Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
File: tDlfbOqaAYpMyEgY5qo1INMiIYs.mft (raw, json)
Hash identifier: 3Lr+o97dqSd6ZzH2l+3Ut2qzQEbnQuBSRcPQaz7iJsQ=
Subject key identifier: 60:31:26:9D:12:C9:02:ED:4F:08:2C:16:4A:CA:65:9F:5F:F3:01:1C
Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Certificate serial: 019D37C0BB975928EC4D2180A51D970CB175
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
Manifest number: 0F11
Signing time: Sun 29 Mar 2026 04:01:10 +0000
Manifest this update: Sun 29 Mar 2026 04:01:10 +0000
Manifest next update: Mon 30 Mar 2026 04:01:10 +0000
Files and hashes: 1: 7o3HU3pC1XthlFE5rMAnOdMOkGY.roa (hash: x+AUbDFdu4k2QNBnXRev35S/cF6y/B0UGwPHMfJj01k=)
2: tDlfbOqaAYpMyEgY5qo1INMiIYs.crl (hash: IjFo9yPKJ4a6eC7tp1eNuJAS96l47hRDD0ixfr3GGro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:bb:97:59:28:ec:4d:21:80:a5:1d:97:0c:b1:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Validity
Not Before: Mar 29 04:01:10 2026 GMT
Not After : Mar 30 04:01:10 2026 GMT
Subject: CN=6031269d12c902ed4f082c164aca659f5ff3011c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:9c:ff:35:88:3b:d3:99:d1:36:d3:f8:cf:b0:
76:e1:e2:49:1b:67:f4:6c:f6:e8:57:22:c9:d1:0b:
45:91:ac:c9:5f:d5:e0:a9:ff:80:53:d8:52:c0:0c:
04:70:6a:e0:87:8a:51:68:ce:e2:ef:69:11:3e:3b:
05:e9:7e:2f:57:78:bf:3c:16:85:a5:75:0e:ae:ee:
6e:bc:6a:56:15:26:ad:6c:3b:1d:ed:0a:59:13:79:
09:b0:1b:11:fb:d0:f5:e4:7c:22:6a:7f:d0:c0:95:
57:5d:44:ea:9d:12:e3:f3:ad:7f:f3:54:8c:ed:e0:
a4:49:a9:c8:27:cc:05:21:33:59:45:8e:ba:e7:7f:
46:f4:ec:9d:82:ae:9f:23:ae:ff:6a:95:b3:f0:50:
5c:ae:66:a3:b3:93:ad:30:40:4d:4e:12:20:7f:61:
0d:8a:9a:34:7d:08:9d:ed:9a:93:d4:e8:bf:ec:61:
94:93:33:82:ae:9c:17:a3:fb:da:b0:92:c6:13:ea:
c3:82:6f:d8:a1:be:2a:7c:e9:72:87:c8:ed:ac:64:
0c:09:de:b2:d0:81:40:18:fc:13:f8:55:47:15:f2:
dd:4c:72:5c:db:73:bc:ed:52:a2:c0:5c:64:e9:cd:
eb:27:a9:f1:34:18:ce:c5:58:bd:34:4b:31:3e:b7:
17:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:31:26:9D:12:C9:02:ED:4F:08:2C:16:4A:CA:65:9F:5F:F3:01:1C
X509v3 Authority Key Identifier:
keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:1b:a7:7e:8c:12:03:46:b3:63:de:eb:8a:f4:89:82:a3:f0:
97:37:20:9f:6d:af:b5:95:81:fa:ba:68:1c:f6:04:28:d6:e4:
d5:c4:d8:38:a0:b2:95:ea:6d:87:96:e2:bd:39:31:4a:8e:1a:
c3:c7:43:f9:a2:b4:e1:a2:9f:d1:a2:96:34:16:22:09:76:95:
1c:08:6c:ac:c8:22:e5:0a:5c:f2:c0:53:31:10:92:76:30:aa:
bf:21:ee:d6:32:54:7f:33:8e:26:77:7c:29:65:0f:09:68:ee:
ad:15:96:eb:9c:d9:3d:dd:0c:0e:7a:04:0d:2d:f8:c9:c3:09:
19:49:36:29:bb:34:59:a2:b6:00:86:d6:4f:d1:fd:60:82:b5:
c7:12:8f:62:f6:c5:e8:d8:3e:87:af:c5:16:8b:4d:f8:c1:3d:
cd:2b:64:e2:ba:a0:26:6b:27:d7:83:46:89:a5:e0:16:a9:ab:
79:5a:cf:ee:82:16:55:d9:b4:ea:a8:b9:c8:86:d1:24:5e:89:
76:44:ca:5f:8e:ed:53:68:9f:86:ac:54:d8:d7:a2:11:13:fb:
ff:8b:1d:28:cd:bd:52:95:db:db:b0:f9:86:1e:48:3a:5a:4e:
d8:ae:fb:e6:44:85:a5:10:ec:60:2a:52:76:75:e1:bf:dc:8c:
77:65:43:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wLuXWSjsTSGApR2XDLF1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Mzk1ZjZjZWE5YTAxOGE0Y2M4NDgxOGU2YWEzNTIwZDMy
MjIxOGIwHhcNMjYwMzI5MDQwMTEwWhcNMjYwMzMwMDQwMTEwWjAzMTEwLwYDVQQD
Eyg2MDMxMjY5ZDEyYzkwMmVkNGYwODJjMTY0YWNhNjU5ZjVmZjMwMTFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpz/NYg705nRNtP4z7B24eJJG2f0
bPboVyLJ0QtFkazJX9Xgqf+AU9hSwAwEcGrgh4pRaM7i72kRPjsF6X4vV3i/PBaF
pXUOru5uvGpWFSatbDsd7QpZE3kJsBsR+9D15Hwian/QwJVXXUTqnRLj861/81SM
7eCkSanIJ8wFITNZRY66539G9Oydgq6fI67/apWz8FBcrmajs5OtMEBNThIgf2EN
ipo0fQid7ZqT1Oi/7GGUkzOCrpwXo/vasJLGE+rDgm/Yob4qfOlyh8jtrGQMCd6y
0IFAGPwT+FVHFfLdTHJc23O87VKiwFxk6c3rJ6nxNBjOxVi9NEsxPrcXlwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGAxJp0SyQLtTwgsFkrKZZ9f8wEcMB8GA1UdIwQY
MBaAFLQ5X2zqmgGKTMhIGOaqNSDTIiGLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdERsZmJPcWFBWXBNeUVnWTVxbzFJTk1pSVlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8xZTVjODgtYzNmYy00ZTc2LWJjNjUt
MzkxZmVjMjY3ZGFlLzEvdERsZmJPcWFBWXBNeUVnWTVxbzFJTk1pSVlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8xZTVjODgtYzNmYy00ZTc2LWJjNjUtMzkxZmVjMjY3ZGFl
LzEvdERsZmJPcWFBWXBNeUVnWTVxbzFJTk1pSVlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkhunfowS
A0azY97rivSJgqPwlzcgn22vtZWB+rpoHPYEKNbk1cTYOKCylepth5bivTkxSo4a
w8dD+aK04aKf0aKWNBYiCXaVHAhsrMgi5Qpc8sBTMRCSdjCqvyHu1jJUfzOOJnd8
KWUPCWjurRWW65zZPd0MDnoEDS34ycMJGUk2Kbs0WaK2AIbWT9H9YIK1xxKPYvbF
6Ng+h6/FFotN+ME9zStk4rqgJmsn14NGiaXgFqmreVrP7oIWVdm06qi5yIbRJF6J
dkTKX47tU2ifhqxU2NeiERP7/4sdKM29UpXb27D5hh5IOlpO2K775kSFpRDsYCpS
dnXhv9yMd2VDRw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:48 2026 by rpki-client