Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: /xQiwAuUyOQekZcqheffuQFelwY+xd+LVmwcxfF7sHU=
Subject key identifier: FA:17:65:6A:33:6F:4D:58:BA:CB:7C:AD:3F:A0:06:CC:16:75:58:31
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 019D25F124B293A9D00D241205364C146225
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0F68
Signing time: Wed 25 Mar 2026 17:00:53 +0000
Manifest this update: Wed 25 Mar 2026 17:00:53 +0000
Manifest next update: Thu 26 Mar 2026 17:00:53 +0000
Files and hashes: 1: DR-3C6YEtKMcL_5es4EXU7AZkNI.roa (hash: OUT6KMW2KBguWe74r4/N3KwEXWVjz7ZfPOq1uxqbzVY=)
2: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: ovX/8UxtdpQgmgF+ukElfvdxRgtmJ2m84oS+ZLixgX8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:24:b2:93:a9:d0:0d:24:12:05:36:4c:14:62:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Mar 25 17:00:53 2026 GMT
Not After : Mar 26 17:00:53 2026 GMT
Subject: CN=fa17656a336f4d58bacb7cad3fa006cc16755831
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a7:46:9d:0c:ae:45:78:de:32:b6:e5:19:53:
41:d6:0e:db:30:a5:8b:90:4c:5e:ab:8c:f6:a4:81:
38:85:3a:c4:1d:6d:71:3c:4e:06:1f:53:a7:27:13:
87:b7:98:3d:6c:ac:24:2b:1b:4a:13:ad:53:d9:56:
c6:2e:7c:e7:3d:04:71:c0:85:54:0c:e2:54:8e:8b:
28:44:37:6a:c8:51:88:01:c1:88:73:47:f5:9a:cb:
74:6a:5f:6d:f4:2e:b2:48:2d:b8:22:29:02:6d:ba:
35:2b:4d:ff:a6:aa:3f:29:ad:c1:a8:3e:1f:49:c1:
7c:94:8b:ea:81:9f:d1:47:85:3f:28:17:7c:ce:c7:
12:4f:f7:23:6a:ee:84:1a:00:7b:ed:45:33:da:8f:
83:ac:4f:50:57:2c:46:d3:59:91:01:e9:75:de:54:
8a:97:b6:b5:9d:ed:3a:4f:d1:3d:9f:f2:08:e1:8f:
de:4d:07:0a:59:70:dc:ca:e1:1a:67:71:58:1c:f3:
47:14:98:a0:c9:6b:3f:4b:8b:e7:6b:c4:31:3b:5f:
3e:94:86:fb:85:bd:63:0a:0d:20:cd:76:99:d5:10:
89:27:85:c4:b3:7b:39:d4:21:a3:8f:ff:21:6e:fe:
e0:3e:3f:df:21:7d:f2:ba:4b:e4:e5:7e:0b:d1:11:
0a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:17:65:6A:33:6F:4D:58:BA:CB:7C:AD:3F:A0:06:CC:16:75:58:31
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:ec:20:e5:7a:f7:ea:8d:c6:2d:4d:01:06:47:e7:54:00:b4:
5c:01:29:2e:f7:9f:2a:de:b3:f0:d9:b3:4d:e2:ae:bd:38:80:
25:45:d2:82:57:00:64:86:a5:46:3d:95:b6:f0:5b:4f:70:ae:
95:43:c8:3d:3a:93:24:1e:63:9e:bf:f9:f3:dc:91:b0:e0:17:
18:61:90:be:4c:a2:12:5e:27:e9:af:54:fc:d4:bc:a6:39:c5:
fe:8f:36:dc:dd:3b:bb:fd:4b:e4:d9:da:62:c6:76:7e:7e:40:
95:47:6e:08:a3:48:c8:e1:73:42:75:76:1a:1c:ae:2e:c5:6c:
de:80:13:a4:80:f0:fe:07:df:3a:7c:d4:56:0e:10:56:2a:9c:
90:33:26:4e:dc:8e:b2:4b:1e:c6:ca:57:9b:9a:15:32:4d:39:
fd:b2:ec:fd:67:b3:82:70:ab:82:84:93:8a:3f:9d:bb:79:e6:
90:c3:e5:b4:ec:9c:07:24:8b:60:e5:97:3f:60:ee:57:d6:b6:
ce:86:4b:d4:e2:99:b6:24:0a:29:52:df:d1:75:2a:6a:83:ad:
d0:f1:fe:9b:ec:06:ea:7c:83:2d:c2:56:c7:5d:73:fc:1d:61:
45:18:1c:63:5a:ce:72:4e:14:a5:f3:0f:b4:0e:4d:d1:59:8a:
d3:93:12:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:37:23 2026 by rpki-client