Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: u5/8f6FYdeUPc6qedQd2dYlJ/BhNoT8syfqn0CqvpBw=
Subject key identifier: A0:08:76:1B:C3:67:3C:2E:9B:8B:8F:15:3D:85:64:ED:5B:6F:5F:24
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 019D2928E73078F14D5CB2A5C50BE485B3C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 08:00:39 +0000
Manifest this update: Thu 26 Mar 2026 08:00:39 +0000
Manifest next update: Fri 27 Mar 2026 08:00:39 +0000
Files and hashes: 1: awToJLBsyk0T4IcWFD08IQBrMn8.roa (hash: D6jszyrJ34yNygrEuO9QJPaleqlFTsrRTxhepr3reTI=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: rweIeWLMpMZcRhI4Yt65E/icqoH4ODKwOHVE0Ljmh5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:28:e7:30:78:f1:4d:5c:b2:a5:c5:0b:e4:85:b3:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Mar 26 08:00:39 2026 GMT
Not After : Mar 27 08:00:39 2026 GMT
Subject: CN=a008761bc3673c2e9b8b8f153d8564ed5b6f5f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6b:be:11:36:c2:ab:2b:16:1e:15:b4:d7:91:
ee:35:7e:b0:be:94:12:17:49:85:ca:0a:dd:92:2c:
0d:57:cf:0a:35:ad:34:fb:a0:ac:96:5b:f7:22:e6:
24:3f:db:ec:34:f7:19:67:8f:bf:a7:74:9c:6c:2f:
e1:03:3c:81:00:8e:18:78:3a:32:86:3c:dc:b3:37:
00:d0:9c:3a:4a:18:3c:38:00:a3:21:0a:8f:38:36:
cd:70:f2:e7:64:32:90:d8:c6:56:d5:3e:0d:a4:25:
2b:93:91:90:ff:4b:e0:a6:94:78:26:32:de:90:9b:
40:2b:75:57:df:af:77:77:04:5b:29:bc:e8:d0:43:
a4:58:0f:41:f6:5d:3b:ab:83:88:b4:1d:f4:42:b2:
f6:25:8a:14:d5:a7:fa:3a:9e:d8:ba:d3:41:7e:97:
c2:5f:b9:70:b8:26:47:6a:a7:bb:72:30:2d:1a:80:
f8:db:4f:87:14:0d:e8:a6:44:28:5b:49:7a:df:12:
66:f9:ee:1f:05:0b:ce:52:ca:25:30:c2:db:57:d4:
61:2d:9f:dc:d4:0c:16:38:4e:1e:9c:b8:a8:bd:e8:
b9:bd:72:de:f2:99:3f:63:d2:8a:a3:38:c1:3d:48:
f9:0a:51:8b:a2:d2:d5:d2:ff:80:ff:b8:e7:d8:d2:
37:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:08:76:1B:C3:67:3C:2E:9B:8B:8F:15:3D:85:64:ED:5B:6F:5F:24
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:a7:63:10:6e:6a:64:9a:a0:8a:4e:d4:57:15:80:b4:78:1f:
9a:b3:29:5d:ab:4a:fb:b1:42:fe:af:4b:16:89:b5:fe:d2:88:
9f:17:46:e0:2b:ad:dd:97:b7:e2:4e:87:22:9e:da:f7:c6:4e:
49:b0:13:84:d5:b6:84:a6:c0:8f:b2:6a:c3:4d:7f:3b:b7:75:
9c:c1:d6:1d:31:5e:6b:84:9f:15:64:38:e3:54:06:79:66:51:
9d:96:95:df:23:53:d0:90:16:31:67:66:d4:ba:63:a8:ce:6a:
94:9c:16:f3:63:76:cd:0a:fb:d9:55:89:ca:23:72:58:5e:1b:
05:8b:39:f6:61:e8:fb:33:49:74:5b:08:2d:84:b0:7d:51:0f:
b0:bd:e1:70:e6:88:ee:72:06:28:51:7d:6c:9e:97:16:76:e0:
bb:da:a5:0e:d6:34:bc:af:7f:8e:ef:bc:75:d5:9b:94:59:66:
3a:a7:cb:b8:51:1b:03:d9:04:a5:20:2c:bc:0e:1e:d3:e1:b2:
f5:dc:3e:84:74:d6:10:62:b5:ab:42:21:e8:6a:7d:e3:03:fc:
44:6a:08:6a:cd:72:6a:96:59:39:1a:05:42:70:2d:90:58:d8:
30:c0:5b:59:70:46:bd:f0:e5:08:f9:06:a5:2a:72:8e:43:84:
d3:f7:86:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pKOcwePFNXLKlxQvkhbPGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0YTdkMDU0ODJiODRkM2JiNjA0ZjA5OWJjYWY5ZTdlZDM0
Njg4OWEwHhcNMjYwMzI2MDgwMDM5WhcNMjYwMzI3MDgwMDM5WjAzMTEwLwYDVQQD
EyhhMDA4NzYxYmMzNjczYzJlOWI4YjhmMTUzZDg1NjRlZDViNmY1ZjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmu+ETbCqysWHhW015HuNX6wvpQS
F0mFygrdkiwNV88KNa00+6Csllv3IuYkP9vsNPcZZ4+/p3ScbC/hAzyBAI4YeDoy
hjzcszcA0Jw6Shg8OACjIQqPODbNcPLnZDKQ2MZW1T4NpCUrk5GQ/0vgppR4JjLe
kJtAK3VX3693dwRbKbzo0EOkWA9B9l07q4OItB30QrL2JYoU1af6Op7YutNBfpfC
X7lwuCZHaqe7cjAtGoD420+HFA3opkQoW0l63xJm+e4fBQvOUsolMMLbV9RhLZ/c
1AwWOE4enLiovei5vXLe8pk/Y9KKozjBPUj5ClGLotLV0v+A/7jn2NI39QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKAIdhvDZzwum4uPFT2FZO1bb18kMB8GA1UdIwQY
MBaAFLSn0FSCuE07tgTwmbyvnn7TRoiaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAt
YzUzMjE5NWVlZjQ5LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAtYzUzMjE5NWVlZjQ5
LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB6djEG5q
ZJqgik7UVxWAtHgfmrMpXatK+7FC/q9LFom1/tKInxdG4Cut3Ze34k6HIp7a98ZO
SbAThNW2hKbAj7Jqw01/O7d1nMHWHTFea4SfFWQ441QGeWZRnZaV3yNT0JAWMWdm
1LpjqM5qlJwW82N2zQr72VWJyiNyWF4bBYs59mHo+zNJdFsILYSwfVEPsL3hcOaI
7nIGKFF9bJ6XFnbgu9qlDtY0vK9/ju+8ddWblFlmOqfLuFEbA9kEpSAsvA4e0+Gy
9dw+hHTWEGK1q0Ih6Gp94wP8RGoIas1yapZZORoFQnAtkFjYMMBbWXBGvfDlCPkG
pSpyjkOE0/eGlQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 19:39:04 2026 by rpki-client