Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
File: TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft (raw, json)
Hash identifier: O2A050Ly9Gq6PHyYek5iwhCpHwDABYO3XQHDEU8T0GI=
Subject key identifier: 52:4A:8C:1A:0F:A0:6F:0D:66:8E:F9:E1:7F:21:7E:4D:34:8E:38:B3
Authority key identifier: 4C:D7:1F:5A:00:50:F8:AE:64:44:C6:38:76:9B:A3:75:FD:DB:CE:19
Certificate issuer: /CN=4cd71f5a0050f8ae6444c638769ba375fddbce19
Certificate serial: 019E205A4E9C29401E586BF0A75C4FF69472
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNcfWgBQ-K5kRMY4dpujdf3bzhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
Manifest number: 15F3
Signing time: Wed 13 May 2026 08:00:49 +0000
Manifest this update: Wed 13 May 2026 08:00:49 +0000
Manifest next update: Thu 14 May 2026 08:00:49 +0000
Files and hashes: 1: TNcfWgBQ-K5kRMY4dpujdf3bzhk.crl (hash: jnYWBQhh4YexMvA6kPjJ5K52RIo6mx5x6E/pgq0Mcgg=)
2: qhbgvCCuTYLs-T9K9IfIIvF38MQ.roa (hash: WdrjO4xvUh7bWyfHcWR8FrUXBHsQMBxvR3LgVLProrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TNcfWgBQ-K5kRMY4dpujdf3bzhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:4e:9c:29:40:1e:58:6b:f0:a7:5c:4f:f6:94:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd71f5a0050f8ae6444c638769ba375fddbce19
Validity
Not Before: May 13 08:00:49 2026 GMT
Not After : May 14 08:00:49 2026 GMT
Subject: CN=524a8c1a0fa06f0d668ef9e17f217e4d348e38b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:95:31:0b:32:82:13:83:00:b9:80:f2:b7:60:
bc:7b:ca:f4:2e:91:11:ff:59:1e:fd:b5:e5:2f:29:
0d:8a:9b:03:bf:2b:f6:18:eb:d6:23:d2:e8:b8:4a:
9b:92:ea:d5:8e:0d:54:db:1a:45:59:3b:97:a2:95:
88:1f:62:86:79:7f:b0:02:bb:a9:4f:1e:48:2d:5b:
a1:7b:af:8c:5c:bd:c0:de:9a:99:5a:c5:98:fe:55:
07:04:66:c7:1b:4c:92:69:51:e6:8b:a9:93:8c:49:
6d:e2:55:f6:44:62:33:ef:d7:c7:6d:c7:23:ff:ae:
1d:05:dd:71:98:8d:e6:21:c0:5b:5c:d0:73:18:78:
9e:79:2b:cb:27:64:4a:d9:1d:c8:24:a6:bd:2d:11:
81:62:76:13:d2:12:02:3a:2a:f0:56:19:13:ce:77:
63:e1:75:95:6c:1a:24:d3:76:c4:2f:81:bd:ef:d6:
2d:98:80:66:5f:b6:7d:d2:6c:d2:f2:f3:0b:11:6c:
c1:3b:1f:8c:01:2c:37:28:05:62:ae:bb:d2:d7:d8:
e2:20:64:7b:58:81:f6:78:b9:80:9f:fc:b5:78:04:
99:ce:ce:7e:b3:1b:88:95:ae:2f:71:ae:37:b8:4a:
cb:3f:65:01:6d:72:67:de:ec:a8:66:c6:bb:52:a8:
ef:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:4A:8C:1A:0F:A0:6F:0D:66:8E:F9:E1:7F:21:7E:4D:34:8E:38:B3
X509v3 Authority Key Identifier:
keyid:4C:D7:1F:5A:00:50:F8:AE:64:44:C6:38:76:9B:A3:75:FD:DB:CE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNcfWgBQ-K5kRMY4dpujdf3bzhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:36:b0:8c:0c:ee:c5:a6:54:54:aa:9b:a5:8c:cf:4c:55:46:
b0:28:5e:e3:5e:ce:c3:9a:2b:3d:6d:ac:01:8a:8e:4e:be:de:
ac:b4:2c:c3:bb:10:92:18:7e:73:bc:f4:9b:5d:14:e5:95:d3:
e4:a0:62:7b:20:ae:ec:30:42:a9:38:26:68:91:c9:f5:c5:c5:
08:0d:b7:44:05:38:37:36:d3:76:c2:30:a1:dc:fe:5e:73:6f:
94:44:07:50:d9:33:97:c2:bd:f2:a4:7c:2f:03:6c:f9:73:a8:
04:d2:cc:04:b6:a4:dd:19:f0:a9:88:0f:22:e2:ba:0a:a9:8c:
41:50:c2:02:48:24:76:49:4d:e9:6c:71:41:04:f6:14:bd:13:
5f:04:d2:5e:d7:4d:4d:75:ee:f3:1b:f9:dc:56:47:16:7f:13:
c3:31:eb:05:53:1e:25:42:4f:bb:9d:c8:17:60:96:bd:5a:d3:
c3:45:d3:1a:1f:8d:56:7b:cf:31:1f:47:ab:80:e7:33:39:90:
b6:41:58:78:a3:3d:1c:01:65:58:6b:7f:05:e9:10:12:35:bf:
7b:47:dd:83:27:02:c3:6c:50:b3:70:73:34:69:9b:b2:f4:fc:
38:7e:44:76:35:bf:34:3e:99:b0:6b:3c:41:c5:35:df:42:1e:
f7:72:69:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gWk6cKUAeWGvwp1xP9pRyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjZDcxZjVhMDA1MGY4YWU2NDQ0YzYzODc2OWJhMzc1ZmRk
YmNlMTkwHhcNMjYwNTEzMDgwMDQ5WhcNMjYwNTE0MDgwMDQ5WjAzMTEwLwYDVQQD
Eyg1MjRhOGMxYTBmYTA2ZjBkNjY4ZWY5ZTE3ZjIxN2U0ZDM0OGUzOGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJUxCzKCE4MAuYDyt2C8e8r0LpER
/1ke/bXlLykNipsDvyv2GOvWI9LouEqbkurVjg1U2xpFWTuXopWIH2KGeX+wArup
Tx5ILVuhe6+MXL3A3pqZWsWY/lUHBGbHG0ySaVHmi6mTjElt4lX2RGIz79fHbccj
/64dBd1xmI3mIcBbXNBzGHieeSvLJ2RK2R3IJKa9LRGBYnYT0hICOirwVhkTzndj
4XWVbBok03bEL4G979YtmIBmX7Z90mzS8vMLEWzBOx+MASw3KAVirrvS19jiIGR7
WIH2eLmAn/y1eASZzs5+sxuIla4vca43uErLP2UBbXJn3uyoZsa7Uqjv0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFJKjBoPoG8NZo754X8hfk00jjizMB8GA1UdIwQY
MBaAFEzXH1oAUPiuZETGOHabo3X9284ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVE5jZldnQlEtSzVrUk1ZNGRwdWpkZjNiemhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNzgzOTgtNzMzOS00NGIyLWIwYjAt
NzNhMDFhZTVkZThmLzEvVE5jZldnQlEtSzVrUk1ZNGRwdWpkZjNiemhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNzgzOTgtNzMzOS00NGIyLWIwYjAtNzNhMDFhZTVkZThm
LzEvVE5jZldnQlEtSzVrUk1ZNGRwdWpkZjNiemhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdDawjAzu
xaZUVKqbpYzPTFVGsChe417Ow5orPW2sAYqOTr7erLQsw7sQkhh+c7z0m10U5ZXT
5KBieyCu7DBCqTgmaJHJ9cXFCA23RAU4NzbTdsIwodz+XnNvlEQHUNkzl8K98qR8
LwNs+XOoBNLMBLak3RnwqYgPIuK6CqmMQVDCAkgkdklN6WxxQQT2FL0TXwTSXtdN
TXXu8xv53FZHFn8TwzHrBVMeJUJPu53IF2CWvVrTw0XTGh+NVnvPMR9Hq4DnMzmQ
tkFYeKM9HAFlWGt/BekQEjW/e0fdgycCw2xQs3BzNGmbsvT8OH5EdjW/ND6ZsGs8
QcU130Ie93JpPQ==
-----END CERTIFICATE-----
Generated at Wed May 13 13:52:15 2026 by rpki-client