Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: ojXg23jvPafFj+rL+oZogb2NOPlW5TK37Z94X5XRQa0=
Subject key identifier: 66:43:04:C9:48:9E:5F:F2:84:F1:C7:7F:9C:F5:15:5C:87:85:8A:33
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 019CAA5849E7B6CA68A728574C911A88203C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0F28
Signing time: Sun 01 Mar 2026 17:00:38 +0000
Manifest this update: Sun 01 Mar 2026 17:00:38 +0000
Manifest next update: Mon 02 Mar 2026 17:00:38 +0000
Files and hashes: 1: DR-3C6YEtKMcL_5es4EXU7AZkNI.roa (hash: OUT6KMW2KBguWe74r4/N3KwEXWVjz7ZfPOq1uxqbzVY=)
2: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: XsY3hSrlA3KJf+PB5v4vPgMXznWvhjCNAzTqglCw2BA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:49:e7:b6:ca:68:a7:28:57:4c:91:1a:88:20:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Mar 1 17:00:38 2026 GMT
Not After : Mar 2 17:00:38 2026 GMT
Subject: CN=664304c9489e5ff284f1c77f9cf5155c87858a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:68:cb:ce:a1:c2:22:18:ac:1c:eb:a3:f2:59:
fe:f2:f4:92:e5:f0:53:99:68:d5:51:a4:99:73:0f:
2a:18:b4:3d:21:f4:08:ea:da:b4:6e:40:cc:e2:0e:
b7:47:db:44:53:a5:67:e6:33:f8:d3:a0:0c:8a:ba:
3f:60:8e:ed:ac:da:8b:d4:a2:b3:2d:4e:86:3c:16:
a5:1a:ab:90:f4:48:68:9b:35:38:cf:8a:69:09:38:
99:c6:2a:18:92:f7:5a:03:98:19:89:a4:3d:41:fc:
c6:37:fa:ab:32:35:a2:56:a0:72:9e:bb:83:b0:bc:
34:7f:12:37:78:9a:3b:21:02:d1:30:60:d7:ea:e9:
7e:f0:a8:12:77:10:a0:a9:d1:38:ca:4c:3e:22:27:
8f:a8:c8:30:c6:0c:c4:ac:ec:28:88:dd:8f:ef:d1:
2d:a7:e0:72:df:29:91:2f:4b:75:9d:74:5c:a0:06:
6a:d9:23:33:61:3a:c7:cd:1a:7d:a0:3f:09:7f:e9:
96:90:60:75:90:19:c9:95:de:0d:2d:ec:78:3f:f8:
d1:4f:d2:50:e7:2b:1a:87:bf:dc:ba:2d:ae:b8:ba:
89:8b:14:2a:42:fe:76:c3:e1:37:98:ff:76:d2:53:
10:27:39:a5:06:41:04:f7:13:34:19:8f:20:05:2d:
0f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:43:04:C9:48:9E:5F:F2:84:F1:C7:7F:9C:F5:15:5C:87:85:8A:33
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:ae:df:a7:ed:9b:17:ef:50:02:24:f0:c5:bb:42:df:7f:80:
b6:31:d0:f8:b0:2e:a4:58:c9:ea:ac:9f:a3:3c:fe:4b:fb:7c:
6e:e4:d4:9b:aa:46:48:d0:1c:16:e6:e6:25:2c:ab:08:3c:83:
a2:0d:08:dd:be:44:80:85:49:84:9f:94:c2:fb:43:8a:df:f4:
d5:c3:b7:9a:55:a6:96:29:13:25:c7:7e:fb:17:1a:83:3d:41:
0a:04:99:1b:1c:18:6a:b6:f0:39:6a:91:23:18:4a:7b:dc:e0:
19:6b:93:8c:06:95:90:eb:f7:33:7b:d7:4d:d8:7e:8c:6a:45:
e3:89:99:58:a3:fb:35:6a:48:91:ff:bc:63:74:3b:19:02:0d:
07:3b:3a:1d:32:86:ff:4f:fc:a2:59:f6:c7:14:73:45:5d:ac:
86:50:36:49:87:c4:92:cc:f8:b0:99:0b:76:0d:31:39:f2:e8:
42:fc:e7:7a:73:de:a5:d1:c0:b9:3e:37:63:e8:ad:26:39:00:
68:57:47:46:3d:c4:7a:e6:ad:b1:8d:15:11:ea:4a:86:f0:a6:
5f:1e:24:a2:11:1e:82:a7:8e:7b:2e:fb:b4:e9:2b:06:a0:8c:
d8:cb:8f:c9:a2:2c:27:7a:e3:af:8f:35:a2:b4:30:bd:be:1c:
22:8b:8d:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:03:20 2026 by rpki-client