Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
File: tRQMX448e8JKGtTIQGQVJj62ur8.mft (raw, json)
Hash identifier: nuzMTfOK44NHQEpj8ntVXu1K5xmO8mDJCXcWjv4fj8Y=
Subject key identifier: D2:23:AC:9E:6F:18:2E:34:C0:80:14:9A:C0:76:03:79:77:99:F2:FB
Authority key identifier: B5:14:0C:5F:8E:3C:7B:C2:4A:1A:D4:C8:40:64:15:26:3E:B6:BA:BF
Certificate issuer: /CN=b5140c5f8e3c7bc24a1ad4c8406415263eb6babf
Certificate serial: 019D333E72D39BA43BA930F0F21E201CC6D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
Manifest number: 1648
Signing time: Sat 28 Mar 2026 07:00:23 +0000
Manifest this update: Sat 28 Mar 2026 07:00:23 +0000
Manifest next update: Sun 29 Mar 2026 07:00:23 +0000
Files and hashes: 1: KPtch8_0qzZU6CkKEvFkXYq2ViY.roa (hash: ClU8AEytbQIwHPgMAzbIutrvifBxjGRmu/3pZThvLHI=)
2: tRQMX448e8JKGtTIQGQVJj62ur8.crl (hash: Uqy2wMLtw2fp9t+dRuE/ijtb9RxAYGgWIVtCWaxT1pY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:3e:72:d3:9b:a4:3b:a9:30:f0:f2:1e:20:1c:c6:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5140c5f8e3c7bc24a1ad4c8406415263eb6babf
Validity
Not Before: Mar 28 07:00:23 2026 GMT
Not After : Mar 29 07:00:23 2026 GMT
Subject: CN=d223ac9e6f182e34c080149ac07603797799f2fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c3:9f:e7:04:ac:92:96:a7:29:e6:e5:22:9c:
61:34:18:39:48:38:ea:8b:6d:2e:c4:d4:fc:ff:a2:
3d:ae:a0:f3:dc:a0:34:28:54:cb:06:79:90:55:eb:
c0:92:9a:6e:f1:e6:01:73:c7:0d:e9:85:0e:05:84:
39:28:f8:c1:75:a3:11:f5:53:ab:77:79:fa:18:f3:
0e:76:42:d1:05:4e:69:4f:5c:04:83:e3:88:55:93:
0b:cd:f7:50:ec:c0:ba:38:e3:b9:dd:73:91:85:2b:
59:19:e7:3b:6d:54:3d:d0:c8:e1:c3:4c:26:21:82:
c9:af:76:76:2b:b2:f1:a0:40:e6:ed:12:73:27:50:
c3:28:e5:d0:9e:a3:03:6b:df:e4:26:68:19:36:c9:
ff:1c:63:7a:15:17:33:28:7b:36:7c:d0:18:91:cc:
05:9e:ec:e9:cb:1b:b8:46:a2:c1:0b:f8:35:09:a5:
9a:89:26:0e:23:14:44:8b:7c:e7:ec:bb:10:3e:d0:
a1:51:57:ec:3d:e6:d4:2b:14:95:76:e6:f9:b4:ed:
b1:5e:d0:83:49:04:a3:01:ac:fa:bd:e0:57:77:41:
77:75:f6:bf:b7:0a:2e:7c:87:9c:c4:7a:ad:ae:7c:
a1:01:92:c5:1e:95:49:c6:ad:d7:8c:26:6b:5c:8e:
26:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:23:AC:9E:6F:18:2E:34:C0:80:14:9A:C0:76:03:79:77:99:F2:FB
X509v3 Authority Key Identifier:
keyid:B5:14:0C:5F:8E:3C:7B:C2:4A:1A:D4:C8:40:64:15:26:3E:B6:BA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRQMX448e8JKGtTIQGQVJj62ur8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/94b73a-a3d5-40c4-9224-cdc2490393a6/1/tRQMX448e8JKGtTIQGQVJj62ur8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:36:d8:8c:26:7b:e8:44:a5:8e:4b:b5:77:f6:ef:16:35:e3:
af:58:98:7c:00:42:20:83:ed:cc:52:d1:4e:9a:8e:0c:ec:ac:
c7:88:c5:5e:23:c5:f1:3e:5d:18:db:eb:f7:b8:29:24:8a:2b:
72:24:ef:2f:e6:72:dd:62:48:5a:4c:cd:eb:c6:5b:44:05:c5:
08:e7:64:f0:b8:d9:19:85:0c:e5:88:a6:5c:4f:eb:9d:2a:df:
a9:8a:fe:dd:a0:a7:d5:da:09:7f:e3:42:8b:4f:bf:89:66:5a:
0d:dc:f2:dd:57:32:f3:bf:cc:05:af:2e:be:03:1d:75:77:37:
cf:de:51:eb:30:0b:57:2d:c7:bb:bc:8a:05:63:f7:e0:ee:93:
64:3f:d0:2e:e9:04:3c:22:15:8c:6f:44:02:da:45:3a:9f:41:
18:94:fc:1a:0e:b9:a0:2c:0d:89:99:22:8a:8b:e6:41:18:67:
50:8b:68:d9:23:9a:40:74:9d:5f:d1:5e:2a:39:60:18:72:aa:
0e:ae:1d:3d:1e:a6:eb:f0:9f:99:28:01:c3:3f:67:ac:1d:0e:
9f:9d:2d:62:2d:a0:e9:38:91:ee:69:cf:53:d6:4f:b6:20:cc:
7c:2a:8a:6d:ab:a7:a8:15:87:e9:c4:26:4d:c2:b3:86:cb:1a:
27:89:5c:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0zPnLTm6Q7qTDw8h4gHMbUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1MTQwYzVmOGUzYzdiYzI0YTFhZDRjODQwNjQxNTI2M2Vi
NmJhYmYwHhcNMjYwMzI4MDcwMDIzWhcNMjYwMzI5MDcwMDIzWjAzMTEwLwYDVQQD
EyhkMjIzYWM5ZTZmMTgyZTM0YzA4MDE0OWFjMDc2MDM3OTc3OTlmMmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8Of5wSskpanKeblIpxhNBg5SDjq
i20uxNT8/6I9rqDz3KA0KFTLBnmQVevAkppu8eYBc8cN6YUOBYQ5KPjBdaMR9VOr
d3n6GPMOdkLRBU5pT1wEg+OIVZMLzfdQ7MC6OOO53XORhStZGec7bVQ90Mjhw0wm
IYLJr3Z2K7LxoEDm7RJzJ1DDKOXQnqMDa9/kJmgZNsn/HGN6FRczKHs2fNAYkcwF
nuzpyxu4RqLBC/g1CaWaiSYOIxREi3zn7LsQPtChUVfsPebUKxSVdub5tO2xXtCD
SQSjAaz6veBXd0F3dfa/twoufIecxHqtrnyhAZLFHpVJxq3XjCZrXI4mEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNIjrJ5vGC40wIAUmsB2A3l3mfL7MB8GA1UdIwQY
MBaAFLUUDF+OPHvCShrUyEBkFSY+trq/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFJRTVg0NDhlOEpLR3RUSVFHUVZKajYydXI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85NGI3M2EtYTNkNS00MGM0LTkyMjQt
Y2RjMjQ5MDM5M2E2LzEvdFJRTVg0NDhlOEpLR3RUSVFHUVZKajYydXI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC85NGI3M2EtYTNkNS00MGM0LTkyMjQtY2RjMjQ5MDM5M2E2
LzEvdFJRTVg0NDhlOEpLR3RUSVFHUVZKajYydXI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUDbYjCZ7
6ESljku1d/bvFjXjr1iYfABCIIPtzFLRTpqODOysx4jFXiPF8T5dGNvr97gpJIor
ciTvL+Zy3WJIWkzN68ZbRAXFCOdk8LjZGYUM5YimXE/rnSrfqYr+3aCn1doJf+NC
i0+/iWZaDdzy3Vcy87/MBa8uvgMddXc3z95R6zALVy3Hu7yKBWP34O6TZD/QLukE
PCIVjG9EAtpFOp9BGJT8Gg65oCwNiZkiiovmQRhnUIto2SOaQHSdX9FeKjlgGHKq
Dq4dPR6m6/CfmSgBwz9nrB0On50tYi2g6TiR7mnPU9ZPtiDMfCqKbaunqBWH6cQm
TcKzhssaJ4lchg==
-----END CERTIFICATE-----
Generated at Sat Mar 28 12:21:06 2026 by rpki-client