Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
File: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft (raw, json)
Hash identifier: ucmUaQeIH5b1SpkuO+sj1FtZTmEQbnBrl9q99Kbk1O0=
Subject key identifier: DE:EF:85:B4:C7:C8:F1:82:2D:5E:3D:55:EA:B9:94:18:C1:87:20:09
Authority key identifier: B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
Certificate issuer: /CN=b5d87fdc272ae058618786e741707557bf4e1a33
Certificate serial: 019CAC4696B70AC2D06568ED4D729948DD78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
Manifest number: 05E2
Signing time: Mon 02 Mar 2026 02:00:33 +0000
Manifest this update: Mon 02 Mar 2026 02:00:33 +0000
Manifest next update: Tue 03 Mar 2026 02:00:33 +0000
Files and hashes: 1: 6QKPReqPPvM-G5eDtotQxkQu3rg.roa (hash: +zfD9kQLYj/Bi7oedLx+ydKYavDQjQhsfviUHiEJA58=)
2: tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl (hash: UVrGGBBAEeUwCechuzELvzMfP1S07JdNZfBktNU9Wfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:96:b7:0a:c2:d0:65:68:ed:4d:72:99:48:dd:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5d87fdc272ae058618786e741707557bf4e1a33
Validity
Not Before: Mar 2 02:00:33 2026 GMT
Not After : Mar 3 02:00:33 2026 GMT
Subject: CN=deef85b4c7c8f1822d5e3d55eab99418c1872009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:5a:d5:5c:f6:90:e2:b9:4f:18:1a:8b:ac:f7:
44:2c:a8:9b:49:51:ec:50:34:e4:c2:2d:e1:ea:a6:
1f:25:00:f9:a3:f0:76:05:08:3b:b2:fc:57:99:1e:
36:56:e3:20:39:1e:d6:0e:41:37:b8:51:4e:eb:0f:
33:bb:2a:f0:66:f1:8f:e8:9d:e0:f5:4e:08:46:46:
b8:1d:d0:2d:7d:16:fa:47:ce:72:cc:3e:ad:6b:6e:
77:2e:5b:d1:42:b2:fc:33:9e:28:25:78:1c:73:48:
e8:a8:21:a1:ac:be:9d:db:66:92:f1:e0:d5:cf:97:
03:db:b7:bc:fa:45:d6:c1:d5:a7:6b:80:43:14:97:
55:ed:e0:37:7e:4d:e3:b8:f9:4a:e4:ef:47:55:90:
24:a4:d8:b7:3f:dc:ba:d5:40:9c:ff:ed:d4:1a:8b:
01:f6:f8:1b:b6:6e:30:56:79:ac:cf:6f:4f:be:ae:
0c:50:b5:5f:20:4d:57:f3:c0:0a:37:56:5f:80:63:
aa:d3:cd:cb:ed:fa:01:ea:91:79:f7:5e:95:8f:19:
3e:8c:9b:ac:b1:21:cf:41:45:f7:cf:d9:92:0f:eb:
3c:46:a7:57:17:53:17:26:7a:fe:f1:25:44:3f:af:
82:fe:a0:8e:a2:cf:1a:7e:ae:0c:01:f2:ec:4d:8c:
bf:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:EF:85:B4:C7:C8:F1:82:2D:5E:3D:55:EA:B9:94:18:C1:87:20:09
X509v3 Authority Key Identifier:
keyid:B5:D8:7F:DC:27:2A:E0:58:61:87:86:E7:41:70:75:57:BF:4E:1A:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/670b10-10eb-476f-84ef-156eda2b55b6/1/tdh_3Ccq4Fhhh4bnQXB1V79OGjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:e6:bd:1c:cd:e0:8d:97:35:a1:69:18:89:35:da:e8:90:38:
82:67:63:d9:3a:2e:d9:24:21:60:53:41:7e:58:f3:9a:80:eb:
4a:03:b0:9d:73:47:a9:6f:ae:2a:38:bb:33:b8:a0:c6:fa:7b:
1c:43:01:aa:92:93:01:2b:b0:82:0b:63:bc:85:f9:c2:e0:9f:
0f:52:11:48:91:c1:01:6d:f9:dd:72:de:61:11:5b:c3:82:9e:
cf:92:b9:1b:10:3e:f6:59:97:5f:81:c8:98:0e:34:3e:d3:5e:
43:52:ca:ab:df:f6:77:a2:8f:7e:82:2f:28:6f:32:3b:ae:93:
26:20:bf:c9:6a:0a:68:11:04:5e:a0:03:df:0e:ba:42:b9:bb:
61:04:b6:c0:4b:67:5a:2e:bd:52:26:fa:45:fe:d6:b1:6d:d0:
8b:b0:53:27:e0:83:fa:14:e8:3b:c2:72:5d:92:9e:25:f1:0c:
09:be:58:d6:8d:4f:f3:b4:5f:6a:27:cc:a0:30:3d:1d:ee:64:
31:a7:d7:33:6f:ec:67:ec:bb:82:20:5c:9e:b0:ad:ca:43:b7:
85:42:9f:c0:a9:d4:33:92:47:cc:33:b8:e3:46:08:e4:08:e8:
e7:8e:bf:d0:ca:72:6c:24:61:d5:45:81:09:6c:a5:32:68:0a:
13:23:7d:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysRpa3CsLQZWjtTXKZSN14MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1ZDg3ZmRjMjcyYWUwNTg2MTg3ODZlNzQxNzA3NTU3YmY0
ZTFhMzMwHhcNMjYwMzAyMDIwMDMzWhcNMjYwMzAzMDIwMDMzWjAzMTEwLwYDVQQD
EyhkZWVmODViNGM3YzhmMTgyMmQ1ZTNkNTVlYWI5OTQxOGMxODcyMDA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3lrVXPaQ4rlPGBqLrPdELKibSVHs
UDTkwi3h6qYfJQD5o/B2BQg7svxXmR42VuMgOR7WDkE3uFFO6w8zuyrwZvGP6J3g
9U4IRka4HdAtfRb6R85yzD6ta253LlvRQrL8M54oJXgcc0joqCGhrL6d22aS8eDV
z5cD27e8+kXWwdWna4BDFJdV7eA3fk3juPlK5O9HVZAkpNi3P9y61UCc/+3UGosB
9vgbtm4wVnmsz29Pvq4MULVfIE1X88AKN1ZfgGOq083L7foB6pF5916Vjxk+jJus
sSHPQUX3z9mSD+s8RqdXF1MXJnr+8SVEP6+C/qCOos8afq4MAfLsTYy/vwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN7vhbTHyPGCLV49Veq5lBjBhyAJMB8GA1UdIwQY
MBaAFLXYf9wnKuBYYYeG50FwdVe/ThozMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGRoXzNDY3E0RmhoaDRiblFYQjFWNzlPR2pNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC82NzBiMTAtMTBlYi00NzZmLTg0ZWYt
MTU2ZWRhMmI1NWI2LzEvdGRoXzNDY3E0RmhoaDRiblFYQjFWNzlPR2pNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC82NzBiMTAtMTBlYi00NzZmLTg0ZWYtMTU2ZWRhMmI1NWI2
LzEvdGRoXzNDY3E0RmhoaDRiblFYQjFWNzlPR2pNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPOa9HM3g
jZc1oWkYiTXa6JA4gmdj2Tou2SQhYFNBfljzmoDrSgOwnXNHqW+uKji7M7igxvp7
HEMBqpKTASuwggtjvIX5wuCfD1IRSJHBAW353XLeYRFbw4Kez5K5GxA+9lmXX4HI
mA40PtNeQ1LKq9/2d6KPfoIvKG8yO66TJiC/yWoKaBEEXqAD3w66Qrm7YQS2wEtn
Wi69Uib6Rf7WsW3Qi7BTJ+CD+hToO8JyXZKeJfEMCb5Y1o1P87RfaifMoDA9He5k
MafXM2/sZ+y7giBcnrCtykO3hUKfwKnUM5JHzDO440YI5Ajo546/0MpybCRh1UWB
CWylMmgKEyN9Xw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 11:00:25 2026 by rpki-client