Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
File: TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft (raw, json)
Hash identifier: Bcp17KiBs9iJ7gI0Fts05he/astv4KoDBI0/EpxJQqU=
Subject key identifier: 77:BD:AE:64:5C:8C:CD:5D:49:B9:7F:94:7D:06:D5:E3:ED:3F:8F:6E
Authority key identifier: 4D:0F:25:7F:33:9C:FB:9E:27:54:B6:CC:24:36:4F:0F:12:90:58:DB
Certificate issuer: /CN=4d0f257f339cfb9e2754b6cc24364f0f129058db
Certificate serial: 019CA9EB24C425729DD3232A7992C9156BBA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
Manifest number: 167E
Signing time: Sun 01 Mar 2026 15:01:25 +0000
Manifest this update: Sun 01 Mar 2026 15:01:25 +0000
Manifest next update: Mon 02 Mar 2026 15:01:25 +0000
Files and hashes: 1: TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl (hash: CCJHfwXosdzTE84S4TNEL4tXCjQV8JOBnSAzVMTzXNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:eb:24:c4:25:72:9d:d3:23:2a:79:92:c9:15:6b:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0f257f339cfb9e2754b6cc24364f0f129058db
Validity
Not Before: Mar 1 15:01:25 2026 GMT
Not After : Mar 2 15:01:25 2026 GMT
Subject: CN=77bdae645c8ccd5d49b97f947d06d5e3ed3f8f6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3e:76:ab:03:57:0c:5a:0e:49:2d:63:10:5c:
1c:cf:90:cb:6d:bd:59:a4:10:07:c7:8a:64:2a:a2:
bd:c2:20:27:c1:e1:29:a7:46:20:50:ae:d1:4c:9f:
95:34:f3:d9:37:21:38:c4:82:45:a8:66:65:02:f0:
57:83:1d:cf:91:da:d7:69:d1:a5:34:e1:51:07:6a:
f7:39:41:1f:7f:49:5c:75:80:d5:4d:25:54:70:52:
dc:f3:df:b9:d3:20:3b:40:e1:cf:60:69:f2:60:ad:
dd:b5:2e:b7:25:85:7e:8b:9d:47:99:02:c1:00:66:
c0:2e:63:35:98:0f:bb:ea:21:b5:ff:01:a4:fc:24:
e4:86:a3:b2:0a:88:48:83:e8:70:49:fc:fd:5b:f4:
2b:bc:66:ef:9a:8e:44:2c:f5:c4:ac:36:a5:f5:1c:
db:05:98:40:ee:ce:86:26:96:8a:74:b1:dd:ab:80:
40:1a:b4:9e:a6:5c:4a:ac:1a:7a:55:84:1f:b2:56:
0d:25:1e:72:b7:96:50:8d:c6:dd:d1:97:2e:3a:45:
35:c3:7d:8d:cc:8d:4c:6d:a8:de:e3:b5:ce:ec:00:
d1:bc:20:35:d1:cc:ba:65:d0:91:d8:d1:41:73:2c:
be:f2:b1:89:b9:41:c7:44:32:5e:b8:34:05:6c:cb:
7d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BD:AE:64:5C:8C:CD:5D:49:B9:7F:94:7D:06:D5:E3:ED:3F:8F:6E
X509v3 Authority Key Identifier:
keyid:4D:0F:25:7F:33:9C:FB:9E:27:54:B6:CC:24:36:4F:0F:12:90:58:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQ8lfzOc-54nVLbMJDZPDxKQWNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4239e9-e670-44f1-868e-f3f581dfc648/1/TQ8lfzOc-54nVLbMJDZPDxKQWNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:97:20:e3:98:17:2b:75:b4:29:11:08:6f:c8:09:2f:ef:78:
04:db:bb:ad:5c:3a:72:d6:7a:4e:62:00:32:76:2b:ce:9b:30:
ff:49:f1:02:21:f6:f5:00:a3:1c:e4:b9:a9:6e:31:cf:bd:ba:
f6:91:ac:17:73:f7:1a:5e:f8:28:31:eb:46:9d:1f:61:ed:37:
df:5b:c9:33:4c:39:b0:04:e3:55:c6:54:ff:d7:74:66:79:27:
ea:8b:45:e7:2e:04:16:9b:0e:03:93:ce:63:3c:49:21:0b:e1:
0d:a3:5f:af:cb:7f:a3:cf:82:63:dd:1c:ac:8a:84:2a:2d:0c:
59:8b:bb:a8:8c:16:76:54:36:12:97:f3:31:db:98:26:dd:e9:
a2:3e:ce:48:19:58:1c:0f:90:9a:99:ad:6a:86:5e:e5:39:79:
51:1d:c9:7b:5e:d0:b8:3e:2b:6a:9a:fa:a4:d1:d2:b9:1c:20:
0e:9a:46:e2:df:67:6b:d6:23:55:9b:b2:d8:b5:07:60:11:82:
e0:6c:a8:7f:e7:ee:9a:52:9c:32:1d:70:70:25:31:78:60:1b:
f2:df:7f:94:14:d4:e0:bb:ca:d6:5f:01:70:42:35:13:06:2f:
7d:4f:e5:64:ee:97:91:fc:2a:45:31:5b:b5:28:ae:00:b5:0c:
3c:eb:60:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyp6yTEJXKd0yMqeZLJFWu6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMGYyNTdmMzM5Y2ZiOWUyNzU0YjZjYzI0MzY0ZjBmMTI5
MDU4ZGIwHhcNMjYwMzAxMTUwMTI1WhcNMjYwMzAyMTUwMTI1WjAzMTEwLwYDVQQD
Eyg3N2JkYWU2NDVjOGNjZDVkNDliOTdmOTQ3ZDA2ZDVlM2VkM2Y4ZjZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzT52qwNXDFoOSS1jEFwcz5DLbb1Z
pBAHx4pkKqK9wiAnweEpp0YgUK7RTJ+VNPPZNyE4xIJFqGZlAvBXgx3PkdrXadGl
NOFRB2r3OUEff0lcdYDVTSVUcFLc89+50yA7QOHPYGnyYK3dtS63JYV+i51HmQLB
AGbALmM1mA+76iG1/wGk/CTkhqOyCohIg+hwSfz9W/QrvGbvmo5ELPXErDal9Rzb
BZhA7s6GJpaKdLHdq4BAGrSeplxKrBp6VYQfslYNJR5yt5ZQjcbd0ZcuOkU1w32N
zI1Mbaje47XO7ADRvCA10cy6ZdCR2NFBcyy+8rGJuUHHRDJeuDQFbMt9/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHe9rmRcjM1dSbl/lH0G1ePtP49uMB8GA1UdIwQY
MBaAFE0PJX8znPueJ1S2zCQ2Tw8SkFjbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFE4bGZ6T2MtNTRuVkxiTUpEWlBEeEtRV05zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC80MjM5ZTktZTY3MC00NGYxLTg2OGUt
ZjNmNTgxZGZjNjQ4LzEvVFE4bGZ6T2MtNTRuVkxiTUpEWlBEeEtRV05zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC80MjM5ZTktZTY3MC00NGYxLTg2OGUtZjNmNTgxZGZjNjQ4
LzEvVFE4bGZ6T2MtNTRuVkxiTUpEWlBEeEtRV05zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk5cg45gX
K3W0KREIb8gJL+94BNu7rVw6ctZ6TmIAMnYrzpsw/0nxAiH29QCjHOS5qW4xz726
9pGsF3P3Gl74KDHrRp0fYe0331vJM0w5sATjVcZU/9d0Znkn6otF5y4EFpsOA5PO
YzxJIQvhDaNfr8t/o8+CY90crIqEKi0MWYu7qIwWdlQ2EpfzMduYJt3poj7OSBlY
HA+QmpmtaoZe5Tl5UR3Je17QuD4rapr6pNHSuRwgDppG4t9na9YjVZuy2LUHYBGC
4Gyof+fumlKcMh1wcCUxeGAb8t9/lBTU4LvK1l8BcEI1EwYvfU/lZO6XkfwqRTFb
tSiuALUMPOtgqQ==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:43:45 2026 by rpki-client