Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: x89TfrpK1lrx2i7fJwgdMevNOdOoM3fQMbfSTPoH+p4=
Subject key identifier: 86:E4:92:43:9C:F6:BB:D6:64:D5:1B:2B:CE:39:0E:12:2A:02:6C:F5
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 019D97E27B86BD2CAA345984E2AD9C751D8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 0FA3
Signing time: Thu 16 Apr 2026 20:01:35 +0000
Manifest this update: Thu 16 Apr 2026 20:01:35 +0000
Manifest next update: Fri 17 Apr 2026 20:01:35 +0000
Files and hashes: 1: DR-3C6YEtKMcL_5es4EXU7AZkNI.roa (hash: OUT6KMW2KBguWe74r4/N3KwEXWVjz7ZfPOq1uxqbzVY=)
2: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: WwpClkIu0wKi6D9y3+wIL5GTbbZK2ptI52yIdAr5lFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e2:7b:86:bd:2c:aa:34:59:84:e2:ad:9c:75:1d:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Apr 16 20:01:35 2026 GMT
Not After : Apr 17 20:01:35 2026 GMT
Subject: CN=86e492439cf6bbd664d51b2bce390e122a026cf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:56:13:73:01:fa:55:41:37:9f:08:79:ca:69:
fb:8c:0e:2e:1a:c1:a1:49:77:f3:35:e9:04:01:5a:
b5:a2:7d:10:5d:76:ae:d0:25:80:d4:46:6d:6c:cc:
e1:5d:10:70:f2:3e:19:63:18:94:d5:f3:3f:4b:ae:
34:07:b5:60:fb:81:7d:69:a2:3f:00:b1:50:d3:28:
70:38:9c:83:fa:65:e4:78:74:ea:79:8d:3f:c7:f6:
08:57:2c:7e:84:f4:67:b9:b5:72:7d:f2:b3:ae:63:
24:43:d2:b7:90:96:df:a7:8b:00:da:61:91:78:85:
87:cb:b5:a8:62:9b:68:37:11:a9:0d:89:28:0d:64:
05:17:c0:c2:64:cf:2c:cd:0d:b9:1f:f9:fa:ef:a1:
37:d3:0f:bc:b3:18:b2:1d:d9:24:e9:10:3f:2f:cd:
0c:8c:a5:40:00:48:10:5a:d5:86:a0:5c:bd:9f:53:
8b:6a:94:6b:f4:dd:4a:b4:68:10:40:e2:03:07:35:
78:b5:f7:57:a7:2a:0d:49:35:04:03:cd:be:ea:87:
94:39:2b:b2:d3:b2:06:26:ee:e4:12:b5:d0:1f:a7:
2e:7e:ee:b4:3a:86:9f:d8:75:cb:bd:be:86:f5:81:
cb:2e:0b:71:92:3e:f4:26:fb:dc:70:ad:7d:7c:1b:
c5:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:E4:92:43:9C:F6:BB:D6:64:D5:1B:2B:CE:39:0E:12:2A:02:6C:F5
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:e0:ca:94:66:52:3d:56:59:02:85:4b:aa:4c:a6:f7:ab:96:
09:9c:06:bd:b1:cb:a8:6f:16:01:33:84:68:55:b5:35:17:21:
ee:2e:43:7d:47:cb:9a:4f:56:71:6a:8a:55:a3:20:6d:c4:4c:
3f:5e:95:a2:5a:67:1f:60:80:b0:b1:de:9d:3f:27:c6:95:9b:
bd:14:9b:67:e3:d6:fb:bd:7f:82:60:97:01:4b:bd:a8:1c:0c:
f9:55:72:12:eb:b0:79:39:ca:a9:7b:df:57:d1:e9:b4:0e:2f:
d9:0b:42:fa:0f:65:cc:31:02:27:38:76:14:cb:b4:70:26:c7:
56:58:c9:d1:33:5a:fd:55:b2:07:5b:25:34:bc:9b:f5:87:5d:
0a:32:b8:75:b0:11:1e:01:9e:54:0b:62:50:9f:97:7e:d7:c5:
b4:ac:9f:a6:51:c0:7d:8e:46:e8:04:81:84:00:22:c6:db:9e:
24:15:29:53:72:40:de:dd:d2:cc:91:ad:29:48:eb:90:f4:fe:
e4:ed:2d:b9:db:51:46:a6:46:eb:04:d8:3b:aa:5c:9b:15:03:
5a:61:c2:eb:26:37:bb:c9:a7:61:5e:aa:59:9c:e6:d9:01:2c:
d2:7f:00:e2:4e:58:b1:b0:7d:ec:6d:18:0d:c0:1f:de:59:09:
77:4d:db:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:22:53 2026 by rpki-client