgM+XjhKAFd7n37EGcgU+egb+M
PpTaDQFqGabgtxiZ/6yzRVJupJLjQmDIbB6mMFC7U17yWcQvPOthkYAlrX+foulT
H40GX40J77DSqrPsPj0QbQCMKfS7MismUhJhiu9bjtRero+9gloWZpXCZsFNLXQR
DkN+LHSv+GgqgqArqeFDZaCfHuvdd4rVM7pRJPEaHHF7fPEG7eol3rgQjXMEwiIj
ScJR6epIKxxr4A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:57:05 2026 by rpki-client