Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
File: TMC300XPrlNH086YtCQbkA5KnvM.mft (raw, json)
Hash identifier: pY9DN5BLTsjvZj3x92xAdWiQfRNQig45mTISx9itpTI=
Subject key identifier: 2A:1F:3D:04:1C:6D:83:84:D4:BA:BE:E9:A7:10:69:FC:E3:EB:7B:1C
Authority key identifier: 4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
Certificate issuer: /CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Certificate serial: 019D386658DE4FDE95C496878F74D671A7CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
Manifest number: 0A03
Signing time: Sun 29 Mar 2026 07:02:04 +0000
Manifest this update: Sun 29 Mar 2026 07:02:04 +0000
Manifest next update: Mon 30 Mar 2026 07:02:04 +0000
Files and hashes: 1: 1aYS2JbbLwT9mgu0YtM6O3Vi_LY.roa (hash: x1EiPgAx+RF6WvuwNGH5p6RU1UgQGwRFO+MejwXodn0=)
2: TMC300XPrlNH086YtCQbkA5KnvM.crl (hash: bcBJ46da+7DmfdkqikO1Dmoog4uun6yP0Sh6mBV4yAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:58:de:4f:de:95:c4:96:87:8f:74:d6:71:a7:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Validity
Not Before: Mar 29 07:02:04 2026 GMT
Not After : Mar 30 07:02:04 2026 GMT
Subject: CN=2a1f3d041c6d8384d4babee9a71069fce3eb7b1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b4:9b:0c:3f:ec:05:cc:7f:f9:67:79:a6:0f:
ee:20:8b:70:b8:53:5c:e7:43:9c:ea:a0:2c:c1:90:
a1:33:56:2c:bf:7e:b9:0b:fc:20:d7:3a:fe:13:67:
2c:ff:91:9d:2b:36:12:f9:07:96:c7:aa:47:fb:d4:
06:29:3a:66:07:2b:e8:2d:e9:02:2b:17:f7:1f:ac:
7d:15:1f:21:16:f1:27:62:4e:00:c9:e8:63:e2:3f:
1d:a5:02:7f:2e:ae:35:48:46:51:e5:21:a3:6a:4e:
d5:87:c0:13:d3:32:82:3d:7a:e5:78:a1:9d:54:ec:
bd:30:19:8e:44:99:25:bb:55:b6:33:8f:d6:71:d8:
22:96:2b:dd:32:2b:07:d2:ff:a5:5e:54:9a:2d:95:
0d:7b:df:bc:b1:ff:e4:36:3f:94:63:ac:dd:d9:e9:
f3:c7:5b:19:58:db:a9:35:23:a7:51:e1:4d:d9:20:
d3:69:f2:24:ba:d5:90:71:5b:18:d6:af:95:df:25:
ee:67:90:6d:85:11:a7:7d:4c:9a:39:a8:d2:d7:3b:
74:83:2e:eb:7e:eb:54:38:27:3c:98:dc:df:21:ce:
a5:f1:80:7a:5a:d9:fc:73:ac:65:09:0e:28:d3:b7:
39:2d:7b:f7:80:fa:20:79:63:17:39:8d:e6:7b:bc:
14:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:1F:3D:04:1C:6D:83:84:D4:BA:BE:E9:A7:10:69:FC:E3:EB:7B:1C
X509v3 Authority Key Identifier:
keyid:4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:19:0d:89:af:97:bc:c2:02:15:5d:ef:58:6e:3b:c2:c9:1f:
0f:df:67:67:50:3d:25:6d:53:29:9d:ff:1f:95:71:5a:68:ad:
5e:f5:93:f0:65:39:df:b7:c6:0b:b8:61:51:23:05:52:85:44:
63:9e:cb:75:26:b2:49:eb:d2:23:7e:a4:0b:21:aa:ae:21:7b:
fe:43:a0:f0:38:3c:ca:16:40:bf:e4:e8:4b:f1:36:fd:4e:3f:
34:b7:f4:2e:be:41:3a:b2:af:8c:d3:07:b8:a1:a7:93:aa:c4:
09:5d:22:f8:58:03:84:43:82:26:bb:67:ab:1f:c7:51:80:e5:
69:77:f8:63:0f:d0:3d:10:e3:ce:ea:9f:db:80:b7:f7:bf:da:
b9:f0:bd:f3:5d:9d:ae:87:11:14:7f:ca:df:ff:fa:ec:29:ea:
fd:4f:38:9e:48:0c:ae:48:64:43:c1:3f:b6:d6:b6:14:32:28:
01:cc:00:b9:bb:ff:ff:30:16:f1:c6:f1:c8:65:a7:38:04:f4:
9f:a0:e2:24:65:5e:0a:c4:73:4c:9b:f2:bf:d0:b0:5a:1d:ad:
3d:a1:81:1a:12:5e:3a:b4:e6:35:06:d7:d8:8d:d9:78:ee:8b:
f8:1e:8e:9a:21:2b:96:aa:6d:22:ad:08:98:23:89:e7:4b:dc:
2e:1a:c5:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:39:51 2026 by rpki-client