Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
File: THGxR-uHN6vMM1-AIJUbJf8mVqY.mft (raw, json)
Hash identifier: VCSyAkv8naJOt3b59+dy4UIIX2dg7OzNzTf6wIwu/mw=
Subject key identifier: CF:2E:07:1D:D0:37:40:0B:C0:B1:45:67:4B:CC:42:A1:8D:88:5C:DC
Authority key identifier: 4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
Certificate issuer: /CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Certificate serial: 019D27A8B337B5CB9B403A71C13D423D6EC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
Manifest number: 0D20
Signing time: Thu 26 Mar 2026 01:01:00 +0000
Manifest this update: Thu 26 Mar 2026 01:01:00 +0000
Manifest next update: Fri 27 Mar 2026 01:01:00 +0000
Files and hashes: 1: 3e7vn0gMWTX4xlbGZNjmmNvageE.roa (hash: pKinQ92qPKme6P+JXQ0o29GW5WCuFqvQkCK6U5s4Mag=)
2: THGxR-uHN6vMM1-AIJUbJf8mVqY.crl (hash: yvTcwkl6mRWzvYtZyGEzBWQONF8AtGCPlWxm4g2ErIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:b3:37:b5:cb:9b:40:3a:71:c1:3d:42:3d:6e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c71b147eb8737abcc335f8020951b25ff2656a6
Validity
Not Before: Mar 26 01:01:00 2026 GMT
Not After : Mar 27 01:01:00 2026 GMT
Subject: CN=cf2e071dd037400bc0b145674bcc42a18d885cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:41:78:fc:e1:63:1a:31:ab:33:e4:ac:c8:d9:
47:92:82:78:0a:cc:00:bc:7c:ac:9e:6f:9c:bb:ce:
ca:70:83:dc:6f:74:dd:5d:f8:5e:46:53:ad:b7:36:
c7:21:c8:15:a3:79:1d:1c:c9:03:be:a0:f7:dc:ae:
e9:27:c8:5d:f2:10:3f:32:7e:25:c7:01:6e:ad:ef:
41:af:57:ac:f4:94:d5:05:73:d7:e7:8d:ec:fb:14:
24:12:75:47:ff:20:e5:ff:63:e0:e5:c0:c2:cc:c5:
63:29:ec:f5:46:2f:8e:bd:92:ec:5d:0d:b4:5a:4c:
f7:b0:8e:41:ea:c3:15:91:39:ef:2b:ce:7d:33:95:
9d:b2:41:5e:1d:8e:5b:3e:5f:0b:1e:bf:5e:c2:a0:
9f:ab:22:ae:75:fa:e1:51:25:b0:e8:46:2e:ae:28:
e7:05:e4:18:cc:54:e8:b5:b6:33:1c:47:ea:b3:53:
b3:ea:77:2d:62:d0:80:d5:39:4d:69:1c:1d:44:31:
7c:a3:6d:18:12:fb:17:17:e4:9c:14:03:69:5e:82:
12:6c:67:78:77:1f:64:d1:8a:27:68:1f:cd:0b:8a:
e9:5d:01:a2:20:2b:0b:e4:64:e9:61:5d:0b:5d:21:
d5:4f:68:ee:50:55:49:22:2e:bb:c1:56:bf:1e:52:
03:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:2E:07:1D:D0:37:40:0B:C0:B1:45:67:4B:CC:42:A1:8D:88:5C:DC
X509v3 Authority Key Identifier:
keyid:4C:71:B1:47:EB:87:37:AB:CC:33:5F:80:20:95:1B:25:FF:26:56:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/THGxR-uHN6vMM1-AIJUbJf8mVqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/f92871-0d3a-4d87-afdc-071b991af01f/1/THGxR-uHN6vMM1-AIJUbJf8mVqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:04:e6:89:ae:45:95:e8:0d:4b:2d:7c:55:7b:a0:f2:f9:fa:
a7:f8:2e:46:3e:0e:68:82:65:8f:88:2a:ac:2d:6e:c0:4b:9c:
cb:99:37:35:0a:bd:f7:c5:99:a8:a4:e1:ad:23:b3:c6:63:bc:
06:db:7f:8a:71:80:81:1d:52:ec:4f:97:2a:73:58:85:c9:e3:
18:26:8f:58:cd:7f:a2:1a:aa:c4:c2:1a:cf:8f:a1:17:25:d9:
be:51:23:33:e3:f1:1d:59:a9:8a:bb:0c:3b:e0:0e:4e:96:b2:
f6:80:34:2e:49:fd:2b:7e:f2:e7:8e:fd:c0:ef:50:d8:b4:ab:
86:a6:32:b2:0f:b4:f5:46:05:53:20:0a:bf:d4:63:76:39:69:
24:74:9f:d2:4d:62:dc:b1:1b:26:c2:8f:a7:57:87:90:6a:a4:
aa:6b:86:c7:64:a3:2d:e8:2c:2e:d5:57:48:f6:ca:ab:06:79:
7a:06:a6:9b:c6:13:03:17:13:65:73:bf:c4:ba:d6:e2:9e:84:
dd:55:5d:9c:ea:b9:9b:22:6a:d0:c9:2f:22:c6:9d:21:1d:97:
a1:10:4a:7d:b5:b8:da:39:ab:5e:7c:08:1a:ed:38:a2:d7:bb:
4f:c4:5a:b4:fe:54:a6:69:17:46:af:8e:38:a0:10:41:f8:9c:
cb:d1:7b:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nqLM3tcubQDpxwT1CPW7JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjNzFiMTQ3ZWI4NzM3YWJjYzMzNWY4MDIwOTUxYjI1ZmYy
NjU2YTYwHhcNMjYwMzI2MDEwMTAwWhcNMjYwMzI3MDEwMTAwWjAzMTEwLwYDVQQD
EyhjZjJlMDcxZGQwMzc0MDBiYzBiMTQ1Njc0YmNjNDJhMThkODg1Y2RjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkF4/OFjGjGrM+SsyNlHkoJ4CswA
vHysnm+cu87KcIPcb3TdXfheRlOttzbHIcgVo3kdHMkDvqD33K7pJ8hd8hA/Mn4l
xwFure9Br1es9JTVBXPX543s+xQkEnVH/yDl/2Pg5cDCzMVjKez1Ri+OvZLsXQ20
Wkz3sI5B6sMVkTnvK859M5WdskFeHY5bPl8LHr9ewqCfqyKudfrhUSWw6EYurijn
BeQYzFTotbYzHEfqs1Oz6nctYtCA1TlNaRwdRDF8o20YEvsXF+ScFANpXoISbGd4
dx9k0YonaB/NC4rpXQGiICsL5GTpYV0LXSHVT2juUFVJIi67wVa/HlID1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM8uBx3QN0ALwLFFZ0vMQqGNiFzcMB8GA1UdIwQY
MBaAFExxsUfrhzerzDNfgCCVGyX/JlamMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9mOTI4NzEtMGQzYS00ZDg3LWFmZGMt
MDcxYjk5MWFmMDFmLzEvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My9mOTI4NzEtMGQzYS00ZDg3LWFmZGMtMDcxYjk5MWFmMDFm
LzEvVEhHeFItdUhONnZNTTEtQUlKVWJKZjhtVnFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdgTmia5F
legNSy18VXug8vn6p/guRj4OaIJlj4gqrC1uwEucy5k3NQq998WZqKThrSOzxmO8
Btt/inGAgR1S7E+XKnNYhcnjGCaPWM1/ohqqxMIaz4+hFyXZvlEjM+PxHVmpirsM
O+AOTpay9oA0Lkn9K37y5479wO9Q2LSrhqYysg+09UYFUyAKv9RjdjlpJHSf0k1i
3LEbJsKPp1eHkGqkqmuGx2SjLegsLtVXSPbKqwZ5egamm8YTAxcTZXO/xLrW4p6E
3VVdnOq5myJq0MkvIsadIR2XoRBKfbW42jmrXnwIGu04ote7T8RatP5UpmkXRq+O
OKAQQficy9F7dw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:17:14 2026 by rpki-client