Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/599e76-0180-4022-afb9-fb1722974d03/1/TzmENXhbUGdc8ug2sUTtOEyGz50.mft
File: TzmENXhbUGdc8ug2sUTtOEyGz50.mft (raw, json)
Hash identifier: DBsCwqo+gGZQix4WZlqrAKwo3t5528EMWS2EY6RLQg4=
Subject key identifier: F5:09:B2:EA:BA:67:68:A4:3A:6F:03:6B:12:C4:1C:A5:B4:36:F1:80
Authority key identifier: 4F:39:84:35:78:5B:50:67:5C:F2:E8:36:B1:44:ED:38:4C:86:CF:9D
Certificate issuer: /CN=4f398435785b50675cf2e836b144ed384c86cf9d
Certificate serial: 019D39E5432C93D54B149D9541FA7743B825
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzmENXhbUGdc8ug2sUTtOEyGz50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/599e76-0180-4022-afb9-fb1722974d03/1/TzmENXhbUGdc8ug2sUTtOEyGz50.mft
Manifest number: 2F
Signing time: Sun 29 Mar 2026 14:00:19 +0000
Manifest this update: Sun 29 Mar 2026 14:00:19 +0000
Manifest next update: Mon 30 Mar 2026 14:00:19 +0000
Files and hashes: 1: TzmENXhbUGdc8ug2sUTtOEyGz50.crl (hash: /sEr8kxLEa6vKgSJ3hQsYcbsriEkpT6n8vAVq+H/gno=)
2: pHEIZFspQTjsjYLm3Qx_BC5u-70.roa (hash: k1BBayDiKn0+v/pWcw45P5PZb9zXUPIRn4LGVR+EvUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/599e76-0180-4022-afb9-fb1722974d03/1/TzmENXhbUGdc8ug2sUTtOEyGz50.crl
rsync://rpki.ripe.net/repository/DEFAULT/cf/599e76-0180-4022-afb9-fb1722974d03/1/TzmENXhbUGdc8ug2sUTtOEyGz50.mft
rsync://rpki.ripe.net/repository/DEFAULT/TzmENXhbUGdc8ug2sUTtOEyGz50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 14:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:e5:43:2c:93:d5:4b:14:9d:95:41:fa:77:43:b8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f398435785b50675cf2e836b144ed384c86cf9d
Validity
Not Before: Mar 29 14:00:19 2026 GMT
Not After : Mar 30 14:00:19 2026 GMT
Subject: CN=f509b2eaba6768a43a6f036b12c41ca5b436f180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fc:cd:18:23:f5:3c:ef:a3:41:21:9b:44:8c:
fd:c9:93:a3:c8:34:68:c0:4a:de:5f:9c:6e:37:1d:
5f:87:c7:d4:6b:a1:3b:af:7b:c2:4c:16:55:15:0e:
b2:b0:8e:9a:8a:18:62:14:66:1b:3e:db:6e:0e:8e:
33:fe:e4:a2:fc:66:98:a2:a8:38:0b:b6:7b:77:20:
3c:22:2e:78:77:e4:fd:45:63:27:5d:e9:0f:92:29:
c7:f4:63:1e:3d:a7:a9:e8:9d:f7:34:96:2f:73:f2:
c8:39:4b:ea:1f:9c:68:a6:50:36:4f:a6:66:e9:31:
d5:f8:d9:43:7b:db:05:94:3a:31:60:01:72:a9:26:
30:77:24:5c:03:d3:7a:7c:7b:39:96:0d:35:4b:f5:
9c:73:4f:10:b8:01:cf:cd:c0:80:da:bf:35:04:9b:
13:e0:a5:64:32:0f:b2:f8:6f:07:4c:2a:1a:60:e4:
8a:1c:dc:46:e9:ab:d5:49:e0:57:cf:ec:67:6a:51:
06:7d:05:92:ab:a8:c2:41:89:43:a9:18:3a:b4:0b:
fa:e4:76:8b:3c:f9:a6:14:2c:2b:bd:f2:0c:05:db:
da:dc:f1:a8:56:f8:00:d3:d1:8d:6e:43:1a:51:07:
1a:d0:6e:d2:f3:c7:fe:08:a5:3b:fe:ca:b1:9a:96:
b9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:09:B2:EA:BA:67:68:A4:3A:6F:03:6B:12:C4:1C:A5:B4:36:F1:80
X509v3 Authority Key Identifier:
keyid:4F:39:84:35:78:5B:50:67:5C:F2:E8:36:B1:44:ED:38:4C:86:CF:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzmENXhbUGdc8ug2sUTtOEyGz50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/599e76-0180-4022-afb9-fb1722974d03/1/TzmENXhbUGdc8ug2sUTtOEyGz50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/599e76-0180-4022-afb9-fb1722974d03/1/TzmENXhbUGdc8ug2sUTtOEyGz50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:17:49:d3:85:65:d0:5c:2a:e8:b4:f4:c9:a9:4a:59:9f:97:
ce:01:d1:d0:d8:38:fd:f7:44:10:e5:2e:9c:16:88:89:1e:5e:
04:17:9d:c1:51:08:4e:c2:79:79:65:9b:53:34:3a:cc:64:64:
e1:50:f9:ec:95:b1:30:d5:cd:19:13:4b:8d:c0:e5:2d:0c:d5:
ca:65:41:1a:ce:bf:95:28:f3:7a:1d:db:44:29:c0:ad:ba:36:
c5:e8:bb:c9:ce:10:19:f2:ac:1c:a9:26:30:86:ab:a1:35:3e:
a6:41:60:e4:e2:3b:6c:10:dd:43:d4:0e:fb:c5:a7:af:92:74:
0f:47:2d:88:0f:b6:ad:ea:91:06:c3:c4:65:ee:a0:69:3f:a4:
33:44:56:b1:14:52:90:45:46:fc:51:db:91:b2:c0:01:28:1f:
3f:22:42:7f:f5:6c:01:5b:d7:45:16:41:15:78:02:57:ea:84:
82:73:1b:1d:b5:64:c8:3f:19:61:cb:5f:46:14:76:cb:d3:7c:
fb:a4:d0:e3:0a:70:68:f1:df:fa:95:3a:07:91:91:58:af:24:
60:96:36:e1:f8:5f:00:e0:c0:34:8c:10:37:d4:e0:7c:9a:99:
e8:62:7d:77:1b:da:2b:65:74:cc:0d:41:dd:e2:2e:a3:39:6c:
03:02:c6:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ055UMsk9VLFJ2VQfp3Q7glMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMzk4NDM1Nzg1YjUwNjc1Y2YyZTgzNmIxNDRlZDM4NGM4
NmNmOWQwHhcNMjYwMzI5MTQwMDE5WhcNMjYwMzMwMTQwMDE5WjAzMTEwLwYDVQQD
EyhmNTA5YjJlYWJhNjc2OGE0M2E2ZjAzNmIxMmM0MWNhNWI0MzZmMTgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfzNGCP1PO+jQSGbRIz9yZOjyDRo
wEreX5xuNx1fh8fUa6E7r3vCTBZVFQ6ysI6aihhiFGYbPttuDo4z/uSi/GaYoqg4
C7Z7dyA8Ii54d+T9RWMnXekPkinH9GMePaep6J33NJYvc/LIOUvqH5xoplA2T6Zm
6THV+NlDe9sFlDoxYAFyqSYwdyRcA9N6fHs5lg01S/Wcc08QuAHPzcCA2r81BJsT
4KVkMg+y+G8HTCoaYOSKHNxG6avVSeBXz+xnalEGfQWSq6jCQYlDqRg6tAv65HaL
PPmmFCwrvfIMBdva3PGoVvgA09GNbkMaUQca0G7S88f+CKU7/sqxmpa5XQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPUJsuq6Z2ikOm8DaxLEHKW0NvGAMB8GA1UdIwQY
MBaAFE85hDV4W1BnXPLoNrFE7ThMhs+dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHptRU5YaGJVR2RjOHVnMnNVVHRPRXlHejUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi81OTllNzYtMDE4MC00MDIyLWFmYjkt
ZmIxNzIyOTc0ZDAzLzEvVHptRU5YaGJVR2RjOHVnMnNVVHRPRXlHejUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi81OTllNzYtMDE4MC00MDIyLWFmYjktZmIxNzIyOTc0ZDAz
LzEvVHptRU5YaGJVR2RjOHVnMnNVVHRPRXlHejUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoxdJ04Vl
0Fwq6LT0yalKWZ+XzgHR0Ng4/fdEEOUunBaIiR5eBBedwVEITsJ5eWWbUzQ6zGRk
4VD57JWxMNXNGRNLjcDlLQzVymVBGs6/lSjzeh3bRCnArbo2xei7yc4QGfKsHKkm
MIaroTU+pkFg5OI7bBDdQ9QO+8Wnr5J0D0ctiA+2reqRBsPEZe6gaT+kM0RWsRRS
kEVG/FHbkbLAASgfPyJCf/VsAVvXRRZBFXgCV+qEgnMbHbVkyD8ZYctfRhR2y9N8
+6TQ4wpwaPHf+pU6B5GRWK8kYJY24fhfAODANIwQN9TgfJqZ6GJ9dxvaK2V0zA1B
3eIuozlsAwLGjQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:15:18 2026 by rpki-client