Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
File: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft (raw, json)
Hash identifier: /OtyDLceN1+buyGcOOme3OhDEsL9gxyA2ERrCUs7/ZU=
Subject key identifier: 9D:D7:1A:03:1E:4B:5F:C6:9C:8F:1E:3A:1E:A8:6C:F9:B8:D4:7B:24
Authority key identifier: B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
Certificate issuer: /CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Certificate serial: 019CEFDED2383EA62ED3F5136B48B574CB2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
Manifest number: 0941
Signing time: Sun 15 Mar 2026 05:01:23 +0000
Manifest this update: Sun 15 Mar 2026 05:01:23 +0000
Manifest next update: Mon 16 Mar 2026 05:01:23 +0000
Files and hashes: 1: pf4imHRU2e6GfZe8rQKhzIc5LBg.roa (hash: dsJgVjGxo4nm0IH9s2QS1ktYyvlCS7K764cL/mH8BNg=)
2: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl (hash: hq/bU7iJHF8tAfU365+Pd6OLhwTbX7e5vtC44L4xGYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Mar 2026 05:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ef:de:d2:38:3e:a6:2e:d3:f5:13:6b:48:b5:74:cb:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Validity
Not Before: Mar 15 05:01:23 2026 GMT
Not After : Mar 16 05:01:23 2026 GMT
Subject: CN=9dd71a031e4b5fc69c8f1e3a1ea86cf9b8d47b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3b:f7:ff:a3:bd:65:2f:fd:19:5f:85:93:21:
57:63:6d:28:9b:a1:d2:1e:d2:ba:1e:d2:0d:74:a3:
dc:0a:81:21:15:93:b0:c2:94:de:19:e3:97:45:ff:
92:62:93:d3:b3:bb:13:03:4b:a6:0e:dd:8f:62:b7:
b9:85:dc:d2:e5:32:8f:3f:e7:cb:92:c1:0c:01:96:
a2:8f:7f:a8:b5:e0:75:c5:e5:0d:b5:ac:72:d7:49:
ee:19:5e:d1:b3:04:0e:08:cd:ff:f3:ce:f6:51:7f:
77:26:04:ff:fa:a9:e0:c4:cf:a9:26:85:de:16:24:
50:cf:e3:e8:1f:d9:c4:99:0a:b5:f3:f6:63:a4:ad:
f3:d1:20:63:5e:fe:e8:ad:50:eb:55:cb:0b:17:0f:
a7:04:06:21:a6:ae:de:fd:62:74:2c:be:4e:75:be:
e6:e4:f4:71:a7:fd:89:7e:47:8a:8a:6c:df:74:28:
1e:6e:85:64:97:4e:e4:40:59:6b:66:c1:52:2a:ea:
07:bd:c7:1e:ea:95:09:70:83:42:7b:43:c0:6b:30:
f4:c8:41:21:fe:8d:c9:53:1d:a4:bc:59:69:bc:65:
34:ff:0b:62:1a:fb:42:70:be:f0:c7:5a:33:38:5e:
d5:41:ef:e7:2a:d1:dc:2c:cf:e9:c5:9e:8a:90:66:
ec:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:D7:1A:03:1E:4B:5F:C6:9C:8F:1E:3A:1E:A8:6C:F9:B8:D4:7B:24
X509v3 Authority Key Identifier:
keyid:B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:29:21:53:7e:f4:f2:f6:28:12:8c:4c:9f:20:de:da:4e:1b:
e2:81:4a:40:9d:5b:c3:02:62:f2:05:01:68:75:e1:fb:56:3b:
ec:b6:91:bf:3a:d8:d0:ab:0c:66:6f:30:89:a5:42:78:47:03:
ae:11:38:39:e1:e6:cc:11:58:72:c3:68:03:f2:00:65:a1:1d:
ce:4b:08:16:3d:4b:1f:df:7a:43:39:58:ee:e9:98:95:a7:fb:
53:d6:ec:e9:58:bc:19:00:e2:6e:26:28:eb:38:77:0b:9f:81:
dd:77:f1:70:b0:30:78:f4:b2:9e:33:1a:f5:9a:34:ae:45:44:
68:c5:a8:0a:0c:fe:b3:51:12:04:16:59:b3:91:a3:9d:d5:2a:
2f:b6:22:c7:d1:64:59:28:b6:bb:5c:23:83:11:b7:12:3c:1c:
9a:12:c2:da:f1:f8:18:01:ef:5c:65:74:8b:27:11:a2:b1:7a:
1b:54:e1:c2:03:0c:5c:af:3b:83:0b:5f:8d:9a:42:83:ab:16:
48:e7:99:a3:3a:cc:db:cd:e1:a2:44:4d:04:d4:0b:b5:52:21:
e9:01:bd:c6:fb:2d:7d:01:46:7e:c4:a0:34:0e:d1:43:0a:05:
99:2f:15:f9:c5:09:64:ae:06:eb:62:de:e9:2f:0d:72:b0:ff:
69:16:1f:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzv3tI4PqYu0/UTa0i1dMssMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0NTNhMmIzZmI4M2Q4NmM3ODA2Y2MwNjYwZDgyOTExOWQ5
Mzc1YjQwHhcNMjYwMzE1MDUwMTIzWhcNMjYwMzE2MDUwMTIzWjAzMTEwLwYDVQQD
Eyg5ZGQ3MWEwMzFlNGI1ZmM2OWM4ZjFlM2ExZWE4NmNmOWI4ZDQ3YjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTv3/6O9ZS/9GV+FkyFXY20om6HS
HtK6HtINdKPcCoEhFZOwwpTeGeOXRf+SYpPTs7sTA0umDt2PYre5hdzS5TKPP+fL
ksEMAZaij3+oteB1xeUNtaxy10nuGV7RswQOCM3/8872UX93JgT/+qngxM+pJoXe
FiRQz+PoH9nEmQq18/ZjpK3z0SBjXv7orVDrVcsLFw+nBAYhpq7e/WJ0LL5Odb7m
5PRxp/2JfkeKimzfdCgeboVkl07kQFlrZsFSKuoHvcce6pUJcINCe0PAazD0yEEh
/o3JUx2kvFlpvGU0/wtiGvtCcL7wx1ozOF7VQe/nKtHcLM/pxZ6KkGbsTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ3XGgMeS1/GnI8eOh6obPm41HskMB8GA1UdIwQY
MBaAFLRTorP7g9hseAbMBmDYKRGdk3W0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEZPaXNfdUQyR3g0QnN3R1lOZ3BFWjJUZGJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9iZjc0OGQtYzRjYS00ZmQxLWE1OWQt
NDA2MGYyMTFmM2MzLzEvdEZPaXNfdUQyR3g0QnN3R1lOZ3BFWjJUZGJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9iZjc0OGQtYzRjYS00ZmQxLWE1OWQtNDA2MGYyMTFmM2Mz
LzEvdEZPaXNfdUQyR3g0QnN3R1lOZ3BFWjJUZGJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKSkhU370
8vYoEoxMnyDe2k4b4oFKQJ1bwwJi8gUBaHXh+1Y77LaRvzrY0KsMZm8wiaVCeEcD
rhE4OeHmzBFYcsNoA/IAZaEdzksIFj1LH996QzlY7umYlaf7U9bs6Vi8GQDibiYo
6zh3C5+B3XfxcLAwePSynjMa9Zo0rkVEaMWoCgz+s1ESBBZZs5GjndUqL7Yix9Fk
WSi2u1wjgxG3EjwcmhLC2vH4GAHvXGV0iycRorF6G1ThwgMMXK87gwtfjZpCg6sW
SOeZozrM283hokRNBNQLtVIh6QG9xvstfQFGfsSgNA7RQwoFmS8V+cUJZK4G62Le
6S8NcrD/aRYf3Q==
-----END CERTIFICATE-----
Generated at Sun Mar 15 11:23:35 2026 by rpki-client