Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
File: ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft (raw, json)
Hash identifier: IsxeiBqUjhf/umMl8LgSJBH4/apiP2hOOopI40sV0TM=
Subject key identifier: 66:20:34:FD:C2:38:B1:D9:4F:9D:5C:7A:51:88:AF:1E:C7:6B:AE:6C
Authority key identifier: B5:AD:09:67:CA:00:02:DD:9C:E4:5B:C4:3B:B7:01:B4:17:3D:79:BD
Certificate issuer: /CN=b5ad0967ca0002dd9ce45bc43bb701b4173d79bd
Certificate serial: 019CAAC6DC55E7F0C03841D0EA217DAB9F1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
Manifest number: 0E6A
Signing time: Sun 01 Mar 2026 19:01:25 +0000
Manifest this update: Sun 01 Mar 2026 19:01:25 +0000
Manifest next update: Mon 02 Mar 2026 19:01:25 +0000
Files and hashes: 1: ta0JZ8oAAt2c5FvEO7cBtBc9eb0.crl (hash: +HmOuzp+3fJbezuNCvg2syi5I+99ykROAEAzz602kFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:dc:55:e7:f0:c0:38:41:d0:ea:21:7d:ab:9f:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5ad0967ca0002dd9ce45bc43bb701b4173d79bd
Validity
Not Before: Mar 1 19:01:25 2026 GMT
Not After : Mar 2 19:01:25 2026 GMT
Subject: CN=662034fdc238b1d94f9d5c7a5188af1ec76bae6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:70:0c:22:66:f7:a9:eb:c3:e2:77:48:bd:0b:
08:13:3a:f8:d3:57:34:c4:4a:28:8d:52:41:41:72:
6b:8b:23:ac:60:4b:52:91:57:16:7e:f6:5c:82:b6:
69:45:97:5f:66:59:14:55:c5:6f:5f:7a:cf:83:aa:
0b:09:43:4b:00:e2:da:33:27:39:7a:69:44:87:81:
8c:e1:8e:18:05:88:54:ba:f6:40:61:a6:2a:56:b8:
2f:9c:c9:e8:ab:46:91:ec:8b:c3:e0:ef:dc:d3:18:
82:ea:e0:bc:93:08:13:d1:4c:f8:5d:77:ca:5f:7e:
c0:09:6f:a0:14:c4:62:c7:11:58:f3:dd:33:e2:76:
9f:95:17:42:63:1c:98:a0:d0:33:c9:ec:7f:ba:bf:
06:4b:cf:08:f2:52:8d:43:3e:8f:40:59:f7:1c:75:
0d:e2:fd:3e:a4:e0:af:5a:32:cf:50:4b:c8:99:43:
f2:cd:16:99:89:e7:af:b0:7d:96:b1:fa:9f:ad:e0:
c8:5b:4b:2f:e2:aa:5d:97:c8:86:db:d6:1d:30:32:
ad:ce:b6:dd:a2:cb:16:4b:23:04:61:51:e0:85:e0:
b7:4e:8b:15:dd:ed:e4:4b:47:dd:23:a2:15:b7:84:
5e:25:a2:9b:31:10:f2:44:68:31:8a:00:c0:59:88:
39:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:20:34:FD:C2:38:B1:D9:4F:9D:5C:7A:51:88:AF:1E:C7:6B:AE:6C
X509v3 Authority Key Identifier:
keyid:B5:AD:09:67:CA:00:02:DD:9C:E4:5B:C4:3B:B7:01:B4:17:3D:79:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/34819d-e231-4060-9f12-7c36ef613a8f/1/ta0JZ8oAAt2c5FvEO7cBtBc9eb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:22:33:13:a7:a1:fb:08:40:e1:f8:cc:27:1a:41:0b:37:d0:
85:ce:36:1f:43:1c:24:66:1a:a0:0b:de:85:d4:5e:94:17:c7:
8e:f1:e0:95:50:2b:98:eb:9c:4d:3a:a2:ef:4a:dc:4e:e4:7d:
ad:11:5a:89:04:51:57:66:ef:e5:e4:e8:dd:44:65:fa:34:be:
69:e9:ed:f8:c8:18:3a:f8:ec:34:b3:96:ac:67:22:81:9e:32:
28:04:24:39:a6:ff:b6:af:2b:f7:35:f3:09:ca:36:ce:d5:d9:
0e:8c:44:04:d1:66:f7:c2:c4:8d:47:12:8c:08:ab:73:74:9c:
8e:15:a3:ca:95:ea:42:38:15:fe:71:03:c6:bf:72:e4:7b:ce:
ba:de:bd:77:16:b2:3f:7b:ee:9d:69:2b:d8:ba:3c:45:32:cc:
24:cd:92:3d:ee:1c:04:2d:86:81:04:7e:bc:db:01:2b:7c:ac:
b5:28:b7:f8:ed:83:8c:ef:7b:ce:65:0e:30:3e:c9:31:f8:9a:
96:34:c0:1e:08:21:a2:ed:f3:37:84:ee:9b:dd:f6:54:f3:ea:
07:4f:61:06:f9:65:73:d9:2e:a8:bd:6d:70:fa:03:ae:5d:1a:
05:f3:57:3f:7b:c7:71:38:e2:a4:e0:63:4d:d7:a7:c4:9f:51:
f0:a5:f5:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:52:07 2026 by rpki-client