Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
File: TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft (raw, json)
Hash identifier: rAw58A1N7AZjh5G8c+yjTLAzpVYfIMdW+IxqcDczV/Y=
Subject key identifier: 36:79:0F:C9:A4:C3:9A:38:59:91:2F:40:C6:72:D0:98:C4:0B:1A:19
Authority key identifier: 4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
Certificate issuer: /CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Certificate serial: 019D28BB075FFFFDA05C672BB81293FE5878
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
Manifest number: 0530
Signing time: Thu 26 Mar 2026 06:00:38 +0000
Manifest this update: Thu 26 Mar 2026 06:00:38 +0000
Manifest next update: Fri 27 Mar 2026 06:00:38 +0000
Files and hashes: 1: GHKMa_KSipTSmf3pI2wnkS6Tr20.roa (hash: OnS7nAX4PtptEhEkwUT11ufA7pPlMC3cHL0kMdeoeW8=)
2: TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl (hash: a6YDsxVmi1C1jBT2DTkZgYikL/etXhjj8t4CQBChaLk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:07:5f:ff:fd:a0:5c:67:2b:b8:12:93:fe:58:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Validity
Not Before: Mar 26 06:00:38 2026 GMT
Not After : Mar 27 06:00:38 2026 GMT
Subject: CN=36790fc9a4c39a3859912f40c672d098c40b1a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7d:a8:96:6e:e7:42:88:a5:00:57:2a:cb:3a:
ea:c2:35:a7:f8:1a:af:5b:26:46:db:2d:c2:9a:06:
3a:eb:c2:8c:c8:8e:36:c2:34:2e:97:8a:df:59:8f:
ed:fd:fa:9a:f0:24:df:aa:14:f3:57:43:18:c2:9b:
7a:6b:a5:f3:2f:59:b4:70:10:31:24:a4:88:b0:d7:
27:64:00:b0:15:10:0a:8a:8a:ac:ca:6b:ad:44:5b:
69:84:58:71:0a:81:c5:94:28:b1:a4:75:f5:ea:75:
c9:51:48:58:49:b5:89:3c:51:87:9f:73:29:bb:c9:
bb:f4:b5:2a:65:9a:25:98:b7:37:b9:3f:a8:25:0b:
9e:a7:f4:d9:88:95:ca:e8:3e:97:8e:3d:63:4a:d3:
bd:94:96:e8:6a:59:7e:4d:e1:01:ec:da:7a:10:8a:
63:d9:4a:87:59:e6:93:99:f9:c7:51:e9:22:8a:ab:
2c:0d:2b:00:b2:fc:b2:95:b8:b2:b6:e0:2d:c6:35:
59:9f:f9:b0:99:bb:4f:e9:ed:c9:a9:13:08:37:1d:
aa:6f:86:5f:71:16:f1:f9:a2:ee:c4:89:ca:35:9b:
06:22:bb:0a:81:7d:5e:e1:89:69:d8:8c:52:81:63:
1e:ad:8f:47:c1:d5:9b:57:51:6c:81:41:4b:40:63:
5b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:79:0F:C9:A4:C3:9A:38:59:91:2F:40:C6:72:D0:98:C4:0B:1A:19
X509v3 Authority Key Identifier:
keyid:4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:32:69:a1:bf:2a:8e:dc:94:ba:b3:f7:b7:ee:77:29:bf:97:
b1:56:76:3f:5f:98:cf:68:ea:df:ec:37:ac:8e:01:00:ab:75:
e9:f9:08:9d:74:3f:a7:3c:16:b3:a9:7d:10:1d:dc:c9:68:72:
0e:df:fb:32:a6:9c:68:5b:e1:bc:b0:da:0e:3b:56:04:ae:92:
44:52:02:fc:ea:7b:d1:82:9d:4d:a4:02:16:d7:2c:73:6c:1b:
b4:09:81:73:bd:31:71:0c:9c:fc:b1:fd:9c:41:ba:cc:3f:1b:
6f:89:7e:74:4f:51:04:a9:dc:c8:97:45:2b:e1:27:d3:8a:46:
7c:41:2f:fe:45:3d:4b:b0:7a:41:bb:19:40:23:8f:54:c6:6b:
0e:53:15:ef:44:c4:45:40:03:05:39:d2:28:cd:d1:d4:c1:0f:
4a:64:44:fd:e3:38:0a:a5:6a:75:89:1c:a6:0f:43:ff:ff:94:
62:6b:fb:39:df:45:7e:07:de:24:4d:26:e7:78:89:ba:11:e8:
a4:98:33:01:85:94:1f:88:03:c8:da:99:53:2b:a6:80:15:2f:
58:98:97:e8:c6:87:fb:52:bd:06:7c:77:87:29:be:c4:38:3c:
7a:d4:7c:f2:f7:c0:1f:cb:ad:b7:7a:b5:e0:29:2c:d4:1b:0a:
b4:ec:a6:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ouwdf//2gXGcruBKT/lh4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjZWE2NmFkZGE5ZGY5NjI1YTNkNzhkNjI4ZmIwNWUyNDg0
ZGQ4NzgwHhcNMjYwMzI2MDYwMDM4WhcNMjYwMzI3MDYwMDM4WjAzMTEwLwYDVQQD
EygzNjc5MGZjOWE0YzM5YTM4NTk5MTJmNDBjNjcyZDA5OGM0MGIxYTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo32olm7nQoilAFcqyzrqwjWn+Bqv
WyZG2y3CmgY668KMyI42wjQul4rfWY/t/fqa8CTfqhTzV0MYwpt6a6XzL1m0cBAx
JKSIsNcnZACwFRAKioqsymutRFtphFhxCoHFlCixpHX16nXJUUhYSbWJPFGHn3Mp
u8m79LUqZZolmLc3uT+oJQuep/TZiJXK6D6Xjj1jStO9lJboall+TeEB7Np6EIpj
2UqHWeaTmfnHUekiiqssDSsAsvyylbiytuAtxjVZn/mwmbtP6e3JqRMINx2qb4Zf
cRbx+aLuxInKNZsGIrsKgX1e4Ylp2IxSgWMerY9HwdWbV1FsgUFLQGNbEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDZ5D8mkw5o4WZEvQMZy0JjECxoZMB8GA1UdIwQY
MBaAFEzqZq3anfliWj141ij7BeJITdh4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVE9wbXJkcWQtV0phUFhqV0tQc0Y0a2hOMkhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi81NzBkOTMtNjk2ZC00N2ViLTkzYjEt
Nzc4MzZlMmZjYmRkLzEvVE9wbXJkcWQtV0phUFhqV0tQc0Y0a2hOMkhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi81NzBkOTMtNjk2ZC00N2ViLTkzYjEtNzc4MzZlMmZjYmRk
LzEvVE9wbXJkcWQtV0phUFhqV0tQc0Y0a2hOMkhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmTJpob8q
jtyUurP3t+53Kb+XsVZ2P1+Yz2jq3+w3rI4BAKt16fkInXQ/pzwWs6l9EB3cyWhy
Dt/7MqacaFvhvLDaDjtWBK6SRFIC/Op70YKdTaQCFtcsc2wbtAmBc70xcQyc/LH9
nEG6zD8bb4l+dE9RBKncyJdFK+En04pGfEEv/kU9S7B6QbsZQCOPVMZrDlMV70TE
RUADBTnSKM3R1MEPSmRE/eM4CqVqdYkcpg9D//+UYmv7Od9FfgfeJE0m53iJuhHo
pJgzAYWUH4gDyNqZUyumgBUvWJiX6MaH+1K9Bnx3hym+xDg8etR88vfAH8utt3q1
4Cks1BsKtOymXA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:49:59 2026 by rpki-client