Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
File: TMC300XPrlNH086YtCQbkA5KnvM.mft (raw, json)
Hash identifier: 3wM/iUkZ8NvbYBA2NIT2eRCi9829foi9r61lu1m0ZkI=
Subject key identifier: 3B:0E:D3:17:20:49:73:AD:59:D0:BD:BB:F5:73:25:33:86:B5:4C:FA
Authority key identifier: 4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
Certificate issuer: /CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Certificate serial: 019E3185A68296D610FAB33870368D2C4C68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
Manifest number: 0A84
Signing time: Sat 16 May 2026 16:01:42 +0000
Manifest this update: Sat 16 May 2026 16:01:42 +0000
Manifest next update: Sun 17 May 2026 16:01:42 +0000
Files and hashes: 1: 1aYS2JbbLwT9mgu0YtM6O3Vi_LY.roa (hash: x1EiPgAx+RF6WvuwNGH5p6RU1UgQGwRFO+MejwXodn0=)
2: TMC300XPrlNH086YtCQbkA5KnvM.crl (hash: BTtdei9oDgkmgs1Cg0oP030DjkRhuvdIstaoP8tXXsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:85:a6:82:96:d6:10:fa:b3:38:70:36:8d:2c:4c:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Validity
Not Before: May 16 16:01:42 2026 GMT
Not After : May 17 16:01:42 2026 GMT
Subject: CN=3b0ed317204973ad59d0bdbbf573253386b54cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fb:5e:b9:49:ef:61:18:65:a4:35:7e:93:68:
e9:e2:23:6a:e6:0f:1e:63:a9:3f:f8:de:72:14:43:
27:49:e6:3c:db:97:a8:30:1b:e0:0d:d6:21:9c:27:
f0:e7:70:fb:58:ae:dd:ab:ce:3c:66:3f:d9:57:04:
44:67:b8:86:55:d1:82:c5:8e:88:be:f4:dd:59:da:
16:e9:ab:dd:e1:ab:cc:e3:1a:1e:02:28:bd:7c:4e:
24:f8:d9:18:7a:dc:42:7e:36:07:41:50:a9:cf:5e:
4e:1b:2d:b2:ff:5d:9f:3b:59:f2:34:ad:c6:e4:26:
81:aa:ca:36:fe:a2:16:2f:e2:28:64:93:9b:d0:4b:
c3:10:8e:68:1a:2e:63:0a:ac:4f:16:cc:c0:42:fd:
f3:01:0b:99:c6:60:6f:7b:8f:39:03:4e:73:39:c0:
96:93:4f:25:b2:99:d8:98:8a:fb:ae:34:75:c1:f5:
66:cc:43:56:1c:b0:01:ef:02:84:30:79:1e:b0:14:
fa:fd:7d:4b:e3:4b:53:fd:30:47:6d:92:a2:e6:40:
51:d5:98:36:f6:f6:28:1d:8d:b1:01:35:47:f9:4f:
03:c3:e8:86:4e:05:24:14:fe:a9:f1:eb:b9:3d:66:
e5:bf:bb:83:6b:05:04:cb:eb:70:e3:85:19:0a:24:
cb:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:0E:D3:17:20:49:73:AD:59:D0:BD:BB:F5:73:25:33:86:B5:4C:FA
X509v3 Authority Key Identifier:
keyid:4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:20:a9:6d:4e:f2:8d:e9:0f:01:c4:76:f7:6c:12:e9:b6:ca:
c9:1a:0a:dd:79:ee:39:db:10:c6:cc:f5:4e:07:ee:7d:12:9c:
7e:2f:2e:ba:51:20:5b:b3:7b:fa:da:3c:2f:03:23:24:23:b9:
fb:f4:8f:96:8d:36:86:6f:4b:98:01:c9:3a:ea:eb:83:51:09:
ed:a5:e8:e6:1b:52:41:6e:ed:b8:4d:9e:21:ec:50:60:e1:fe:
75:4e:76:bc:2f:dc:a5:f2:a9:74:ff:95:a4:55:58:59:d1:43:
4b:8d:3f:5c:8c:63:7b:c7:37:5c:50:a1:e6:be:ee:e8:7a:de:
73:f3:c3:39:93:8f:ee:89:d9:05:16:1b:69:f9:a3:23:67:f3:
ac:63:02:ab:c7:30:3b:d9:35:7b:9d:e7:ee:4d:98:ad:ed:ed:
8c:a3:14:cd:a3:9e:30:49:ef:30:c8:d0:05:3f:7c:1b:da:f0:
85:e2:be:92:a7:eb:5e:bd:02:9b:46:9c:3b:85:a2:34:ce:32:
fe:31:6c:0b:8d:82:f8:21:e9:06:b0:af:da:c7:f1:dc:df:57:
7a:b9:65:4c:98:14:87:f3:21:79:fc:c7:8e:b7:5c:92:19:e7:
34:1b:ef:e8:5c:65:12:a8:97:42:f2:2b:4f:58:7b:14:64:55:
e5:48:a5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:23:22 2026 by rpki-client