Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
File: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft (raw, json)
Hash identifier: NkU5RkmTA7Gv5qZX0qVCJDjXpX7TUqVgGCX6SNf9trE=
Subject key identifier: CD:E6:52:61:CB:1B:D9:CD:99:40:C8:3E:A4:22:64:B6:DA:F1:C3:09
Authority key identifier: B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
Certificate issuer: /CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Certificate serial: 019EED7DDA440771B9B88DA3FA067555D865
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
Manifest number: 1976
Signing time: Mon 22 Jun 2026 04:01:48 +0000
Manifest this update: Mon 22 Jun 2026 04:01:48 +0000
Manifest next update: Tue 23 Jun 2026 04:01:48 +0000
Files and hashes: 1: VIjK-dF1RkU8oL9JO5ackgQvQqk.roa (hash: EuZj5CNsImrt381xNpJVt+ICs2RyaQvBUySYpPa5Un8=)
2: tBz0by2NzKIkh_m261Gzm8WL1fA.roa (hash: HsCmK+FnFFM5EN4UPd625pAFTouSWoOu/R7Evk3aoN0=)
3: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl (hash: OssU7Z3miwDDCsVL4EWsmHZFjdRoCDYoWK+O2+pIwtQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 04:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ed:7d:da:44:07:71:b9:b8:8d:a3:fa:06:75:55:d8:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f
Validity
Not Before: Jun 22 04:01:48 2026 GMT
Not After : Jun 23 04:01:48 2026 GMT
Subject: CN=cde65261cb1bd9cd9940c83ea42264b6daf1c309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:78:a3:c5:53:21:b3:94:ac:2e:c6:ed:44:83:
2f:81:0d:6f:d5:3d:9b:b4:4d:d6:95:d5:e0:66:f1:
b9:05:98:51:39:51:08:d2:3d:3c:fc:bc:35:cb:48:
3d:60:bb:e6:d2:bf:b5:00:d1:94:37:f9:1d:8b:1c:
7f:51:26:71:09:ce:f5:ca:f9:82:16:4e:42:79:7f:
04:05:51:76:45:a4:c1:52:6c:1a:86:15:11:07:24:
1a:05:46:17:a7:4b:a1:a8:56:2d:7c:02:40:a2:9a:
51:e9:8e:5f:67:0e:04:72:d0:21:a6:a4:d5:1c:c7:
4b:3a:fb:0f:62:a4:8e:02:e7:ee:df:c2:75:09:de:
9a:88:90:5f:9e:d8:be:6b:f4:c8:6c:7b:61:34:e5:
fe:de:e6:de:1a:eb:cc:37:11:0f:2a:ab:50:96:05:
c7:f0:8f:fb:4e:40:37:c3:44:51:57:18:14:ba:28:
fe:0e:48:19:e2:c9:42:7e:1e:68:ca:18:39:ff:6c:
3c:ba:04:b2:05:85:62:d7:5c:0e:37:f2:8d:5b:55:
3d:5d:09:da:3e:f1:26:89:c5:07:bb:eb:5e:d6:cb:
35:6b:21:ee:0c:99:03:6d:40:3b:2b:3c:5b:71:e4:
5d:21:be:81:f9:6d:08:17:9d:2c:a7:36:60:bb:51:
de:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E6:52:61:CB:1B:D9:CD:99:40:C8:3E:A4:22:64:B6:DA:F1:C3:09
X509v3 Authority Key Identifier:
keyid:B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:7d:ac:1d:0b:ac:57:9f:04:2e:02:2d:e5:45:b0:8f:97:46:
1d:0c:c1:17:7d:cb:f0:fd:7f:03:5f:74:45:d2:48:24:12:6c:
57:df:67:56:38:90:2c:59:1f:64:5f:96:cb:0f:70:64:8c:8c:
4e:32:69:18:6a:d2:72:01:31:55:30:d5:88:09:3d:06:20:35:
fa:d7:bf:76:97:05:d3:ba:34:67:77:bc:78:b0:55:f2:07:b8:
7b:76:46:2d:a7:c5:09:26:ca:04:c0:90:21:83:b5:d1:d6:ed:
6a:cc:3e:ab:e7:9f:6d:4f:62:f1:bb:87:8a:e7:c7:1a:20:5e:
7a:11:ab:1d:c2:de:bd:d2:5a:3d:90:5b:b0:81:f6:04:8e:d9:
db:86:e8:b9:72:97:a6:b4:9a:a2:e1:82:c0:a3:ef:af:d1:aa:
05:14:e9:93:3d:a1:8a:6b:ee:0b:5b:13:24:63:b3:3d:07:49:
5c:f7:6c:3c:fa:01:fd:68:71:0c:4a:f0:89:51:c0:f4:58:5c:
b6:86:89:83:36:6e:8a:89:a1:9a:52:71:51:4f:cd:78:dc:19:
b5:31:ea:da:ca:52:f2:6f:d8:9c:78:5f:e0:bd:a6:70:d4:e5:
f1:9c:cf:d0:18:01:e1:b7:54:0c:96:e2:71:d9:ac:d7:d6:34:
68:74:c2:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7tfdpEB3G5uI2j+gZ1VdhlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1ZjBmODM4YWZiYzEzMjI2ODA1NDRlZDFjOWM1YTJiMDk5
NjVkOWYwHhcNMjYwNjIyMDQwMTQ4WhcNMjYwNjIzMDQwMTQ4WjAzMTEwLwYDVQQD
EyhjZGU2NTI2MWNiMWJkOWNkOTk0MGM4M2VhNDIyNjRiNmRhZjFjMzA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHijxVMhs5SsLsbtRIMvgQ1v1T2b
tE3WldXgZvG5BZhROVEI0j08/Lw1y0g9YLvm0r+1ANGUN/kdixx/USZxCc71yvmC
Fk5CeX8EBVF2RaTBUmwahhURByQaBUYXp0uhqFYtfAJAoppR6Y5fZw4EctAhpqTV
HMdLOvsPYqSOAufu38J1Cd6aiJBfnti+a/TIbHthNOX+3ubeGuvMNxEPKqtQlgXH
8I/7TkA3w0RRVxgUuij+DkgZ4slCfh5oyhg5/2w8ugSyBYVi11wON/KNW1U9XQna
PvEmicUHu+te1ss1ayHuDJkDbUA7KzxbceRdIb6B+W0IF50spzZgu1HeawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM3mUmHLG9nNmUDIPqQiZLba8cMJMB8GA1UdIwQY
MBaAFLXw+DivvBMiaAVE7RycWisJll2fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGZENE9LLThFeUpvQlVUdEhKeGFLd21XWFo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS8zMjA1MTItOTFjYi00MzgzLTk3NjEt
YTUyZGM5YzIyMDdjLzEvdGZENE9LLThFeUpvQlVUdEhKeGFLd21XWFo4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS8zMjA1MTItOTFjYi00MzgzLTk3NjEtYTUyZGM5YzIyMDdj
LzEvdGZENE9LLThFeUpvQlVUdEhKeGFLd21XWFo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALH2sHQus
V58ELgIt5UWwj5dGHQzBF33L8P1/A190RdJIJBJsV99nVjiQLFkfZF+Wyw9wZIyM
TjJpGGrScgExVTDViAk9BiA1+te/dpcF07o0Z3e8eLBV8ge4e3ZGLafFCSbKBMCQ
IYO10dbtasw+q+efbU9i8buHiufHGiBeehGrHcLevdJaPZBbsIH2BI7Z24bouXKX
prSaouGCwKPvr9GqBRTpkz2himvuC1sTJGOzPQdJXPdsPPoB/WhxDErwiVHA9Fhc
toaJgzZuiomhmlJxUU/NeNwZtTHq2spS8m/YnHhf4L2mcNTl8ZzP0BgB4bdUDJbi
cdms19Y0aHTCuw==
-----END CERTIFICATE-----
Generated at Mon Jun 22 11:09:05 2026 by rpki-client