Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
File: 1-TmwPxKU69NaOxXWldfpH4y0H6A.mft (raw, json)
Hash identifier: op7joD2VYrrIMi8cBRumLWKvLlNxoesqrMHdqPv0jkM=
Subject key identifier: E8:DF:EA:F8:72:A5:63:00:47:53:60:23:DB:7E:51:E1:9C:AB:90:7A
Authority key identifier: F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
Certificate issuer: /CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Certificate serial: 019D2884990620E2F91873B887BBE5C65B44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
Manifest number: 14D3
Signing time: Thu 26 Mar 2026 05:01:11 +0000
Manifest this update: Thu 26 Mar 2026 05:01:11 +0000
Manifest next update: Fri 27 Mar 2026 05:01:11 +0000
Files and hashes: 1: 1-TmwPxKU69NaOxXWldfpH4y0H6A.crl (hash: Xa7FJz1gpzPqg9GBugBHpTmyUwIlBFxpyh5C/RinKwA=)
2: fBLAHwUkRrn6HYBRnTV7FYQGNDQ.roa (hash: 2J5IIevOI4AOjVlKsCvjgqwg6VuZoErPwilBziOfEkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:99:06:20:e2:f9:18:73:b8:87:bb:e5:c6:5b:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Validity
Not Before: Mar 26 05:01:11 2026 GMT
Not After : Mar 27 05:01:11 2026 GMT
Subject: CN=e8dfeaf872a5630047536023db7e51e19cab907a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:44:22:b5:b2:e0:bc:46:36:03:70:b9:b4:53:
63:76:56:10:e4:72:81:5c:f2:99:e6:f1:93:f5:0c:
34:5d:c4:87:4e:bc:25:fa:f7:ef:38:62:2c:ec:d7:
09:58:fc:e9:ae:c2:fc:7d:22:0c:17:1c:d9:96:7e:
cb:f3:07:1a:8a:7f:4f:2d:f4:48:a5:b1:0a:58:3d:
50:1a:3b:a5:53:88:1f:a9:f4:4c:6f:0e:e4:be:c1:
ec:c4:82:7e:7e:63:86:71:b1:ed:b0:a8:63:4b:75:
34:1f:a9:8a:a7:45:eb:d6:73:b8:5c:5d:4c:e0:24:
a2:21:95:31:04:07:8e:9d:89:a2:e8:ab:a3:53:18:
f9:e8:3a:c7:ee:c1:cd:b2:49:4e:17:93:ca:85:63:
99:ef:a5:8b:dc:55:15:6b:bc:1a:8a:b9:56:d8:ca:
4d:0f:c5:92:22:7d:a5:40:ba:de:25:08:b7:da:8e:
66:f7:2d:67:6f:e6:38:ff:09:65:6d:6a:57:40:15:
40:e5:02:1c:ed:d6:c9:8a:b1:fa:0c:c8:f5:24:30:
75:5b:b9:a9:59:bb:5c:5c:b4:ff:81:7e:91:3e:8a:
bb:35:72:21:77:1d:58:43:4f:5d:e0:b6:2f:76:fd:
76:8f:44:15:16:10:61:a6:3a:dd:25:1c:c5:8b:51:
6e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:DF:EA:F8:72:A5:63:00:47:53:60:23:DB:7E:51:E1:9C:AB:90:7A
X509v3 Authority Key Identifier:
keyid:F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:8d:82:55:0f:bf:ba:78:8f:d1:75:89:2a:d5:64:d0:42:ad:
47:f3:79:c5:a1:c6:fb:eb:94:b0:c8:99:36:9b:ef:52:9f:f9:
cb:c1:77:95:0e:7f:db:d7:ee:fa:c8:9a:ff:c7:aa:7b:f4:ab:
22:6f:94:b1:d6:6b:2b:86:fc:21:cc:be:b6:ea:fd:e3:5e:7c:
db:de:22:00:ae:31:36:81:32:23:25:a1:8c:b0:62:78:2d:2b:
f6:85:1b:81:f1:6a:c0:b4:33:95:4e:c1:c7:2a:8e:7a:6f:01:
4c:8e:0b:30:6c:bb:25:07:e9:21:b7:51:8b:b2:e1:96:8e:c5:
77:db:ae:e6:af:69:cc:4d:b8:27:a1:03:6f:66:95:4c:98:2b:
1e:78:92:29:37:4f:31:27:1d:ae:b7:0d:3b:57:65:d4:f5:86:
e9:5e:e7:a4:3d:89:32:f3:a0:38:44:fc:fd:9c:b3:ff:ee:b1:
12:f4:8c:57:32:2f:75:88:59:19:56:13:d3:c1:35:74:07:53:
ce:95:a1:b7:4f:4c:f2:85:fd:42:f7:dc:c0:64:6b:d0:4f:9b:
94:cf:14:29:a0:ac:22:cb:61:c9:79:98:5b:ca:2f:08:11:eb:
1f:12:64:22:a2:6b:00:1e:5b:f1:0d:08:01:a4:0b:1a:2f:da:
e8:c9:85:a2
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZ0ohJkGIOL5GHO4h7vlxltEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5MzliMDNmMTI5NGViZDM1YTNiMTVkNjk1ZDdlOTFmOGNi
NDFmYTAwHhcNMjYwMzI2MDUwMTExWhcNMjYwMzI3MDUwMTExWjAzMTEwLwYDVQQD
EyhlOGRmZWFmODcyYTU2MzAwNDc1MzYwMjNkYjdlNTFlMTljYWI5MDdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskQitbLgvEY2A3C5tFNjdlYQ5HKB
XPKZ5vGT9Qw0XcSHTrwl+vfvOGIs7NcJWPzprsL8fSIMFxzZln7L8wcain9PLfRI
pbEKWD1QGjulU4gfqfRMbw7kvsHsxIJ+fmOGcbHtsKhjS3U0H6mKp0Xr1nO4XF1M
4CSiIZUxBAeOnYmi6KujUxj56DrH7sHNsklOF5PKhWOZ76WL3FUVa7wairlW2MpN
D8WSIn2lQLreJQi32o5m9y1nb+Y4/wllbWpXQBVA5QIc7dbJirH6DMj1JDB1W7mp
WbtcXLT/gX6RPoq7NXIhdx1YQ09d4LYvdv12j0QVFhBhpjrdJRzFi1FuIwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFOjf6vhypWMAR1NgI9t+UeGcq5B6MB8GA1UdIwQY
MBaAFPk5sD8SlOvTWjsV1pXX6R+MtB+gMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1UbXdQeEtVNjlOYU94WFdsZGZwSDR5MEg2QS5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcvMGM5ZGU4LWNlZjItNGQ4ZC1hOTIw
LTc2NTk0YTE5MTc3Yy8xLzEtVG13UHhLVTY5TmFPeFhXbGRmcEg0eTBINkEubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxUL2E3LzBjOWRlOC1jZWYyLTRkOGQtYTkyMC03NjU5NGExOTE3
N2MvMS8xLVRtd1B4S1U2OU5hT3hYV2xkZnBINHkwSDZBLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcY2C
VQ+/uniP0XWJKtVk0EKtR/N5xaHG++uUsMiZNpvvUp/5y8F3lQ5/29fu+sia/8eq
e/SrIm+UsdZrK4b8Icy+tur94158294iAK4xNoEyIyWhjLBieC0r9oUbgfFqwLQz
lU7BxyqOem8BTI4LMGy7JQfpIbdRi7Lhlo7Fd9uu5q9pzE24J6EDb2aVTJgrHniS
KTdPMScdrrcNO1dl1PWG6V7npD2JMvOgOET8/Zyz/+6xEvSMVzIvdYhZGVYT08E1
dAdTzpWht09M8oX9QvfcwGRr0E+blM8UKaCsIsthyXmYW8ovCBHrHxJkIqJrAB5b
8Q0IAaQLGi/a6MmFog==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:15:39 2026 by rpki-client