Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
File: TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft (raw, json)
Hash identifier: ZCnytgjqx62Vjv9ifk2+v0C8rGI6dm2pXaw1/QyGBrw=
Subject key identifier: 80:7E:C6:75:DA:E8:E3:1C:A7:E7:4D:0C:B3:F3:09:AE:35:40:28:2A
Authority key identifier: 4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE
Certificate issuer: /CN=4da3711dc5de45f2f5b47901659e956d938272fe
Certificate serial: 019EB5E9E7676D518D8CA7D9F77775B7D80E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
Manifest number: 1955
Signing time: Thu 11 Jun 2026 09:01:05 +0000
Manifest this update: Thu 11 Jun 2026 09:01:05 +0000
Manifest next update: Fri 12 Jun 2026 09:01:05 +0000
Files and hashes: 1: QMeWn3NQA2fbA8c1b6eFvzqzvWg.roa (hash: 8sNKEwPOI3VlePsjcLNbwBz/I6kJ5Yh/1lRoX0WjxkU=)
2: TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl (hash: o9MyelgnAckLKyH1h1u6p5+7IRTWa8vaN60kfRGVNJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 09:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:e9:e7:67:6d:51:8d:8c:a7:d9:f7:77:75:b7:d8:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da3711dc5de45f2f5b47901659e956d938272fe
Validity
Not Before: Jun 11 09:01:05 2026 GMT
Not After : Jun 12 09:01:05 2026 GMT
Subject: CN=807ec675dae8e31ca7e74d0cb3f309ae3540282a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a2:75:7e:ee:6b:3e:e3:13:b7:06:66:d6:c2:
35:a4:b6:2a:5a:e7:0c:0f:8d:f6:0f:25:df:b7:35:
03:77:3e:ea:bf:37:c7:50:e2:63:fd:da:67:c9:80:
fd:a5:75:1f:b8:08:c3:de:8c:64:aa:a1:da:24:a5:
65:19:90:af:93:99:b0:34:89:74:33:f9:ee:24:7e:
5b:0b:db:27:35:33:1e:92:58:80:92:c2:bf:3f:24:
b5:85:b6:54:f1:76:7e:bd:e9:ce:8f:62:b5:8a:f9:
b8:5f:58:b7:6c:16:49:0a:7a:4d:89:31:47:bb:4a:
5d:8d:14:dd:58:2a:ba:b0:b7:0b:75:67:2c:5b:75:
49:32:58:d6:77:df:0b:50:26:22:bd:7e:49:74:02:
70:e5:38:fe:61:02:3e:47:82:24:e5:d2:69:0f:7b:
0b:d1:c4:3e:a5:d4:bd:8a:68:5e:b7:71:26:0d:72:
68:9d:d2:45:6b:cb:d1:80:fb:8d:2c:e0:69:63:c1:
31:66:2b:1e:81:1d:41:46:09:36:d1:2f:32:6c:c4:
f7:aa:08:18:76:bd:81:cd:c8:0a:e0:c3:61:17:c9:
2c:1f:13:c8:02:0b:df:aa:8e:99:19:0c:b0:05:dc:
98:29:8e:4b:d7:12:ea:b6:f2:96:1a:48:de:c0:c5:
8f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7E:C6:75:DA:E8:E3:1C:A7:E7:4D:0C:B3:F3:09:AE:35:40:28:2A
X509v3 Authority Key Identifier:
keyid:4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:ad:bd:b5:b6:34:f8:8d:b8:ef:3f:43:b4:3c:ed:84:7a:9a:
a2:62:78:f0:c4:e2:45:92:ae:3f:d5:79:28:a3:ef:88:c8:fe:
80:4f:c8:dd:85:75:47:64:61:14:10:40:54:26:2c:0d:51:ff:
98:38:db:c2:45:f9:9d:a8:89:03:3d:2c:75:40:1c:07:c7:60:
3a:21:13:e4:15:11:39:b7:b0:c5:fd:7b:99:6c:fb:02:4e:66:
cc:13:31:d1:80:d5:a9:05:0c:9b:44:43:0d:03:46:82:12:d9:
d6:0f:66:c8:df:15:f3:62:e1:a8:83:98:03:c0:86:36:5e:9b:
72:d0:ae:3f:6a:97:1c:d9:97:ab:39:6f:b6:69:f2:30:fd:8a:
f5:25:68:c5:7a:87:70:ca:2f:44:3d:20:61:2a:8d:99:3b:3c:
20:79:c7:9f:5f:1d:b9:da:b7:2a:86:39:f6:8d:20:85:ae:f9:
23:d0:22:7f:e1:01:d5:36:17:c4:a1:03:c7:ce:d4:93:2c:f0:
d0:28:16:9b:bd:5f:b6:c5:83:da:41:ba:37:a7:ec:fc:31:31:
67:6e:92:6a:cf:61:88:f3:cf:01:09:9a:76:72:8e:02:4a:fa:
92:e1:d2:0e:71:9e:4a:64:23:e4:f2:f2:a1:9c:66:c5:4c:f7:
04:51:b9:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:00:58 2026 by rpki-client