Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
File: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft (raw, json)
Hash identifier: F+lb05J/tY6HaE73XuQrlIeoGiRGrJzROqmW/FaqXoM=
Subject key identifier: C7:2F:38:6F:76:C3:CC:6D:D7:1F:5E:26:F7:76:57:0C:1B:53:8B:30
Authority key identifier: 4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
Certificate issuer: /CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Certificate serial: 019CE447FCB0AEE09212C4E1B7A68418C11A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
Manifest number: 0F4A
Signing time: Thu 12 Mar 2026 23:00:48 +0000
Manifest this update: Thu 12 Mar 2026 23:00:48 +0000
Manifest next update: Fri 13 Mar 2026 23:00:48 +0000
Files and hashes: 1: Mw_jlWOX47w8ZEpuvWB3HZ4VYvQ.roa (hash: sfhBIh2mCq2mgYz96ptYyTEOfSgYQ6EGFDmjhxXGLyI=)
2: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl (hash: WmgwKVWDowkHSY589UYBwfn/uoWgqRC4m3WNMl0KlYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 23:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:47:fc:b0:ae:e0:92:12:c4:e1:b7:a6:84:18:c1:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5
Validity
Not Before: Mar 12 23:00:48 2026 GMT
Not After : Mar 13 23:00:48 2026 GMT
Subject: CN=c72f386f76c3cc6dd71f5e26f776570c1b538b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:66:3e:4c:61:5a:59:e6:8e:7f:29:ed:01:7b:
c4:f9:2c:2c:92:00:36:af:62:9b:db:ed:f5:7d:72:
79:94:db:39:c5:da:21:c1:82:ae:6c:2a:44:d6:eb:
18:5f:58:50:e3:70:d6:ab:0c:a5:01:8b:89:68:6b:
21:d9:1b:1c:50:66:0a:8e:56:8d:62:d2:67:8d:e5:
7c:88:e3:fb:f2:a3:b1:81:01:9b:17:2a:61:0f:1e:
74:b6:d9:ad:e5:9b:b6:85:d5:61:8f:ab:21:e7:9e:
37:b3:34:0a:49:9c:53:ac:b3:18:d7:43:05:08:ca:
9f:ff:98:aa:45:85:0f:d9:70:28:9c:dd:b7:a6:ce:
59:ce:c6:15:75:48:d5:ee:48:4b:fb:94:32:19:b5:
08:30:8a:c6:7d:b0:42:97:a4:75:42:4d:72:19:ae:
d3:04:11:6f:85:ae:7b:99:c8:13:ce:86:8f:3f:d7:
cf:05:53:a4:bf:a2:aa:c4:84:6d:b9:83:78:2d:c9:
01:6b:20:ba:58:79:4b:7b:2d:46:52:65:0a:15:7f:
40:df:97:df:0c:f7:69:f7:1f:08:d0:ba:55:f2:e2:
df:ac:c2:3f:98:d8:89:7d:7e:54:9f:d5:6c:33:41:
b4:79:f0:d1:bc:9f:53:37:de:d4:0d:6a:1d:67:5b:
eb:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:2F:38:6F:76:C3:CC:6D:D7:1F:5E:26:F7:76:57:0C:1B:53:8B:30
X509v3 Authority Key Identifier:
keyid:4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:d6:db:7d:b0:f0:ab:fc:95:ae:08:f5:63:ca:ac:ed:25:cb:
4d:d4:9b:2a:ff:11:f3:92:6b:7e:87:2f:1a:f9:8e:2f:4a:3c:
3c:79:17:fd:d8:39:7b:30:7c:ee:f0:a0:30:60:e2:e9:8d:2e:
5c:3a:80:d7:1e:6b:28:df:db:32:8f:1d:e2:0c:6c:5a:2f:60:
c4:4c:ba:ba:b4:a3:3e:00:14:24:69:c7:b2:c5:99:61:43:11:
79:3f:e5:97:cd:52:ec:e8:fa:40:6e:cb:7b:59:8e:32:60:5a:
15:31:1c:8c:00:4e:3b:eb:cb:44:42:b6:6a:19:23:0f:9e:65:
1c:64:51:1b:a2:da:e1:e8:82:3f:d2:f8:1d:58:9b:80:1f:06:
13:72:66:79:6a:fa:67:7e:d7:2e:f0:33:06:2f:c5:7d:9f:5f:
0f:e7:f7:0d:1b:bf:2e:de:77:9d:5d:a3:96:d8:39:6a:dc:5a:
87:73:7d:36:3b:ea:e0:ad:ba:e8:36:ce:85:1f:d1:92:78:0a:
d7:3b:15:54:03:d2:42:f7:fb:ac:00:6c:e6:e0:e4:ff:33:e7:
54:04:45:11:93:0e:4f:79:74:fd:66:f4:ac:60:35:56:5c:3f:
33:62:73:61:5e:44:ed:fe:45:b5:d1:fd:04:37:61:24:7c:fd:
b4:f4:dd:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzkR/ywruCSEsTht6aEGMEaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkYmUzMWI2YmVkYzUxZjJhYTJlYzBhNjQ1M2YyZTQzNWU4
MDhmYjUwHhcNMjYwMzEyMjMwMDQ4WhcNMjYwMzEzMjMwMDQ4WjAzMTEwLwYDVQQD
EyhjNzJmMzg2Zjc2YzNjYzZkZDcxZjVlMjZmNzc2NTcwYzFiNTM4YjMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWY+TGFaWeaOfyntAXvE+SwskgA2
r2Kb2+31fXJ5lNs5xdohwYKubCpE1usYX1hQ43DWqwylAYuJaGsh2RscUGYKjlaN
YtJnjeV8iOP78qOxgQGbFyphDx50ttmt5Zu2hdVhj6sh5543szQKSZxTrLMY10MF
CMqf/5iqRYUP2XAonN23ps5ZzsYVdUjV7khL+5QyGbUIMIrGfbBCl6R1Qk1yGa7T
BBFvha57mcgTzoaPP9fPBVOkv6KqxIRtuYN4LckBayC6WHlLey1GUmUKFX9A35ff
DPdp9x8I0LpV8uLfrMI/mNiJfX5Un9VsM0G0efDRvJ9TN97UDWodZ1vrXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMcvOG92w8xt1x9eJvd2VwwbU4swMB8GA1UdIwQY
MBaAFE2+Mba+3FHyqi7ApkU/LkNegI+1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8xZDI3ODgtZGE0MC00MzFhLTk3ZDAt
ZmJkNDZkOWNhMzcyLzEvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8xZDI3ODgtZGE0MC00MzFhLTk3ZDAtZmJkNDZkOWNhMzcy
LzEvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA09bbfbDw
q/yVrgj1Y8qs7SXLTdSbKv8R85JrfocvGvmOL0o8PHkX/dg5ezB87vCgMGDi6Y0u
XDqA1x5rKN/bMo8d4gxsWi9gxEy6urSjPgAUJGnHssWZYUMReT/ll81S7Oj6QG7L
e1mOMmBaFTEcjABOO+vLREK2ahkjD55lHGRRG6La4eiCP9L4HVibgB8GE3JmeWr6
Z37XLvAzBi/FfZ9fD+f3DRu/Lt53nV2jltg5atxah3N9Njvq4K266DbOhR/RkngK
1zsVVAPSQvf7rABs5uDk/zPnVARFEZMOT3l0/Wb0rGA1Vlw/M2JzYV5E7f5FtdH9
BDdhJHz9tPTdKQ==
-----END CERTIFICATE-----
Generated at Fri Mar 13 09:56:59 2026 by rpki-client