Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
File: TnzINx7SS6z2esqLkCzucGr8Yks.mft (raw, json)
Hash identifier: BBbORPWLW0leIipZUDi9CAbyND+PxquZshmB8+AlKkA=
Subject key identifier: 23:E5:3F:F1:F8:F6:94:FD:B3:76:66:01:8C:84:0A:FD:CC:76:75:44
Authority key identifier: 4E:7C:C8:37:1E:D2:4B:AC:F6:7A:CA:8B:90:2C:EE:70:6A:FC:62:4B
Certificate issuer: /CN=4e7cc8371ed24bacf67aca8b902cee706afc624b
Certificate serial: 019D371B56DD77C98AB4208A44DFD88C0FF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 01:00:31 +0000
Manifest this update: Sun 29 Mar 2026 01:00:31 +0000
Manifest next update: Mon 30 Mar 2026 01:00:31 +0000
Files and hashes: 1: TnzINx7SS6z2esqLkCzucGr8Yks.crl (hash: 6OmqNEBQ3apTh/zH4pLcsQLQn3sgHYUf+rEmIgp7kaU=)
2: wlxifpAvi3KnZGmbDR-ny66_Gks.roa (hash: T7gVPusKxBgkDKZBte1yrg8sQCBMVaEOfioHHj0VULo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:56:dd:77:c9:8a:b4:20:8a:44:df:d8:8c:0f:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e7cc8371ed24bacf67aca8b902cee706afc624b
Validity
Not Before: Mar 29 01:00:31 2026 GMT
Not After : Mar 30 01:00:31 2026 GMT
Subject: CN=23e53ff1f8f694fdb37666018c840afdcc767544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f1:99:e3:05:78:63:3c:d5:43:6a:ed:b8:da:
8a:9a:ce:71:59:e3:17:7b:f1:8c:0f:92:0c:d8:d9:
88:73:e9:27:ef:cc:26:c9:2a:93:eb:38:e1:a0:46:
07:6d:a8:9f:11:80:bf:6c:41:61:0a:6b:be:25:fa:
d9:73:70:a2:5d:4e:1f:ea:5a:b9:75:34:d3:0d:2e:
93:f1:f9:c9:ac:47:5d:e2:b0:24:df:48:7f:c1:15:
62:94:b8:22:75:65:c9:22:eb:d6:4a:19:a1:f5:6a:
cc:f7:59:6a:27:ff:00:9b:4a:17:ce:9c:80:b5:14:
1b:be:21:b7:04:02:28:76:4e:2b:1d:10:c3:6b:22:
a6:91:eb:ef:ec:5c:e5:11:78:3f:ea:1c:e1:05:6d:
5b:88:a4:dc:63:f9:b2:96:d3:41:54:88:48:04:82:
4e:e9:dc:7d:38:9a:fe:70:8b:58:ee:2d:79:6d:16:
29:9f:48:01:2f:89:bb:a8:f0:55:a5:db:39:c7:07:
3f:ed:ec:61:52:75:99:29:99:e3:97:42:a5:ac:4d:
32:fa:27:06:fb:2b:0a:0a:ab:99:3e:c6:06:43:4b:
c0:51:10:8f:e1:97:1e:80:9f:e4:36:e5:ed:f7:cd:
18:6e:f8:8b:bb:9e:35:4e:80:60:79:08:b6:9b:61:
f0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:E5:3F:F1:F8:F6:94:FD:B3:76:66:01:8C:84:0A:FD:CC:76:75:44
X509v3 Authority Key Identifier:
keyid:4E:7C:C8:37:1E:D2:4B:AC:F6:7A:CA:8B:90:2C:EE:70:6A:FC:62:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TnzINx7SS6z2esqLkCzucGr8Yks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0b4cdf-b486-4a58-800d-8ed5a79de835/1/TnzINx7SS6z2esqLkCzucGr8Yks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:f7:a6:42:fb:77:85:c7:55:4c:2d:7d:a6:55:95:fc:c9:1b:
3a:78:71:e0:6f:d8:66:9a:7a:0c:77:09:36:4c:78:0c:b2:ba:
a2:27:8c:14:db:0c:ab:0c:e5:d8:70:f4:19:b0:b6:6b:82:6b:
12:c4:ec:14:7e:9e:6e:d4:10:d3:3d:9b:4d:21:1d:e7:76:a7:
60:5a:00:36:a7:89:6a:78:da:e3:c1:20:fa:94:97:07:d5:d1:
25:a0:85:58:15:ec:5f:62:6d:38:92:7d:80:7c:37:86:32:14:
a1:3d:cd:a2:8f:15:c6:4e:4f:0c:b3:cf:2c:f9:e4:89:9b:0a:
bf:0d:be:75:5a:66:e7:59:b5:d0:8f:d6:d6:b8:6d:1a:e1:81:
03:9e:8d:13:9a:bc:54:2f:ff:22:91:11:ea:8c:36:8e:dd:25:
71:18:c9:b0:ed:be:7f:91:5b:49:ec:6b:f1:80:5d:06:7e:11:
90:84:55:a6:44:8c:79:a7:f5:4f:65:3f:af:bc:c5:36:c5:87:
63:28:b8:6b:31:10:4e:e1:b8:d0:27:15:ca:f2:05:df:5b:0d:
b6:91:94:ef:d0:d5:44:e2:80:2e:d1:14:b1:9d:fb:17:3e:82:
38:5b:81:07:89:92:bf:d3:d2:05:59:d5:8a:1a:38:ed:86:b7:
a3:98:83:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03G1bdd8mKtCCKRN/YjA/xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlN2NjODM3MWVkMjRiYWNmNjdhY2E4YjkwMmNlZTcwNmFm
YzYyNGIwHhcNMjYwMzI5MDEwMDMxWhcNMjYwMzMwMDEwMDMxWjAzMTEwLwYDVQQD
EygyM2U1M2ZmMWY4ZjY5NGZkYjM3NjY2MDE4Yzg0MGFmZGNjNzY3NTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/GZ4wV4YzzVQ2rtuNqKms5xWeMX
e/GMD5IM2NmIc+kn78wmySqT6zjhoEYHbaifEYC/bEFhCmu+JfrZc3CiXU4f6lq5
dTTTDS6T8fnJrEdd4rAk30h/wRVilLgidWXJIuvWShmh9WrM91lqJ/8Am0oXzpyA
tRQbviG3BAIodk4rHRDDayKmkevv7FzlEXg/6hzhBW1biKTcY/myltNBVIhIBIJO
6dx9OJr+cItY7i15bRYpn0gBL4m7qPBVpds5xwc/7exhUnWZKZnjl0KlrE0y+icG
+ysKCquZPsYGQ0vAURCP4ZcegJ/kNuXt980YbviLu541ToBgeQi2m2HwnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCPlP/H49pT9s3ZmAYyECv3MdnVEMB8GA1UdIwQY
MBaAFE58yDce0kus9nrKi5As7nBq/GJLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVG56SU54N1NTNnoyZXNxTGtDenVjR3I4WWtzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8wYjRjZGYtYjQ4Ni00YTU4LTgwMGQt
OGVkNWE3OWRlODM1LzEvVG56SU54N1NTNnoyZXNxTGtDenVjR3I4WWtzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8wYjRjZGYtYjQ4Ni00YTU4LTgwMGQtOGVkNWE3OWRlODM1
LzEvVG56SU54N1NTNnoyZXNxTGtDenVjR3I4WWtzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc/emQvt3
hcdVTC19plWV/MkbOnhx4G/YZpp6DHcJNkx4DLK6oieMFNsMqwzl2HD0GbC2a4Jr
EsTsFH6ebtQQ0z2bTSEd53anYFoANqeJanja48Eg+pSXB9XRJaCFWBXsX2JtOJJ9
gHw3hjIUoT3Noo8Vxk5PDLPPLPnkiZsKvw2+dVpm51m10I/W1rhtGuGBA56NE5q8
VC//IpER6ow2jt0lcRjJsO2+f5FbSexr8YBdBn4RkIRVpkSMeaf1T2U/r7zFNsWH
Yyi4azEQTuG40CcVyvIF31sNtpGU79DVROKALtEUsZ37Fz6COFuBB4mSv9PSBVnV
iho47Ya3o5iDSg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:21 2026 by rpki-client