Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json)
Hash identifier: ZzONHBq5KU1TvtuscqZonh8HhaIrURsnJgE9xk3ciBk=
Subject key identifier: 45:81:9B:D2:23:BB:14:8D:0E:DC:A4:5C:5A:D6:79:1B:94:BF:26:FC
Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Certificate serial: 019D389C43A7A2A19B37B7A5562447FED548
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 08:00:58 +0000
Manifest this update: Sun 29 Mar 2026 08:00:58 +0000
Manifest next update: Mon 30 Mar 2026 08:00:58 +0000
Files and hashes: 1: awToJLBsyk0T4IcWFD08IQBrMn8.roa (hash: D6jszyrJ34yNygrEuO9QJPaleqlFTsrRTxhepr3reTI=)
2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: 16GZJh+Qy6PVkp2/2NWPbC3YWVXULJj9cMZjrlXkxWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:43:a7:a2:a1:9b:37:b7:a5:56:24:47:fe:d5:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a
Validity
Not Before: Mar 29 08:00:58 2026 GMT
Not After : Mar 30 08:00:58 2026 GMT
Subject: CN=45819bd223bb148d0edca45c5ad6791b94bf26fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ce:8f:1c:72:c0:cc:60:6d:dc:8c:64:3b:d4:
29:ce:6a:fd:f6:7c:7b:c1:73:8f:83:9a:6c:70:f5:
b3:24:77:93:44:d4:be:30:22:16:42:72:2a:7b:bf:
bd:b2:08:25:9b:e3:26:b0:d5:7f:17:24:ad:ed:f0:
0d:c7:f1:21:e1:0a:d5:f0:89:60:75:99:18:9e:ff:
8e:01:5f:41:16:92:80:dd:4a:ba:e5:85:7c:10:85:
a0:83:8a:ab:4c:4b:14:e0:b4:63:09:f4:99:4a:ba:
e3:6e:b2:65:6d:22:d0:37:f5:40:36:f1:8d:bb:9b:
a7:a2:a2:2b:b9:0e:cb:c0:a4:13:23:e3:22:41:6c:
d2:05:28:d7:23:d3:14:8c:13:1f:1b:c1:48:f1:4f:
11:56:c2:78:23:bc:7b:02:5a:11:ad:fd:d8:0b:99:
7c:bc:29:cc:0e:bb:74:5d:89:3e:b4:c3:1e:5d:1d:
9b:94:36:0f:5c:1c:cc:b3:a2:ee:f6:d5:4e:a7:9b:
e9:e9:01:e9:1d:bf:35:bc:65:36:06:27:c8:04:07:
f2:8d:12:08:c4:9c:b7:22:6d:c2:95:fe:a4:55:88:
52:5d:6f:2b:cb:33:16:80:d0:6a:b5:04:9d:f8:1f:
96:b2:aa:b6:24:9d:13:f9:96:0e:1b:52:49:a7:9d:
a1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:81:9B:D2:23:BB:14:8D:0E:DC:A4:5C:5A:D6:79:1B:94:BF:26:FC
X509v3 Authority Key Identifier:
keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:26:ab:41:9e:1c:ed:b6:b1:48:2f:c5:de:c9:5a:72:7f:aa:
3e:37:b5:19:6b:f1:a8:ea:ef:29:8f:92:54:1b:1d:1c:6c:2a:
c2:25:92:16:19:06:73:70:d7:73:61:2a:f9:b8:50:58:db:23:
18:91:83:01:03:7f:c6:06:72:54:b1:bb:20:d7:76:a5:fe:1d:
b7:a7:e2:fc:cb:85:b9:18:76:24:82:b9:a1:c1:9c:6e:a5:e7:
f0:6b:b5:df:6c:e9:13:73:53:f9:57:2f:12:68:26:15:bc:4d:
9a:0b:d1:62:bb:cc:09:3f:63:0b:d3:53:0a:a0:5b:74:af:49:
0c:a1:94:2e:97:40:a4:de:45:2e:35:e8:5d:9e:a5:e6:a0:8b:
e6:1e:1d:31:64:87:78:e4:5a:ef:6e:c1:06:e1:f8:96:25:2d:
43:0d:e8:e1:d0:96:ff:de:43:f8:2d:bd:b7:20:c3:91:ce:af:
f9:9c:f7:24:9e:df:8c:58:03:0f:72:c8:dd:0e:6b:43:9f:76:
07:10:cf:36:61:58:ba:28:fe:50:ff:b4:ee:a1:24:45:3a:6e:
23:73:da:2a:90:8a:4a:5d:cf:49:eb:57:3d:6c:92:0d:f2:f7:
03:87:1d:53:de:65:1d:3c:4c:51:27:03:87:33:33:21:53:ca:
be:6f:23:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04nEOnoqGbN7elViRH/tVIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0YTdkMDU0ODJiODRkM2JiNjA0ZjA5OWJjYWY5ZTdlZDM0
Njg4OWEwHhcNMjYwMzI5MDgwMDU4WhcNMjYwMzMwMDgwMDU4WjAzMTEwLwYDVQQD
Eyg0NTgxOWJkMjIzYmIxNDhkMGVkY2E0NWM1YWQ2NzkxYjk0YmYyNmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqc6PHHLAzGBt3IxkO9Qpzmr99nx7
wXOPg5pscPWzJHeTRNS+MCIWQnIqe7+9sgglm+MmsNV/FySt7fANx/Eh4QrV8Ilg
dZkYnv+OAV9BFpKA3Uq65YV8EIWgg4qrTEsU4LRjCfSZSrrjbrJlbSLQN/VANvGN
u5unoqIruQ7LwKQTI+MiQWzSBSjXI9MUjBMfG8FI8U8RVsJ4I7x7AloRrf3YC5l8
vCnMDrt0XYk+tMMeXR2blDYPXBzMs6Lu9tVOp5vp6QHpHb81vGU2BifIBAfyjRII
xJy3Im3Clf6kVYhSXW8ryzMWgNBqtQSd+B+Wsqq2JJ0T+ZYOG1JJp52hzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEWBm9IjuxSNDtykXFrWeRuUvyb8MB8GA1UdIwQY
MBaAFLSn0FSCuE07tgTwmbyvnn7TRoiaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAt
YzUzMjE5NWVlZjQ5LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAtYzUzMjE5NWVlZjQ5
LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnSarQZ4c
7baxSC/F3slacn+qPje1GWvxqOrvKY+SVBsdHGwqwiWSFhkGc3DXc2Eq+bhQWNsj
GJGDAQN/xgZyVLG7INd2pf4dt6fi/MuFuRh2JIK5ocGcbqXn8Gu132zpE3NT+Vcv
EmgmFbxNmgvRYrvMCT9jC9NTCqBbdK9JDKGULpdApN5FLjXoXZ6l5qCL5h4dMWSH
eORa727BBuH4liUtQw3o4dCW/95D+C29tyDDkc6v+Zz3JJ7fjFgDD3LI3Q5rQ592
BxDPNmFYuij+UP+07qEkRTpuI3PaKpCKSl3PSetXPWySDfL3A4cdU95lHTxMUScD
hzMzIVPKvm8jYA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:10 2026 by rpki-client