Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
File: tUFVgYH3hjEZv0oVVMddqx9sUpI.mft (raw, json)
Hash identifier: DJkDB3QSvTebDDXbMXc8qguEAjM0If+KSx04FgE7Nus=
Subject key identifier: 43:9F:CE:45:16:6E:4E:B9:C1:24:56:F1:CC:99:33:C3:B5:31:75:93
Authority key identifier: B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
Certificate issuer: /CN=b541558181f7863119bf4a1554c75dab1f6c5292
Certificate serial: 019CACB52B9885A7C4CD25EA725DD95815B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
Manifest number: 066D
Signing time: Mon 02 Mar 2026 04:01:20 +0000
Manifest this update: Mon 02 Mar 2026 04:01:20 +0000
Manifest next update: Tue 03 Mar 2026 04:01:20 +0000
Files and hashes: 1: D1q3YLzj8lZ_AqtFs6QHKSAISFg.roa (hash: 4mLTnHJ65SEHMBkEh6tPiLrvo21+0C3dC/USJa8YdTw=)
2: FAR1JGDRfBlwTrXiCrjWu-9KPYY.roa (hash: ubnjQ9mTdiJtNsVEHvSHl8U6qYQGX98XEG0kwEFpsdo=)
3: OteesfxlXNW_6oy-uZPA0RjwQqs.roa (hash: BVMKBS9it+saptlczy0sxrdp/hGNaoRQGuAEe0tEzJQ=)
4: jJqmq7ctfCRljbEe-rA7H6MPeAI.roa (hash: O+1YuOF5X9Aph1d+IEQe3EcREqu8Qs7VAkwaJPtR+U0=)
5: tUFVgYH3hjEZv0oVVMddqx9sUpI.crl (hash: 2fVvqkrL2pUGjAycCazbnz9RlWlpkp4/KCzTl6vhPag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:2b:98:85:a7:c4:cd:25:ea:72:5d:d9:58:15:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b541558181f7863119bf4a1554c75dab1f6c5292
Validity
Not Before: Mar 2 04:01:20 2026 GMT
Not After : Mar 3 04:01:20 2026 GMT
Subject: CN=439fce45166e4eb9c12456f1cc9933c3b5317593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a8:6f:20:a1:82:af:46:c8:64:eb:91:4e:31:
9c:2b:9b:05:d1:ce:cd:81:b6:55:b4:75:44:7a:a3:
01:65:51:2e:a3:08:71:d0:1b:6c:75:4c:fc:c6:af:
7e:f6:cc:95:a6:0d:44:cc:7d:24:ac:8a:7d:61:30:
13:47:f2:50:08:66:f8:3c:77:72:87:79:c3:c0:7f:
a6:e5:be:05:e7:4e:2d:6e:98:af:27:3c:f9:6a:a0:
26:53:66:32:62:6f:0a:93:5f:56:3f:ed:9c:46:d3:
a1:81:43:f7:9e:c6:7b:f9:c1:77:54:c8:96:5c:34:
27:46:e0:eb:5a:ce:fb:8d:08:74:90:9b:ad:8c:e1:
a6:93:c5:36:69:ce:3d:4a:3a:80:08:99:b3:09:0e:
51:8e:e7:b8:65:43:e1:36:91:d8:64:29:1c:0a:2f:
92:50:7e:9d:85:98:6f:de:23:85:5c:51:79:bd:52:
ff:a1:5c:68:ce:d4:d6:e0:a6:6d:da:71:22:e6:05:
cf:61:68:bf:ff:da:a7:b7:b9:8a:0a:ba:0c:c6:17:
09:63:42:26:f9:07:dc:61:4d:da:a8:fb:cb:e0:ef:
c4:20:77:89:8f:9c:30:7d:dd:d1:c8:69:cb:00:68:
2b:d9:e7:39:43:ec:c6:a4:e1:ac:68:80:55:a7:7c:
a7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:9F:CE:45:16:6E:4E:B9:C1:24:56:F1:CC:99:33:C3:B5:31:75:93
X509v3 Authority Key Identifier:
keyid:B5:41:55:81:81:F7:86:31:19:BF:4A:15:54:C7:5D:AB:1F:6C:52:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUFVgYH3hjEZv0oVVMddqx9sUpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4dd169-8dcb-4653-8a03-571b6c612bec/1/tUFVgYH3hjEZv0oVVMddqx9sUpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:d2:c3:df:c5:e0:90:e4:43:fe:10:ef:30:b6:43:b6:bf:78:
65:41:f0:47:75:35:0e:c8:ce:63:54:da:71:db:a6:6d:4e:f9:
ed:e4:1f:a1:1a:d8:c3:b3:7a:68:f9:2c:c1:dc:82:62:e5:7e:
27:03:e6:f5:7c:2c:85:20:d4:63:1f:c2:8a:a1:d0:0b:b8:60:
2a:c1:f0:20:9e:82:d0:ee:3b:cb:af:89:db:7b:e3:8c:e2:76:
9c:bd:ac:58:3f:17:d8:27:d5:b2:ff:13:29:10:90:c5:a4:4e:
e5:48:3b:9d:03:ac:b2:dc:04:bb:71:3f:92:2c:d6:31:bb:8b:
21:15:20:1c:5f:01:c0:31:73:bd:a4:1e:f0:11:b8:79:71:11:
58:57:d3:6b:13:b3:b3:1c:3d:64:bc:c8:7b:48:58:72:30:94:
29:ed:86:c5:7b:ff:dc:ee:ca:50:bf:97:4c:40:15:7e:f5:bd:
98:66:14:89:23:23:94:aa:fa:9c:6f:01:b9:2c:c7:34:d8:7c:
a0:7c:a4:d1:a5:43:e3:d0:51:40:9e:58:fa:da:40:18:11:0c:
9e:8f:02:06:21:e1:c9:c9:99:42:25:2c:89:e5:fb:55:bf:55:
78:73:82:0c:2b:04:05:a2:d3:0e:cb:f5:6d:00:f2:80:ab:cf:
93:99:41:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZystSuYhafEzSXqcl3ZWBWwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NDE1NTgxODFmNzg2MzExOWJmNGExNTU0Yzc1ZGFiMWY2
YzUyOTIwHhcNMjYwMzAyMDQwMTIwWhcNMjYwMzAzMDQwMTIwWjAzMTEwLwYDVQQD
Eyg0MzlmY2U0NTE2NmU0ZWI5YzEyNDU2ZjFjYzk5MzNjM2I1MzE3NTkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoKhvIKGCr0bIZOuRTjGcK5sF0c7N
gbZVtHVEeqMBZVEuowhx0BtsdUz8xq9+9syVpg1EzH0krIp9YTATR/JQCGb4PHdy
h3nDwH+m5b4F504tbpivJzz5aqAmU2YyYm8Kk19WP+2cRtOhgUP3nsZ7+cF3VMiW
XDQnRuDrWs77jQh0kJutjOGmk8U2ac49SjqACJmzCQ5Rjue4ZUPhNpHYZCkcCi+S
UH6dhZhv3iOFXFF5vVL/oVxoztTW4KZt2nEi5gXPYWi//9qnt7mKCroMxhcJY0Im
+QfcYU3aqPvL4O/EIHeJj5wwfd3RyGnLAGgr2ec5Q+zGpOGsaIBVp3ynRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEOfzkUWbk65wSRW8cyZM8O1MXWTMB8GA1UdIwQY
MBaAFLVBVYGB94YxGb9KFVTHXasfbFKSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFVGVmdZSDNoakVadjBvVlZNZGRxeDlzVXBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi80ZGQxNjktOGRjYi00NjUzLThhMDMt
NTcxYjZjNjEyYmVjLzEvdFVGVmdZSDNoakVadjBvVlZNZGRxeDlzVXBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi80ZGQxNjktOGRjYi00NjUzLThhMDMtNTcxYjZjNjEyYmVj
LzEvdFVGVmdZSDNoakVadjBvVlZNZGRxeDlzVXBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAtLD38Xg
kORD/hDvMLZDtr94ZUHwR3U1DsjOY1TacdumbU757eQfoRrYw7N6aPkswdyCYuV+
JwPm9XwshSDUYx/CiqHQC7hgKsHwIJ6C0O47y6+J23vjjOJ2nL2sWD8X2CfVsv8T
KRCQxaRO5Ug7nQOsstwEu3E/kizWMbuLIRUgHF8BwDFzvaQe8BG4eXERWFfTaxOz
sxw9ZLzIe0hYcjCUKe2GxXv/3O7KUL+XTEAVfvW9mGYUiSMjlKr6nG8BuSzHNNh8
oHyk0aVD49BRQJ5Y+tpAGBEMno8CBiHhycmZQiUsieX7Vb9VeHOCDCsEBaLTDsv1
bQDygKvPk5lB+w==
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:41:40 2026 by rpki-client