Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
File: TfkmWGAQlO1kmFxkxpUr40FjAc4.mft (raw, json)
Hash identifier: lKdsgy1GepYf2AwaJhaykPga4yT/1IV7e3Sj+fXKFX0=
Subject key identifier: 0F:53:FC:6E:05:B7:27:2D:B7:15:00:78:3C:C1:04:69:18:D9:62:D1
Authority key identifier: 4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
Certificate issuer: /CN=4df92658601094ed64985c64c6952be3416301ce
Certificate serial: 019EBDDAC29120067F51514C853DE0373BE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
Manifest number: 0BC9
Signing time: Fri 12 Jun 2026 22:01:30 +0000
Manifest this update: Fri 12 Jun 2026 22:01:30 +0000
Manifest next update: Sat 13 Jun 2026 22:01:30 +0000
Files and hashes: 1: TT7AxVwRgLIDSeadKvoi71E8vK0.asa (hash: o3OsuB0V5ph9dQ1ef1EOSm9Ca3120WnHHtR+xfhJuI4=)
2: TfkmWGAQlO1kmFxkxpUr40FjAc4.crl (hash: RKGsk0Hy2Q6wKpHOVWbwLPECQvznWFoeodbVspt8TaY=)
3: vkkRAkl-IwQNmrBge38zIHM1u4s.roa (hash: ww7yIGrhLBt5cEWEEdI9G55jx6vHqfpMgzLOawUYyek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 22:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:da:c2:91:20:06:7f:51:51:4c:85:3d:e0:37:3b:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4df92658601094ed64985c64c6952be3416301ce
Validity
Not Before: Jun 12 22:01:30 2026 GMT
Not After : Jun 13 22:01:30 2026 GMT
Subject: CN=0f53fc6e05b7272db71500783cc1046918d962d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:50:3a:37:e8:d6:9e:44:c1:0f:6b:84:bc:88:
ff:c3:c7:36:fd:01:ce:22:b1:12:94:1c:0a:cd:73:
81:a6:11:be:6c:ee:88:f0:8e:80:f1:28:a8:49:ad:
d7:9d:64:f8:aa:11:b2:f7:9a:92:39:c4:6b:c1:61:
10:29:e4:14:78:b7:e3:65:1c:c7:16:18:19:ee:86:
91:c2:ef:0a:3d:99:c8:a2:20:a6:20:66:d8:1b:2d:
eb:17:50:b5:62:63:27:a8:3d:72:a5:6e:6f:54:ab:
81:15:f3:59:bc:88:a9:52:4a:87:fc:83:5b:63:6d:
19:a2:66:b3:d5:44:85:5b:bb:56:60:e6:f8:dc:66:
ec:05:9c:b1:7d:14:28:b8:e5:fe:eb:9d:23:4a:02:
ef:9f:21:f7:85:1b:47:fc:a5:ae:96:58:30:80:d6:
52:e5:9e:93:fe:21:8a:51:a7:f5:d2:2f:d8:47:4a:
02:f6:0e:a8:ae:fe:ef:e9:55:4e:8b:b3:51:5c:a9:
69:e5:b7:f9:c6:b3:1d:4f:61:a5:7c:43:0e:ec:ae:
71:82:10:82:7a:42:86:ef:33:d4:61:12:7c:0d:6f:
b2:1d:5b:da:00:62:af:02:38:bd:4e:a9:e1:80:74:
0e:5c:5a:cf:14:84:47:30:3b:10:76:31:77:12:72:
01:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:53:FC:6E:05:B7:27:2D:B7:15:00:78:3C:C1:04:69:18:D9:62:D1
X509v3 Authority Key Identifier:
keyid:4D:F9:26:58:60:10:94:ED:64:98:5C:64:C6:95:2B:E3:41:63:01:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfkmWGAQlO1kmFxkxpUr40FjAc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a9e57e-2479-4576-b275-87433157a25b/1/TfkmWGAQlO1kmFxkxpUr40FjAc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:56:07:90:53:e2:d4:85:55:c7:6c:cc:aa:5a:3f:a8:8e:6d:
f1:a9:33:ee:f7:ce:27:1d:a9:fa:c7:85:73:aa:35:db:a8:21:
24:7b:d2:6a:ee:4f:63:47:6f:4b:92:a9:54:29:1c:76:7c:d3:
7b:80:7f:8c:47:63:81:e3:a8:52:f8:dd:4f:a7:93:21:52:9f:
cf:b5:06:7a:b5:e7:a0:48:d9:1b:01:42:28:7e:52:7e:2a:60:
a7:cb:cc:c8:e8:fc:93:e6:72:ae:02:b9:5e:af:9e:14:2d:b0:
70:de:ec:70:b2:44:16:59:00:9d:60:95:7c:2d:d6:54:c5:3e:
0e:44:8e:92:df:7d:54:dc:74:d9:81:4a:de:60:ca:20:e5:49:
fe:86:8e:cc:c9:37:af:c4:9d:ab:24:af:f2:d3:3d:67:76:fa:
b4:cd:52:2e:3d:3e:8e:a3:9b:2a:88:8a:7b:3d:43:c6:ff:1b:
3c:4a:a7:64:b7:cb:49:12:0f:09:d4:74:c4:5e:5c:38:78:b2:
d5:dc:d1:0f:12:aa:79:87:e9:b7:04:ae:f2:cc:da:ba:4e:65:
19:6f:e7:ad:05:a4:f5:eb:be:10:08:7d:a8:4d:dd:c2:9e:39:
6f:e7:75:66:22:10:38:b0:61:b1:06:5b:7a:2d:78:83:f9:78:
86:07:d6:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ692sKRIAZ/UVFMhT3gNzvpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkZjkyNjU4NjAxMDk0ZWQ2NDk4NWM2NGM2OTUyYmUzNDE2
MzAxY2UwHhcNMjYwNjEyMjIwMTMwWhcNMjYwNjEzMjIwMTMwWjAzMTEwLwYDVQQD
EygwZjUzZmM2ZTA1YjcyNzJkYjcxNTAwNzgzY2MxMDQ2OTE4ZDk2MmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1A6N+jWnkTBD2uEvIj/w8c2/QHO
IrESlBwKzXOBphG+bO6I8I6A8SioSa3XnWT4qhGy95qSOcRrwWEQKeQUeLfjZRzH
FhgZ7oaRwu8KPZnIoiCmIGbYGy3rF1C1YmMnqD1ypW5vVKuBFfNZvIipUkqH/INb
Y20Zomaz1USFW7tWYOb43GbsBZyxfRQouOX+650jSgLvnyH3hRtH/KWullgwgNZS
5Z6T/iGKUaf10i/YR0oC9g6orv7v6VVOi7NRXKlp5bf5xrMdT2GlfEMO7K5xghCC
ekKG7zPUYRJ8DW+yHVvaAGKvAji9TqnhgHQOXFrPFIRHMDsQdjF3EnIBSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA9T/G4FtycttxUAeDzBBGkY2WLRMB8GA1UdIwQY
MBaAFE35JlhgEJTtZJhcZMaVK+NBYwHOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGZrbVdHQVFsTzFrbUZ4a3hwVXI0MEZqQWM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9hOWU1N2UtMjQ3OS00NTc2LWIyNzUt
ODc0MzMxNTdhMjViLzEvVGZrbVdHQVFsTzFrbUZ4a3hwVXI0MEZqQWM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC9hOWU1N2UtMjQ3OS00NTc2LWIyNzUtODc0MzMxNTdhMjVi
LzEvVGZrbVdHQVFsTzFrbUZ4a3hwVXI0MEZqQWM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG1YHkFPi
1IVVx2zMqlo/qI5t8akz7vfOJx2p+seFc6o126ghJHvSau5PY0dvS5KpVCkcdnzT
e4B/jEdjgeOoUvjdT6eTIVKfz7UGerXnoEjZGwFCKH5Sfipgp8vMyOj8k+ZyrgK5
Xq+eFC2wcN7scLJEFlkAnWCVfC3WVMU+DkSOkt99VNx02YFK3mDKIOVJ/oaOzMk3
r8SdqySv8tM9Z3b6tM1SLj0+jqObKoiKez1Dxv8bPEqnZLfLSRIPCdR0xF5cOHiy
1dzRDxKqeYfptwSu8szauk5lGW/nrQWk9eu+EAh9qE3dwp45b+d1ZiIQOLBhsQZb
ei14g/l4hgfWZA==
-----END CERTIFICATE-----
Generated at Sat Jun 13 08:36:58 2026 by rpki-client