Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json)
Hash identifier: ER8WDgid4fOwnPuLbmvClTVrTFyerpju3QKpc7etLq8=
Subject key identifier: 96:68:B9:53:0F:43:3B:5A:18:E9:D3:B8:BA:20:B7:60:8C:39:AA:B7
Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Certificate serial: 019E92EFB74401A96C219FC1A89B95E86E27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
Manifest number: 1025
Signing time: Thu 04 Jun 2026 14:00:43 +0000
Manifest this update: Thu 04 Jun 2026 14:00:43 +0000
Manifest next update: Fri 05 Jun 2026 14:00:43 +0000
Files and hashes: 1: DR-3C6YEtKMcL_5es4EXU7AZkNI.roa (hash: OUT6KMW2KBguWe74r4/N3KwEXWVjz7ZfPOq1uxqbzVY=)
2: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: GaEK7Fp99YwLMa5Z8u36tucwQ03/3wz5Ts5GTD8SLA0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:92:ef:b7:44:01:a9:6c:21:9f:c1:a8:9b:95:e8:6e:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff
Validity
Not Before: Jun 4 14:00:43 2026 GMT
Not After : Jun 5 14:00:43 2026 GMT
Subject: CN=9668b9530f433b5a18e9d3b8ba20b7608c39aab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:03:20:64:53:8e:75:a2:ac:16:53:7d:74:62:
93:49:2c:51:f8:6a:0f:39:3e:5b:81:cc:ae:e7:75:
2a:c9:da:e2:e6:49:da:0b:39:46:49:f7:2f:da:13:
ab:c3:f2:25:bd:2d:1a:aa:7e:7b:61:39:e0:da:d9:
29:15:16:76:b4:4a:bd:8f:eb:ab:9d:f4:55:2b:34:
75:ae:21:ef:8c:21:34:1f:89:f7:ff:79:cd:49:44:
38:5f:0b:18:8d:89:89:49:86:ed:63:43:09:32:64:
0b:ff:18:fd:0d:08:c3:d4:89:b9:1b:58:63:a3:54:
05:4d:d3:d6:67:30:8e:fb:c3:c1:29:a2:25:b0:ba:
b5:be:a3:f9:1e:49:1f:a4:b3:07:d2:19:97:2d:80:
5e:ee:9b:f3:bb:9d:07:96:85:fc:d4:f3:ca:ba:80:
00:6c:c6:97:b5:1b:d0:61:f6:a1:a8:04:38:b6:68:
cd:41:64:6e:2e:7d:a2:a3:2e:23:42:3b:73:1b:6a:
29:b0:ea:43:91:2c:99:ff:96:4a:15:d5:52:62:f6:
d9:31:18:f3:92:e8:66:eb:68:f5:a1:73:01:0a:99:
d1:9a:b7:5f:82:b7:69:67:5b:55:71:4e:53:d7:22:
d8:b4:a7:2f:d2:cb:91:cc:c5:1c:95:66:2b:16:85:
2f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:68:B9:53:0F:43:3B:5A:18:E9:D3:B8:BA:20:B7:60:8C:39:AA:B7
X509v3 Authority Key Identifier:
keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:42:ce:8d:fd:f0:1b:23:10:cd:b1:26:be:a6:45:24:ce:f6:
9a:39:16:21:c4:53:ad:aa:f3:0a:9a:89:11:a9:5a:e5:20:c2:
d0:c0:ef:2b:18:85:e0:30:00:bf:32:39:31:84:0d:af:33:01:
bf:7f:55:fc:09:a2:08:88:86:e6:7f:fe:d2:b7:08:9f:c3:cf:
4f:c8:fe:84:11:97:39:d8:b6:2f:45:4a:a3:05:3d:a8:5a:1f:
a5:c2:ca:ea:26:c6:8e:a4:d5:72:39:66:51:f3:db:d1:b4:1d:
d0:d7:f0:e3:0f:6d:dd:84:60:54:75:7e:13:41:ba:ce:9c:5e:
4e:a8:c5:b3:5b:94:e0:8c:c8:6d:e3:13:7d:e7:95:bd:68:40:
14:d8:89:68:54:1c:23:b3:d5:e2:f4:5d:ca:9c:b2:1b:38:09:
49:56:a7:65:92:72:7b:5d:6b:3b:22:96:00:ad:3b:bb:ca:34:
e4:55:31:c5:24:e4:c4:cf:68:5b:ff:a2:9f:ff:6a:cb:14:03:
75:01:82:6a:87:ab:fb:89:62:43:ef:cf:b6:28:59:b9:45:0e:
5d:fb:25:42:5f:f7:5f:70:c1:75:01:b3:12:36:56:3e:3b:aa:
82:5f:bc:76:68:7f:30:55:6b:7b:37:2e:ae:64:89:bd:df:8e:
41:99:73:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 16:00:47 2026 by rpki-client