Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
File: TMC300XPrlNH086YtCQbkA5KnvM.mft (raw, json)
Hash identifier: ol4PxQ9UWc5fjpDrB7HrdtD6Pwgys3n3NObsQNIGEA0=
Subject key identifier: 7C:5D:72:5F:F7:99:4B:B8:FD:9D:0E:3F:69:16:71:6B:65:43:15:33
Authority key identifier: 4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
Certificate issuer: /CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Certificate serial: 019F1943DE8178DD86C59D3B42125DF17E4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
Manifest number: 0AFC
Signing time: Tue 30 Jun 2026 16:01:45 +0000
Manifest this update: Tue 30 Jun 2026 16:01:45 +0000
Manifest next update: Wed 01 Jul 2026 16:01:45 +0000
Files and hashes: 1: 1aYS2JbbLwT9mgu0YtM6O3Vi_LY.roa (hash: x1EiPgAx+RF6WvuwNGH5p6RU1UgQGwRFO+MejwXodn0=)
2: TMC300XPrlNH086YtCQbkA5KnvM.crl (hash: WHNzzEeooykln4B8GdAIdYL0PO9W5dgixqM1UkWY6mQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:de:81:78:dd:86:c5:9d:3b:42:12:5d:f1:7e:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cc0b7d345cfae5347d3ce98b4241b900e4a9ef3
Validity
Not Before: Jun 30 16:01:45 2026 GMT
Not After : Jul 1 16:01:45 2026 GMT
Subject: CN=7c5d725ff7994bb8fd9d0e3f6916716b65431533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0b:45:62:74:df:6f:17:db:82:12:fc:cc:cf:
4d:b4:e9:87:80:80:8b:7a:40:10:a7:77:bb:d3:fb:
d8:44:91:84:60:89:62:e4:56:bb:05:8c:80:cc:36:
39:01:a5:ba:54:85:c0:57:56:d1:ef:04:df:0d:53:
d0:71:0e:6e:c5:a2:1a:e0:58:08:65:a1:30:e6:29:
cc:3a:63:e0:21:d1:d8:c6:f2:a9:4a:64:7c:e7:f0:
c2:8b:89:35:fe:e3:03:79:e6:46:62:97:b1:5f:5d:
6e:36:73:35:48:6f:ab:ab:06:93:1c:cd:2f:8e:08:
41:e8:a3:2e:00:04:da:9a:41:77:3c:cd:2f:4a:c5:
f2:83:ee:5b:4f:07:9b:fc:7e:8a:35:db:3a:09:77:
93:4f:2b:50:44:09:df:b1:1d:59:79:22:03:da:f2:
10:9b:e5:ba:17:6e:2f:6a:19:44:9b:94:9b:0a:b0:
75:b7:59:f4:cc:9f:f6:f6:ca:15:6d:3b:e4:e8:42:
3d:ef:9b:72:da:ae:ac:bb:40:e4:e8:f9:e7:d0:71:
14:14:27:22:f2:00:7a:ee:bc:d7:0d:0a:34:6f:f6:
d1:dd:cf:8f:e5:1e:d4:15:0f:3a:84:1f:fb:64:2a:
8b:c8:76:70:0a:55:6b:18:5e:48:4b:38:ac:63:ad:
1a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:5D:72:5F:F7:99:4B:B8:FD:9D:0E:3F:69:16:71:6B:65:43:15:33
X509v3 Authority Key Identifier:
keyid:4C:C0:B7:D3:45:CF:AE:53:47:D3:CE:98:B4:24:1B:90:0E:4A:9E:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TMC300XPrlNH086YtCQbkA5KnvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/16d370-f632-4ca1-8b96-1be325f7a2e3/1/TMC300XPrlNH086YtCQbkA5KnvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:65:f2:b4:72:d0:a9:7a:c1:9a:d6:77:30:7d:bd:c0:f4:01:
9c:31:5e:5d:11:b8:e3:43:87:43:80:68:05:34:22:96:7a:b2:
5e:41:a9:42:17:1f:cc:2a:ff:35:eb:a2:a1:b6:da:33:9a:9c:
89:be:40:07:5f:5b:b8:cf:d1:7b:18:7e:d0:bd:0f:36:29:ec:
01:9a:4f:28:17:c0:50:ec:3b:11:7f:71:fd:71:28:7e:79:8d:
e9:fc:01:3b:ca:fe:2c:16:7d:fc:75:24:c8:18:72:e7:5e:a8:
cb:1c:69:12:3c:7c:09:e6:7a:f5:8e:29:73:96:87:5c:a6:26:
8a:a7:9d:0d:fe:42:d7:ce:ac:ed:ac:d5:dc:27:65:4e:8c:e7:
ea:5d:d4:62:8f:78:38:48:8e:8c:df:55:cb:86:5b:76:a4:88:
f2:27:f0:8c:a9:eb:de:dc:d2:bc:85:45:7c:aa:db:10:e4:f4:
04:22:b9:c9:f6:bd:f0:b0:48:a4:26:0e:e0:57:be:fc:7e:1f:
c1:fb:88:b6:87:e9:13:ca:fe:a4:ff:e2:30:dc:e0:d4:66:a5:
79:b2:cc:c1:e2:ee:83:b0:5b:a8:e8:c9:00:c5:65:90:47:60:
15:9c:52:14:8f:15:7d:40:4a:59:da:cb:39:f6:1a:33:68:e3:
2b:f0:a8:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:38:07 2026 by rpki-client