Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
File: TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft (raw, json)
Hash identifier: Fqh9nU2QsBUruTZyxlhrE6uSFMEiBzTRIbD3fmq8WAw=
Subject key identifier: C7:EF:2A:18:96:AE:34:19:A0:F1:83:B0:7F:4B:B1:83:63:04:AB:8D
Authority key identifier: 4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE
Certificate issuer: /CN=4da3711dc5de45f2f5b47901659e956d938272fe
Certificate serial: 019D39781031DACBEBBED35C2EA5E3687447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 12:01:02 +0000
Manifest this update: Sun 29 Mar 2026 12:01:02 +0000
Manifest next update: Mon 30 Mar 2026 12:01:02 +0000
Files and hashes: 1: QMeWn3NQA2fbA8c1b6eFvzqzvWg.roa (hash: 8sNKEwPOI3VlePsjcLNbwBz/I6kJ5Yh/1lRoX0WjxkU=)
2: TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl (hash: awoQFhyuydnw4LScc/qN3NJDmuzDM5QnxGeBkPyuLgU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:78:10:31:da:cb:eb:be:d3:5c:2e:a5:e3:68:74:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da3711dc5de45f2f5b47901659e956d938272fe
Validity
Not Before: Mar 29 12:01:02 2026 GMT
Not After : Mar 30 12:01:02 2026 GMT
Subject: CN=c7ef2a1896ae3419a0f183b07f4bb1836304ab8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:49:3d:1a:51:35:d3:87:c5:89:ef:c5:02:95:
75:60:29:98:39:ce:84:39:32:e0:a1:dd:39:53:36:
05:5b:14:39:89:5b:50:bc:76:9a:2f:e4:c6:5f:e7:
fe:e2:8d:68:d6:43:15:c0:c4:81:70:b9:86:54:ac:
40:14:97:90:09:df:25:38:f3:c6:ea:c8:10:1d:a6:
72:aa:b4:f9:ed:45:ff:d9:e9:42:84:b4:cf:3d:2f:
ce:39:8a:a8:9e:2f:e6:4c:40:a6:66:04:15:cc:87:
59:f3:e2:c9:17:c0:7b:b2:db:4d:d8:10:2f:19:68:
ce:e0:dd:9b:d5:b6:89:4c:d1:69:b8:71:fb:78:65:
6c:80:8d:10:17:41:26:13:1c:ba:59:ae:b4:89:0e:
3f:1a:36:01:0e:98:15:bb:64:86:0c:9f:97:6c:15:
3b:de:cc:4f:00:9b:da:73:f1:68:24:38:93:82:0a:
21:29:1b:db:5b:ea:78:7b:e5:64:d8:6f:25:25:0b:
d5:14:ef:99:a0:6c:95:7c:4a:7f:ce:9d:2b:07:e4:
a5:65:85:a3:c0:4f:3c:f5:db:fe:e9:dd:50:5d:21:
a0:20:52:9d:b3:45:51:bc:da:b1:a1:04:53:78:e3:
fc:7b:45:b5:2b:85:dd:81:55:14:61:5d:57:74:90:
c0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:EF:2A:18:96:AE:34:19:A0:F1:83:B0:7F:4B:B1:83:63:04:AB:8D
X509v3 Authority Key Identifier:
keyid:4D:A3:71:1D:C5:DE:45:F2:F5:B4:79:01:65:9E:95:6D:93:82:72:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a831c0-457c-4ba8-bec7-e251109bfd19/1/TaNxHcXeRfL1tHkBZZ6VbZOCcv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:2d:3a:f0:8c:20:53:ab:18:d7:d6:55:5e:8d:d0:92:0a:86:
a5:59:3b:cf:77:45:e7:17:bc:af:76:32:7a:8d:5d:7a:d5:dd:
77:16:07:32:9d:48:79:9b:72:a8:21:ca:7a:d0:65:5b:c6:0f:
aa:00:55:69:80:28:70:51:d7:8b:66:51:7d:23:81:5d:be:f3:
ee:a5:a1:92:a4:1a:c5:ac:8a:30:89:d6:20:b3:e6:38:28:4d:
93:cc:01:b4:7f:f8:04:cf:0c:7a:cf:9c:c2:0e:eb:f3:bc:18:
c4:31:e1:b8:60:fc:7b:8f:df:30:83:6e:1b:b1:17:5d:1d:98:
16:6a:c8:00:86:42:90:ad:b0:6e:f3:f3:4e:1e:c6:b4:cd:5a:
71:02:c6:ce:76:16:ad:08:7e:5e:f2:d5:93:37:41:c1:a8:f5:
84:74:0b:12:29:73:d6:8c:95:9b:cd:91:ce:31:67:59:49:5e:
e9:cb:ad:14:4a:5e:0d:ae:6e:44:eb:6c:d0:aa:05:ce:14:5e:
4c:f4:85:27:49:4f:27:fb:c2:94:02:ab:67:14:bc:9a:11:7f:
97:53:de:41:f2:b6:d2:9b:df:ce:4a:6c:3d:f2:fa:cc:a7:cf:
1b:7c:6f:6c:54:a1:20:92:ea:74:08:d7:0b:a9:7e:e0:3d:fa:
34:c3:5b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:45 2026 by rpki-client