Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
File: Tom7FOgJr_PsljCL2a6GUafndio.mft (raw, json)
Hash identifier: lmjFP1gLkG1L0pXGbVlL2YLAtdC5zNtwoEy/eHcVhM4=
Subject key identifier: EB:F1:65:45:38:E4:6C:FF:C0:8C:2D:15:01:66:31:17:94:B7:A0:07
Authority key identifier: 4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
Certificate issuer: /CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Certificate serial: 019D273B345011C41E23D49C83AA32FFFC65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 23:01:24 +0000
Manifest this update: Wed 25 Mar 2026 23:01:24 +0000
Manifest next update: Thu 26 Mar 2026 23:01:24 +0000
Files and hashes: 1: Tom7FOgJr_PsljCL2a6GUafndio.crl (hash: Ydrvm8lLpYSDzWUhwMtYzS3hehsAcwtmwASsb5JEP40=)
2: ocvm0IdE2g81VMWQHWvGerIOuso.roa (hash: vva88+yWqRlVE96LUlXUKJ3JPb4q0jP0+58DLgtlF9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:34:50:11:c4:1e:23:d4:9c:83:aa:32:ff:fc:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Validity
Not Before: Mar 25 23:01:24 2026 GMT
Not After : Mar 26 23:01:24 2026 GMT
Subject: CN=ebf1654538e46cffc08c2d150166311794b7a007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:50:60:ef:0a:ea:3c:c1:87:1b:c1:70:9a:4e:
70:3e:53:92:14:58:b3:38:08:f7:15:f4:7e:f6:43:
2e:61:0e:23:ab:1e:60:55:2d:56:5e:b2:ae:32:44:
9c:af:9a:89:65:79:89:56:8c:77:80:e8:01:22:95:
71:f0:19:a7:26:22:91:c7:eb:43:91:a4:96:75:7b:
67:db:ae:eb:d9:c9:2b:93:89:25:f9:f5:0d:6c:2d:
cb:20:27:26:bb:d4:09:4e:b4:b6:ed:c5:fd:83:45:
02:a2:ab:66:57:f3:ea:02:75:67:b3:55:d8:53:7b:
bb:25:70:f3:ce:b3:74:cc:bb:98:10:e3:83:2b:5f:
be:01:8e:8d:09:3d:ab:f4:96:1e:24:5f:c6:93:6d:
81:e4:1c:bd:7c:0e:c8:cb:1d:22:f4:9d:53:63:6a:
77:7c:bf:0c:74:4e:e0:63:c8:f4:e8:77:1e:72:3c:
d7:35:e6:ed:9c:b7:64:5d:ae:ed:6f:cc:f2:85:f8:
0b:3a:ef:4e:22:39:9d:1c:ab:b6:4d:ae:b2:55:03:
8c:fa:75:83:58:d3:34:17:98:19:d9:4b:4b:a8:95:
63:76:3f:62:7d:34:1c:b3:1a:3d:73:2a:e8:6b:cf:
dd:cd:15:ff:e2:f9:5c:d0:ef:70:70:4d:43:64:86:
be:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F1:65:45:38:E4:6C:FF:C0:8C:2D:15:01:66:31:17:94:B7:A0:07
X509v3 Authority Key Identifier:
keyid:4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:29:7a:7b:a0:74:16:1c:f4:15:c2:d2:29:dc:8e:ee:0e:d3:
82:55:f6:c5:ec:ed:65:15:cc:ff:6b:7c:89:dc:64:fa:58:ca:
a2:c3:d3:5a:14:41:5c:75:d3:c7:2e:c8:00:f1:8b:e6:f7:a0:
45:79:84:d2:9b:0c:57:23:4b:0b:13:7c:db:b5:47:96:bd:1a:
13:73:a2:0d:6e:03:d3:bd:93:0e:46:f0:ab:fd:1c:5c:fc:38:
b3:d7:c4:07:5d:fa:8c:1e:6b:fc:ba:a8:6d:d6:0b:77:e8:d4:
33:dc:2b:64:44:ff:91:88:e2:31:a0:3c:fd:1b:91:04:d7:72:
89:02:3f:cf:e6:46:82:95:cb:1b:cf:22:a5:a7:0c:f5:28:10:
77:c8:da:1a:07:cc:c1:9b:10:8b:96:dc:04:42:6d:b4:b5:27:
69:01:2a:b9:f3:07:b9:9f:b8:28:e3:29:36:db:e5:8c:d9:fb:
88:ea:7b:dc:0a:2d:fc:65:93:de:38:d3:99:c8:57:69:3e:24:
b2:1b:19:9c:c4:9d:2b:3b:6f:fe:d5:52:3d:20:10:4e:fb:8c:
c0:46:44:a3:00:1d:25:18:14:81:23:e8:47:ed:42:0e:bc:4a:
8d:ab:cd:0f:d8:6d:dd:56:df:03:4a:3f:02:35:49:ad:0e:d3:
a2:5d:35:78
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOzRQEcQeI9Scg6oy//xlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlODliYjE0ZTgwOWFmZjNlYzk2MzA4YmQ5YWU4NjUxYTdl
Nzc2MmEwHhcNMjYwMzI1MjMwMTI0WhcNMjYwMzI2MjMwMTI0WjAzMTEwLwYDVQQD
EyhlYmYxNjU0NTM4ZTQ2Y2ZmYzA4YzJkMTUwMTY2MzExNzk0YjdhMDA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVBg7wrqPMGHG8Fwmk5wPlOSFFiz
OAj3FfR+9kMuYQ4jqx5gVS1WXrKuMkScr5qJZXmJVox3gOgBIpVx8BmnJiKRx+tD
kaSWdXtn267r2ckrk4kl+fUNbC3LICcmu9QJTrS27cX9g0UCoqtmV/PqAnVns1XY
U3u7JXDzzrN0zLuYEOODK1++AY6NCT2r9JYeJF/Gk22B5By9fA7Iyx0i9J1TY2p3
fL8MdE7gY8j06HcecjzXNebtnLdkXa7tb8zyhfgLOu9OIjmdHKu2Ta6yVQOM+nWD
WNM0F5gZ2UtLqJVjdj9ifTQcsxo9cyroa8/dzRX/4vlc0O9wcE1DZIa+ZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOvxZUU45Gz/wIwtFQFmMReUt6AHMB8GA1UdIwQY
MBaAFE6JuxToCa/z7JYwi9muhlGn53YqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVG9tN0ZPZ0pyX1BzbGpDTDJhNkdVYWZuZGlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9hZTNjYzgtY2U3NC00ZDU3LTgxOWEt
OWZhMDJjYzI0OGU1LzEvVG9tN0ZPZ0pyX1BzbGpDTDJhNkdVYWZuZGlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni9hZTNjYzgtY2U3NC00ZDU3LTgxOWEtOWZhMDJjYzI0OGU1
LzEvVG9tN0ZPZ0pyX1BzbGpDTDJhNkdVYWZuZGlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACil6e6B0
Fhz0FcLSKdyO7g7TglX2xeztZRXM/2t8idxk+ljKosPTWhRBXHXTxy7IAPGL5veg
RXmE0psMVyNLCxN827VHlr0aE3OiDW4D072TDkbwq/0cXPw4s9fEB136jB5r/Lqo
bdYLd+jUM9wrZET/kYjiMaA8/RuRBNdyiQI/z+ZGgpXLG88ipacM9SgQd8jaGgfM
wZsQi5bcBEJttLUnaQEqufMHuZ+4KOMpNtvljNn7iOp73Aot/GWT3jjTmchXaT4k
shsZnMSdKztv/tVSPSAQTvuMwEZEowAdJRgUgSPoR+1CDrxKjavND9ht3VbfA0o/
AjVJrQ7Tol01eA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:28 2026 by rpki-client