Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
File: ttaENqdjOfZxRBz71QrUAdPAD_8.mft (raw, json)
Hash identifier: KFG0fN0gIpC5DSZO6OC64BsZq/c0oAH9N0WHFS2zE5I=
Subject key identifier: 68:48:AC:35:84:D4:05:9E:0E:F7:25:91:91:4B:A2:71:A6:98:F9:77
Authority key identifier: B6:D6:84:36:A7:63:39:F6:71:44:1C:FB:D5:0A:D4:01:D3:C0:0F:FF
Certificate issuer: /CN=b6d68436a76339f671441cfbd50ad401d3c00fff
Certificate serial: 019D382DE5CC3C8A1723AA8EC37B233F123B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
Manifest number: 15FA
Signing time: Sun 29 Mar 2026 06:00:25 +0000
Manifest this update: Sun 29 Mar 2026 06:00:25 +0000
Manifest next update: Mon 30 Mar 2026 06:00:25 +0000
Files and hashes: 1: BnG9xCYyBYlPUND8AWN9uHS5IZo.roa (hash: qw7izOSv6K3vaghtKBPoCLVyOeT33jc/k8obXSbsCcU=)
2: ttaENqdjOfZxRBz71QrUAdPAD_8.crl (hash: 7CeLLrcTCIJWAjvKr9ExNsm7sOPnVvb+8Fs0bTOn6k8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:e5:cc:3c:8a:17:23:aa:8e:c3:7b:23:3f:12:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d68436a76339f671441cfbd50ad401d3c00fff
Validity
Not Before: Mar 29 06:00:25 2026 GMT
Not After : Mar 30 06:00:25 2026 GMT
Subject: CN=6848ac3584d4059e0ef72591914ba271a698f977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e1:f4:00:b9:bc:ba:fb:11:53:42:5f:96:b2:
f9:c8:54:05:2b:b0:12:14:e9:7c:c1:ce:49:bb:bd:
b0:61:6a:3e:8e:24:46:4a:af:c2:59:82:72:44:96:
ae:a2:c9:a4:fc:15:b6:11:04:fa:13:27:23:ad:69:
cd:dd:8e:a1:e4:b9:79:4a:7c:63:b4:67:7e:84:a8:
94:c3:e8:04:86:1e:1a:87:52:7a:c8:3b:bb:78:a6:
a3:7d:04:1e:de:77:b7:ff:8d:e1:e7:5a:a6:80:96:
b9:d7:9c:ba:23:28:05:00:24:c3:f3:7f:b9:18:71:
89:2c:3f:a3:ec:a8:dc:2e:58:df:9b:ae:b3:44:5d:
dd:4b:3c:e3:43:9e:a5:5a:ec:fe:8d:70:ae:cc:d8:
ce:ae:c6:3d:df:7c:5c:3a:99:42:b6:3c:1e:86:47:
e0:41:23:2c:98:97:2a:b4:0f:b8:7b:6c:68:e6:a8:
f6:b8:dc:e1:b3:65:14:a3:15:89:ab:b7:64:2e:c4:
7d:50:86:b5:11:9d:f1:3f:e5:22:29:da:b3:27:56:
0f:9e:1f:dc:1c:72:1e:27:39:45:00:2f:46:49:2a:
65:4f:4d:df:cf:00:f0:fc:f5:c1:10:e6:22:27:b3:
ca:09:a0:77:fa:ae:6b:37:30:c8:46:af:d9:ef:f8:
1f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:48:AC:35:84:D4:05:9E:0E:F7:25:91:91:4B:A2:71:A6:98:F9:77
X509v3 Authority Key Identifier:
keyid:B6:D6:84:36:A7:63:39:F6:71:44:1C:FB:D5:0A:D4:01:D3:C0:0F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttaENqdjOfZxRBz71QrUAdPAD_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/84a5dd-5cf2-4857-bd93-3c711a15fa5c/1/ttaENqdjOfZxRBz71QrUAdPAD_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:03:bb:50:92:01:30:53:db:7e:71:0a:8e:5f:0a:72:de:c1:
4a:50:16:de:d9:60:41:e0:08:27:be:96:a6:2f:b8:7b:df:33:
a2:4c:c5:59:dd:ec:a7:16:64:da:df:26:b1:9a:29:fc:e4:7c:
31:87:80:d8:31:44:f7:3d:3e:d7:11:77:4f:f7:dc:dc:44:9c:
6d:20:6f:e9:74:d6:3b:da:dd:7a:d3:5f:77:6e:e6:fa:0f:f7:
64:27:d0:36:17:8a:c5:d9:b5:2b:54:1c:91:00:30:84:53:54:
aa:e5:d2:b5:1c:4d:67:84:77:f5:58:77:77:e3:73:47:c4:ca:
f5:34:cd:75:df:dd:12:14:95:e2:fa:6c:ee:f3:04:b4:46:ab:
de:ff:38:98:ed:b0:23:67:d8:2b:cd:78:c6:ec:9f:35:61:ac:
8e:ca:9b:48:15:30:92:cd:3c:ab:12:7f:04:24:13:e1:ea:3a:
9b:eb:88:4f:d2:f8:ae:5c:ea:24:1c:e3:04:eb:8e:1c:7f:f9:
a5:69:17:05:c3:49:a4:8f:64:34:1b:de:09:9a:ec:f2:3a:6c:
eb:a1:c1:64:40:aa:bf:fb:7e:96:e3:46:bf:da:83:e7:f3:df:
12:58:92:64:2b:50:80:23:8c:ac:95:3b:80:ba:d8:e5:e4:8d:
1a:9a:3e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:26 2026 by rpki-client