Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
File: TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft (raw, json)
Hash identifier: p0md2EElm9CSFGDDIRf0qBI4xFhClvdmzZtSQqtgGw4=
Subject key identifier: 0D:7A:FA:38:5B:B5:CE:D2:7D:C6:03:A8:E8:B6:4C:93:B6:9E:58:F4
Authority key identifier: 4C:D7:1F:5A:00:50:F8:AE:64:44:C6:38:76:9B:A3:75:FD:DB:CE:19
Certificate issuer: /CN=4cd71f5a0050f8ae6444c638769ba375fddbce19
Certificate serial: 019D273AF404A7ACC6FCA4B4529A9A523EAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TNcfWgBQ-K5kRMY4dpujdf3bzhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
Manifest number: 1572
Signing time: Wed 25 Mar 2026 23:01:08 +0000
Manifest this update: Wed 25 Mar 2026 23:01:08 +0000
Manifest next update: Thu 26 Mar 2026 23:01:08 +0000
Files and hashes: 1: TNcfWgBQ-K5kRMY4dpujdf3bzhk.crl (hash: BHJ6UKWBAIaSdgSFix6x1HW+p75rA+5gV7W7v/BAW8E=)
2: qhbgvCCuTYLs-T9K9IfIIvF38MQ.roa (hash: WdrjO4xvUh7bWyfHcWR8FrUXBHsQMBxvR3LgVLProrg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TNcfWgBQ-K5kRMY4dpujdf3bzhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:f4:04:a7:ac:c6:fc:a4:b4:52:9a:9a:52:3e:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cd71f5a0050f8ae6444c638769ba375fddbce19
Validity
Not Before: Mar 25 23:01:08 2026 GMT
Not After : Mar 26 23:01:08 2026 GMT
Subject: CN=0d7afa385bb5ced27dc603a8e8b64c93b69e58f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8e:20:7c:f1:05:d5:5b:22:4b:2a:11:9f:bd:
2e:56:37:8d:fd:de:87:a9:a4:fc:b9:55:ee:b7:23:
0c:22:97:d2:4a:e4:8b:aa:4f:ac:91:b9:59:92:03:
a7:e0:2b:be:28:87:ad:06:35:42:1e:95:2d:12:b9:
f3:7e:b6:f2:3b:ad:04:31:ee:ea:f5:2e:de:66:ec:
ac:a3:29:4a:11:b0:8f:ce:23:40:ff:05:9c:3d:c9:
26:ad:f3:ae:db:ef:2d:da:54:89:59:7d:95:67:31:
70:29:38:d9:6f:a5:5d:23:7d:03:5e:ee:a0:fd:ae:
47:5c:56:cf:2d:88:ff:c3:d3:87:ac:44:07:17:25:
2d:96:c3:76:9f:ba:68:1b:82:cd:56:9b:24:b9:d2:
ec:04:8a:de:b1:b6:41:af:70:d6:ad:52:e8:b3:9a:
2b:3e:d4:ff:79:81:59:fe:12:05:82:47:dc:da:d2:
01:24:81:fc:dd:5f:7c:29:8e:47:d2:1f:6f:f4:d3:
54:d4:01:a2:59:d0:05:12:4e:a5:83:c2:1e:bd:cd:
c1:2d:19:56:a6:8c:6a:be:6f:d5:c7:8f:5e:cf:03:
20:d8:be:0a:20:03:66:b6:35:11:6a:00:e2:4b:ad:
3f:cd:50:48:a2:94:b1:35:6a:4d:ee:a3:e3:ef:68:
09:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:7A:FA:38:5B:B5:CE:D2:7D:C6:03:A8:E8:B6:4C:93:B6:9E:58:F4
X509v3 Authority Key Identifier:
keyid:4C:D7:1F:5A:00:50:F8:AE:64:44:C6:38:76:9B:A3:75:FD:DB:CE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNcfWgBQ-K5kRMY4dpujdf3bzhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/278398-7339-44b2-b0b0-73a01ae5de8f/1/TNcfWgBQ-K5kRMY4dpujdf3bzhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:56:a2:28:cb:fc:a0:1d:32:c7:e5:0d:a7:cf:19:55:4c:fa:
a8:f7:d7:e0:76:d7:11:83:b0:0b:fd:7b:92:eb:b5:1c:19:ac:
79:8d:df:e0:88:16:83:e9:be:32:dc:56:b8:ad:f8:b4:c4:37:
7f:96:b2:18:94:66:ac:09:7b:f9:a9:00:c5:15:69:74:f1:3f:
57:8f:70:fb:11:de:39:df:8e:63:f2:b8:b6:f6:a3:05:78:89:
00:d2:c4:fa:70:2b:1b:ab:0d:1b:d6:9d:ec:9d:93:89:e3:a4:
99:b6:00:0b:38:3f:b3:2a:68:c6:9c:06:df:5d:08:e0:cb:cf:
cd:a4:71:a9:81:57:ac:67:1b:fe:60:16:7e:58:fb:19:7a:fc:
c2:85:db:87:5f:88:1a:09:8f:3f:bc:6e:d6:ef:ce:36:f1:e9:
c3:c7:42:c8:8c:40:b3:f7:7e:47:86:77:bf:2e:59:53:89:8d:
34:d3:3c:09:8d:dd:71:6e:77:c7:25:7d:73:7e:08:a4:81:17:
3b:4f:46:5b:95:5a:63:64:87:1e:ad:58:cd:7b:55:31:b3:d9:
fb:3a:50:3e:8a:18:67:84:3a:76:bd:6e:94:26:0a:f8:6d:4f:
52:28:8e:cb:8b:d9:f4:1d:97:61:ee:a6:64:70:24:e1:61:ef:
ac:7e:c2:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOvQEp6zG/KS0UpqaUj6qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjZDcxZjVhMDA1MGY4YWU2NDQ0YzYzODc2OWJhMzc1ZmRk
YmNlMTkwHhcNMjYwMzI1MjMwMTA4WhcNMjYwMzI2MjMwMTA4WjAzMTEwLwYDVQQD
EygwZDdhZmEzODViYjVjZWQyN2RjNjAzYThlOGI2NGM5M2I2OWU1OGY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmI4gfPEF1VsiSyoRn70uVjeN/d6H
qaT8uVXutyMMIpfSSuSLqk+skblZkgOn4Cu+KIetBjVCHpUtErnzfrbyO60EMe7q
9S7eZuysoylKEbCPziNA/wWcPckmrfOu2+8t2lSJWX2VZzFwKTjZb6VdI30DXu6g
/a5HXFbPLYj/w9OHrEQHFyUtlsN2n7poG4LNVpskudLsBIresbZBr3DWrVLos5or
PtT/eYFZ/hIFgkfc2tIBJIH83V98KY5H0h9v9NNU1AGiWdAFEk6lg8Ievc3BLRlW
poxqvm/Vx49ezwMg2L4KIANmtjURagDiS60/zVBIopSxNWpN7qPj72gJgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA16+jhbtc7SfcYDqOi2TJO2nlj0MB8GA1UdIwQY
MBaAFEzXH1oAUPiuZETGOHabo3X9284ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVE5jZldnQlEtSzVrUk1ZNGRwdWpkZjNiemhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8yNzgzOTgtNzMzOS00NGIyLWIwYjAt
NzNhMDFhZTVkZThmLzEvVE5jZldnQlEtSzVrUk1ZNGRwdWpkZjNiemhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi8yNzgzOTgtNzMzOS00NGIyLWIwYjAtNzNhMDFhZTVkZThm
LzEvVE5jZldnQlEtSzVrUk1ZNGRwdWpkZjNiemhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY1aiKMv8
oB0yx+UNp88ZVUz6qPfX4HbXEYOwC/17kuu1HBmseY3f4IgWg+m+MtxWuK34tMQ3
f5ayGJRmrAl7+akAxRVpdPE/V49w+xHeOd+OY/K4tvajBXiJANLE+nArG6sNG9ad
7J2TieOkmbYACzg/sypoxpwG310I4MvPzaRxqYFXrGcb/mAWflj7GXr8woXbh1+I
GgmPP7xu1u/ONvHpw8dCyIxAs/d+R4Z3vy5ZU4mNNNM8CY3dcW53xyV9c34IpIEX
O09GW5VaY2SHHq1YzXtVMbPZ+zpQPooYZ4Q6dr1ulCYK+G1PUiiOy4vZ9B2XYe6m
ZHAk4WHvrH7C4g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:57:22 2026 by rpki-client