Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
File: TjQBh8D85f_wN87ZplCCQ-QE2nE.mft (raw, json)
Hash identifier: zd6mAONsUTswwR6JgyCt5hBmyJahtbbZ0bFT6N3lFSI=
Subject key identifier: 26:B0:CC:57:29:08:6C:B2:45:23:CF:7D:CB:8B:E8:DB:9E:7E:97:49
Authority key identifier: 4E:34:01:87:C0:FC:E5:FF:F0:37:CE:D9:A6:50:82:43:E4:04:DA:71
Certificate issuer: /CN=4e340187c0fce5fff037ced9a6508243e404da71
Certificate serial: 019D27729E784EB2525FEAC41B8490BB6C6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
Manifest number: 0BB3
Signing time: Thu 26 Mar 2026 00:01:56 +0000
Manifest this update: Thu 26 Mar 2026 00:01:56 +0000
Manifest next update: Fri 27 Mar 2026 00:01:56 +0000
Files and hashes: 1: TjQBh8D85f_wN87ZplCCQ-QE2nE.crl (hash: mgp5U4xByG+kfEktx/1MPPPkcrOCK4Ws9C64qg3w3EU=)
2: rhOLI0GcmiH-t7VHcs9HUNOIZu8.roa (hash: DObC6epbAV4/cO0FstWBi+3TiGPf6vSxTLwzr5V99So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:9e:78:4e:b2:52:5f:ea:c4:1b:84:90:bb:6c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e340187c0fce5fff037ced9a6508243e404da71
Validity
Not Before: Mar 26 00:01:56 2026 GMT
Not After : Mar 27 00:01:56 2026 GMT
Subject: CN=26b0cc5729086cb24523cf7dcb8be8db9e7e9749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3d:05:12:06:9e:cd:e6:66:60:0e:d6:3b:c4:
a3:51:d8:68:1a:35:20:7d:8c:a2:a1:8a:c2:58:df:
7a:48:bb:b5:a7:bf:6f:62:89:01:6d:ba:54:b7:09:
72:ce:75:19:09:b5:8f:88:0d:4b:a4:3f:18:11:1e:
ae:66:81:f0:4c:50:10:d8:19:f8:c9:07:c8:59:47:
f2:95:8e:a6:9e:df:4b:5b:6e:2c:ef:9d:ad:6d:d7:
05:b6:22:46:97:2c:b7:28:52:b7:ef:3d:a6:7f:23:
48:4b:a4:e0:bb:59:47:c4:55:59:f1:61:75:61:31:
03:63:09:54:07:bb:a5:59:f4:75:34:c7:f7:26:b7:
f9:62:f4:cf:5c:53:b8:ad:6b:73:e7:a0:0f:7e:7d:
b6:1f:f7:dc:d2:0d:71:c6:6c:f9:3e:6c:ba:ea:97:
4a:59:5b:0e:e7:01:36:37:4f:ee:7a:d2:4f:3b:98:
38:0d:3d:83:9d:65:5f:56:6e:62:5d:d3:a4:80:28:
60:05:38:be:3c:8d:d4:a4:b6:b8:56:fc:17:ab:c5:
b9:49:0b:11:df:e4:ef:19:72:42:d6:7e:4c:0f:b9:
2a:86:e5:44:46:35:f8:d0:c5:c6:a2:2d:ec:46:d0:
72:cb:a0:cb:5a:a2:7d:f4:1b:03:1e:25:50:5c:02:
dd:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:B0:CC:57:29:08:6C:B2:45:23:CF:7D:CB:8B:E8:DB:9E:7E:97:49
X509v3 Authority Key Identifier:
keyid:4E:34:01:87:C0:FC:E5:FF:F0:37:CE:D9:A6:50:82:43:E4:04:DA:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TjQBh8D85f_wN87ZplCCQ-QE2nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/961f64-837c-4811-aa42-58f215bca53a/1/TjQBh8D85f_wN87ZplCCQ-QE2nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:9f:3c:95:3a:dd:8a:2d:37:52:7d:c1:11:27:cf:76:1c:59:
ae:72:dd:79:96:87:fc:1f:92:cd:e2:04:b6:4f:e5:79:77:76:
3a:c2:89:04:c7:c6:27:56:f6:5d:8a:34:0b:33:ce:d4:9e:51:
fc:eb:6e:f1:a3:ae:e4:b2:ae:94:06:51:e0:63:9e:c9:50:47:
1f:f5:4c:f5:d7:9f:14:a7:20:7f:0d:69:a2:77:21:63:10:8f:
60:72:ad:dc:e9:24:80:b6:11:7c:99:9b:16:0d:ba:49:70:68:
fd:29:d9:c7:ba:c0:90:bd:0b:95:34:ba:54:6e:48:51:22:d5:
86:75:a6:94:1a:79:4c:76:bd:0d:2f:b8:58:53:c9:33:d8:62:
57:88:5c:b4:6e:3f:93:ff:7c:26:43:8f:fb:b8:d9:e6:b7:4b:
8a:6f:86:79:a9:2c:12:1d:38:ec:20:94:73:0b:49:2c:71:91:
ca:12:0d:fa:18:58:ed:14:df:2c:05:20:2b:23:f8:dd:6b:28:
82:0a:3f:8c:3a:87:32:82:36:72:24:97:23:c1:32:76:4c:03:
a7:5f:4b:a2:2d:f9:8d:56:97:26:ca:42:bd:7a:0d:e4:46:e0:
a7:11:44:38:1c:3a:f3:1e:fa:57:05:c8:5a:22:95:22:3b:3a:
3b:ed:e6:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncp54TrJSX+rEG4SQu2xtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlMzQwMTg3YzBmY2U1ZmZmMDM3Y2VkOWE2NTA4MjQzZTQw
NGRhNzEwHhcNMjYwMzI2MDAwMTU2WhcNMjYwMzI3MDAwMTU2WjAzMTEwLwYDVQQD
EygyNmIwY2M1NzI5MDg2Y2IyNDUyM2NmN2RjYjhiZThkYjllN2U5NzQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnj0FEgaezeZmYA7WO8SjUdhoGjUg
fYyioYrCWN96SLu1p79vYokBbbpUtwlyznUZCbWPiA1LpD8YER6uZoHwTFAQ2Bn4
yQfIWUfylY6mnt9LW24s752tbdcFtiJGlyy3KFK37z2mfyNIS6Tgu1lHxFVZ8WF1
YTEDYwlUB7ulWfR1NMf3Jrf5YvTPXFO4rWtz56APfn22H/fc0g1xxmz5Pmy66pdK
WVsO5wE2N0/uetJPO5g4DT2DnWVfVm5iXdOkgChgBTi+PI3UpLa4VvwXq8W5SQsR
3+TvGXJC1n5MD7kqhuVERjX40MXGoi3sRtByy6DLWqJ99BsDHiVQXALdeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCawzFcpCGyyRSPPfcuL6NuefpdJMB8GA1UdIwQY
MBaAFE40AYfA/OX/8DfO2aZQgkPkBNpxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGpRQmg4RDg1Zl93Tjg3WnBsQ0NRLVFFMm5FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC85NjFmNjQtODM3Yy00ODExLWFhNDIt
NThmMjE1YmNhNTNhLzEvVGpRQmg4RDg1Zl93Tjg3WnBsQ0NRLVFFMm5FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC85NjFmNjQtODM3Yy00ODExLWFhNDItNThmMjE1YmNhNTNh
LzEvVGpRQmg4RDg1Zl93Tjg3WnBsQ0NRLVFFMm5FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzZ88lTrd
ii03Un3BESfPdhxZrnLdeZaH/B+SzeIEtk/leXd2OsKJBMfGJ1b2XYo0CzPO1J5R
/Otu8aOu5LKulAZR4GOeyVBHH/VM9defFKcgfw1ponchYxCPYHKt3OkkgLYRfJmb
Fg26SXBo/SnZx7rAkL0LlTS6VG5IUSLVhnWmlBp5THa9DS+4WFPJM9hiV4hctG4/
k/98JkOP+7jZ5rdLim+GeaksEh047CCUcwtJLHGRyhIN+hhY7RTfLAUgKyP43Wso
ggo/jDqHMoI2ciSXI8EydkwDp19Loi35jVaXJspCvXoN5EbgpxFEOBw68x76VwXI
WiKVIjs6O+3mHQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 07:04:17 2026 by rpki-client