Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.mft
File: tmdL-ORX4pV-7k9R-Le0TFfbmio.mft (raw, json)
Hash identifier: wqf98Ry0vWq4AIjbCUeGOO54mHwLZNd54drxwR5phE0=
Subject key identifier: A7:BA:18:D0:0D:57:78:D9:65:19:46:6A:5B:03:78:87:A6:0E:8C:9F
Authority key identifier: B6:67:4B:F8:E4:57:E2:95:7E:EE:4F:51:F8:B7:B4:4C:57:DB:9A:2A
Certificate issuer: /CN=b6674bf8e457e2957eee4f51f8b7b44c57db9a2a
Certificate serial: 019D39AF683B41E33C946016F232645144BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmdL-ORX4pV-7k9R-Le0TFfbmio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.mft
Manifest number: 128B
Signing time: Sun 29 Mar 2026 13:01:29 +0000
Manifest this update: Sun 29 Mar 2026 13:01:29 +0000
Manifest next update: Mon 30 Mar 2026 13:01:29 +0000
Files and hashes: 1: rUXKeVVJ04wZzY-9AMdF7X_kQUY.roa (hash: JD0yLLKxNO7w7T95rG6mxBg4uiPzT+AUeh23SkMpuwQ=)
2: tmdL-ORX4pV-7k9R-Le0TFfbmio.crl (hash: F+Gwxcuwiu6UEIIeBC6DX+AClcQ8dRmwVOGeHZ03r+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.mft
rsync://rpki.ripe.net/repository/DEFAULT/tmdL-ORX4pV-7k9R-Le0TFfbmio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:68:3b:41:e3:3c:94:60:16:f2:32:64:51:44:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6674bf8e457e2957eee4f51f8b7b44c57db9a2a
Validity
Not Before: Mar 29 13:01:29 2026 GMT
Not After : Mar 30 13:01:29 2026 GMT
Subject: CN=a7ba18d00d5778d96519466a5b037887a60e8c9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:93:a4:a3:84:be:fa:40:90:21:ae:a8:fc:7b:
c8:e4:a4:e4:27:08:97:2d:20:f6:be:49:19:67:10:
a1:f3:32:08:9f:20:7a:f5:8b:e6:d2:76:65:c7:b3:
4c:7d:c1:14:9a:f0:f5:b9:35:a2:8b:79:20:73:47:
6f:e0:1d:4c:27:60:d3:7c:77:29:29:c0:36:7d:02:
14:85:39:04:2b:5a:15:b2:00:63:41:fa:8a:97:87:
3b:51:51:10:92:3a:b5:90:dd:f2:00:5d:f6:e7:ed:
47:51:6d:b3:37:78:ba:b8:ea:78:4d:dd:ad:86:f9:
e7:34:73:79:57:f1:ff:b8:b0:ad:70:02:42:ab:eb:
a9:a2:e8:ac:27:11:3c:65:2e:33:94:9b:e8:0c:bc:
c8:59:5a:9d:c3:51:6f:ab:00:d0:31:ad:8b:77:1c:
6c:7c:de:ef:be:79:38:ed:7a:af:88:4c:e3:79:c6:
db:a5:ff:5f:36:fe:7f:f7:e7:4e:3d:20:97:02:84:
8c:76:20:ec:82:5e:dc:8b:4b:7b:6e:e7:f0:0f:60:
a1:d6:35:84:ab:20:1b:ef:3a:8d:9b:f0:c4:80:c1:
fe:ad:d2:f7:fe:73:5e:bd:8c:fb:71:c1:a3:27:67:
f8:2d:19:6a:37:74:f4:9d:18:c5:26:80:56:47:a3:
16:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BA:18:D0:0D:57:78:D9:65:19:46:6A:5B:03:78:87:A6:0E:8C:9F
X509v3 Authority Key Identifier:
keyid:B6:67:4B:F8:E4:57:E2:95:7E:EE:4F:51:F8:B7:B4:4C:57:DB:9A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmdL-ORX4pV-7k9R-Le0TFfbmio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/69331c-aea2-4237-8400-6221403db58b/1/tmdL-ORX4pV-7k9R-Le0TFfbmio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:3e:6f:88:93:8b:4a:cf:7f:7e:43:18:63:7d:5e:d7:9b:4d:
fd:7c:35:72:59:53:66:7f:0c:ae:3d:ce:39:23:50:4f:fd:3a:
69:d8:97:5e:88:c3:dd:37:ae:ad:37:42:26:26:3a:fd:72:b6:
a0:61:4f:e5:d4:d8:b1:01:52:c9:e4:f4:58:26:49:ff:09:c5:
df:9f:a0:e1:44:01:88:21:9c:59:ce:40:40:fc:4f:8e:39:44:
ec:09:4b:a1:ab:c7:f7:0e:61:0e:b7:21:fc:13:a0:84:9d:ca:
9c:de:bc:af:45:ed:51:a1:7e:d7:c1:d6:1b:65:28:c0:a7:e4:
93:ea:ca:e8:d9:3b:25:a1:2e:fe:0a:14:e2:85:1d:e9:59:b0:
9d:79:57:0c:d0:70:37:a9:0a:b5:48:40:94:cd:30:78:87:93:
81:da:29:51:f9:15:d3:b9:78:14:d0:37:f3:61:e7:3c:fc:1c:
5e:07:37:2b:f3:b8:cc:fe:58:c8:cc:07:c6:cb:98:a2:94:97:
f9:a9:4b:e3:99:48:68:f3:fd:b0:55:a9:43:39:3a:29:38:7e:
48:bd:42:ea:81:57:a7:60:0e:b6:02:d3:5f:4c:ff:6b:55:08:
08:04:63:d9:90:c5:c3:ca:bc:11:fe:fd:3b:92:e6:76:04:29:
2c:94:8c:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05r2g7QeM8lGAW8jJkUUS/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2Njc0YmY4ZTQ1N2UyOTU3ZWVlNGY1MWY4YjdiNDRjNTdk
YjlhMmEwHhcNMjYwMzI5MTMwMTI5WhcNMjYwMzMwMTMwMTI5WjAzMTEwLwYDVQQD
EyhhN2JhMThkMDBkNTc3OGQ5NjUxOTQ2NmE1YjAzNzg4N2E2MGU4YzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJOko4S++kCQIa6o/HvI5KTkJwiX
LSD2vkkZZxCh8zIInyB69Yvm0nZlx7NMfcEUmvD1uTWii3kgc0dv4B1MJ2DTfHcp
KcA2fQIUhTkEK1oVsgBjQfqKl4c7UVEQkjq1kN3yAF325+1HUW2zN3i6uOp4Td2t
hvnnNHN5V/H/uLCtcAJCq+upouisJxE8ZS4zlJvoDLzIWVqdw1FvqwDQMa2Ldxxs
fN7vvnk47XqviEzjecbbpf9fNv5/9+dOPSCXAoSMdiDsgl7ci0t7bufwD2Ch1jWE
qyAb7zqNm/DEgMH+rdL3/nNevYz7ccGjJ2f4LRlqN3T0nRjFJoBWR6MWZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKe6GNANV3jZZRlGalsDeIemDoyfMB8GA1UdIwQY
MBaAFLZnS/jkV+KVfu5PUfi3tExX25oqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdG1kTC1PUlg0cFYtN2s5Ui1MZTBURmZibWlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi82OTMzMWMtYWVhMi00MjM3LTg0MDAt
NjIyMTQwM2RiNThiLzEvdG1kTC1PUlg0cFYtN2s5Ui1MZTBURmZibWlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi82OTMzMWMtYWVhMi00MjM3LTg0MDAtNjIyMTQwM2RiNThi
LzEvdG1kTC1PUlg0cFYtN2s5Ui1MZTBURmZibWlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcD5viJOL
Ss9/fkMYY31e15tN/Xw1cllTZn8Mrj3OOSNQT/06adiXXojD3TeurTdCJiY6/XK2
oGFP5dTYsQFSyeT0WCZJ/wnF35+g4UQBiCGcWc5AQPxPjjlE7AlLoavH9w5hDrch
/BOghJ3KnN68r0XtUaF+18HWG2UowKfkk+rK6Nk7JaEu/goU4oUd6VmwnXlXDNBw
N6kKtUhAlM0weIeTgdopUfkV07l4FNA382HnPPwcXgc3K/O4zP5YyMwHxsuYopSX
+alL45lIaPP9sFWpQzk6KTh+SL1C6oFXp2AOtgLTX0z/a1UICARj2ZDFw8q8Ef79
O5LmdgQpLJSM0g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:59:11 2026 by rpki-client