Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
File: T8muTFD6CwOCrdpfPH30GPeSWGQ.mft (raw, json)
Hash identifier: Hs6taA8l/pYJN5i0X1hbr9QLVit2qIMNzpYEPfTmF5s=
Subject key identifier: 4D:9D:D5:B4:E5:23:FF:65:97:EC:C4:08:96:68:43:4F:12:93:4F:50
Authority key identifier: 4F:C9:AE:4C:50:FA:0B:03:82:AD:DA:5F:3C:7D:F4:18:F7:92:58:64
Certificate issuer: /CN=4fc9ae4c50fa0b0382adda5f3c7df418f7925864
Certificate serial: 019CAA58A83380AEF5D7A1C1844CCC82D5CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
Manifest number: 01D2
Signing time: Sun 01 Mar 2026 17:01:02 +0000
Manifest this update: Sun 01 Mar 2026 17:01:02 +0000
Manifest next update: Mon 02 Mar 2026 17:01:02 +0000
Files and hashes: 1: KQelvFl-0S2BnhTjmwfeewzy0K0.roa (hash: eHfnP6Dgwq60SUqBjtwY/17CbS0N6nRtKkrY1JJPGsI=)
2: T8muTFD6CwOCrdpfPH30GPeSWGQ.crl (hash: cIHic6s2BMx3SmCalnqaaMWfb3gsqqSUT8T68jLEoYg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:a8:33:80:ae:f5:d7:a1:c1:84:4c:cc:82:d5:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fc9ae4c50fa0b0382adda5f3c7df418f7925864
Validity
Not Before: Mar 1 17:01:02 2026 GMT
Not After : Mar 2 17:01:02 2026 GMT
Subject: CN=4d9dd5b4e523ff6597ecc4089668434f12934f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:19:9d:96:a2:3d:12:3c:63:e7:3b:9f:c6:62:
3a:e1:ce:f7:65:85:ee:f8:7c:3d:ca:5a:f8:d5:68:
fe:f0:a0:7a:d7:d1:0f:97:01:a1:2c:e5:15:1b:46:
2e:6c:a2:da:7a:9f:ff:76:b2:92:fb:2a:c8:3c:d9:
9c:15:26:be:54:65:92:e6:da:9f:21:33:00:bb:bc:
62:42:5d:1b:ec:ee:6c:a6:4f:78:b7:37:05:71:ed:
51:d8:50:e4:26:27:c0:79:c6:8b:5d:aa:33:fd:a3:
92:2d:4a:78:27:0f:b6:e9:69:f1:64:a7:db:21:81:
45:ac:d1:ae:9d:18:2f:c0:1c:8c:9b:46:79:e7:4a:
8c:8c:85:9c:5b:c4:18:2c:0a:69:34:45:5e:67:42:
af:95:c0:64:80:d9:7d:24:8b:cc:45:13:5a:12:98:
aa:af:74:6d:e6:7f:6f:4b:30:d1:c4:0c:83:c1:11:
87:69:16:92:b2:d5:97:07:e4:e9:be:a9:2b:47:00:
c2:4e:92:03:57:2e:11:99:16:57:55:e5:ed:56:5b:
e0:6e:2e:e4:42:9b:52:39:f6:4b:cf:54:84:c7:f2:
46:02:3d:04:11:e5:f1:38:02:76:dc:55:25:5f:43:
0a:b2:7c:3b:5e:ab:42:ef:b6:26:08:d6:a6:4b:0d:
5b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:9D:D5:B4:E5:23:FF:65:97:EC:C4:08:96:68:43:4F:12:93:4F:50
X509v3 Authority Key Identifier:
keyid:4F:C9:AE:4C:50:FA:0B:03:82:AD:DA:5F:3C:7D:F4:18:F7:92:58:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T8muTFD6CwOCrdpfPH30GPeSWGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4445d7-ad2d-4445-8dde-2ebd6457ef1e/1/T8muTFD6CwOCrdpfPH30GPeSWGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:21:b1:e9:18:86:6d:14:21:54:8a:87:06:d4:74:d2:80:c1:
68:9a:7d:cd:2b:d9:cd:e9:e9:14:5e:e4:4d:4b:66:89:6a:61:
93:0c:59:99:e3:91:3a:32:ee:d9:03:77:a5:4e:a0:ee:34:9f:
1e:95:34:f2:54:ba:8d:55:27:66:4c:13:72:c4:5d:d1:35:8b:
31:38:28:30:5f:7c:d6:93:12:fa:63:56:d0:45:fa:48:9d:6a:
48:43:6d:b9:2f:e2:cb:cb:7a:80:a3:2f:71:69:dd:0b:ea:7d:
f0:8d:89:ac:48:32:86:cd:da:8e:88:44:fd:ce:db:9c:fd:6a:
e7:43:a3:75:95:f4:96:d2:89:a3:7f:98:4c:a5:7d:32:37:75:
72:22:dc:b6:62:b1:68:bf:10:57:66:81:8e:75:f7:a0:52:5d:
f2:60:5c:c5:78:d3:15:76:24:dd:b0:b9:0f:8b:60:74:98:86:
85:97:20:0e:f7:e3:4c:ac:60:85:a8:54:2a:a3:f2:75:f2:9e:
50:3a:aa:0d:5f:a8:fb:82:be:bf:80:8a:63:b9:35:57:e0:4f:
1f:b3:8a:4e:9d:92:42:b9:c2:e0:4c:38:12:aa:ee:0d:54:76:
24:07:01:2e:2f:ec:de:66:b1:b3:90:c4:dc:6c:cb:8c:ea:d9:
f0:6a:3e:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqWKgzgK7116HBhEzMgtXMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYzlhZTRjNTBmYTBiMDM4MmFkZGE1ZjNjN2RmNDE4Zjc5
MjU4NjQwHhcNMjYwMzAxMTcwMTAyWhcNMjYwMzAyMTcwMTAyWjAzMTEwLwYDVQQD
Eyg0ZDlkZDViNGU1MjNmZjY1OTdlY2M0MDg5NjY4NDM0ZjEyOTM0ZjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1RmdlqI9Ejxj5zufxmI64c73ZYXu
+Hw9ylr41Wj+8KB619EPlwGhLOUVG0YubKLaep//drKS+yrIPNmcFSa+VGWS5tqf
ITMAu7xiQl0b7O5spk94tzcFce1R2FDkJifAecaLXaoz/aOSLUp4Jw+26WnxZKfb
IYFFrNGunRgvwByMm0Z550qMjIWcW8QYLAppNEVeZ0KvlcBkgNl9JIvMRRNaEpiq
r3Rt5n9vSzDRxAyDwRGHaRaSstWXB+TpvqkrRwDCTpIDVy4RmRZXVeXtVlvgbi7k
QptSOfZLz1SEx/JGAj0EEeXxOAJ23FUlX0MKsnw7XqtC77YmCNamSw1bvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE2d1bTlI/9ll+zECJZoQ08Sk09QMB8GA1UdIwQY
MBaAFE/JrkxQ+gsDgq3aXzx99Bj3klhkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDhtdVRGRDZDd09DcmRwZlBIMzBHUGVTV0dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy80NDQ1ZDctYWQyZC00NDQ1LThkZGUt
MmViZDY0NTdlZjFlLzEvVDhtdVRGRDZDd09DcmRwZlBIMzBHUGVTV0dRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy80NDQ1ZDctYWQyZC00NDQ1LThkZGUtMmViZDY0NTdlZjFl
LzEvVDhtdVRGRDZDd09DcmRwZlBIMzBHUGVTV0dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhiGx6RiG
bRQhVIqHBtR00oDBaJp9zSvZzenpFF7kTUtmiWphkwxZmeOROjLu2QN3pU6g7jSf
HpU08lS6jVUnZkwTcsRd0TWLMTgoMF981pMS+mNW0EX6SJ1qSENtuS/iy8t6gKMv
cWndC+p98I2JrEgyhs3ajohE/c7bnP1q50OjdZX0ltKJo3+YTKV9Mjd1ciLctmKx
aL8QV2aBjnX3oFJd8mBcxXjTFXYk3bC5D4tgdJiGhZcgDvfjTKxghahUKqPydfKe
UDqqDV+o+4K+v4CKY7k1V+BPH7OKTp2SQrnC4Ew4EqruDVR2JAcBLi/s3maxs5DE
3GzLjOrZ8Go+lw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 01:55:07 2026 by rpki-client