Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
File: TtMkzMCQuDGCmReur3ODTwg0Ss4.mft (raw, json)
Hash identifier: Lcv/RWfYFXSRWFbbnbUuZ+JdouYM6oWHbhMbKyUu+mY=
Subject key identifier: 14:EA:4E:C4:2C:BE:2C:7C:B7:E9:92:B6:0C:0B:AB:02:93:3A:8D:E5
Authority key identifier: 4E:D3:24:CC:C0:90:B8:31:82:99:17:AE:AF:73:83:4F:08:34:4A:CE
Certificate issuer: /CN=4ed324ccc090b831829917aeaf73834f08344ace
Certificate serial: 019D3865DCE6E78B86796817866F70B90725
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
Manifest number: 039F
Signing time: Sun 29 Mar 2026 07:01:32 +0000
Manifest this update: Sun 29 Mar 2026 07:01:32 +0000
Manifest next update: Mon 30 Mar 2026 07:01:32 +0000
Files and hashes: 1: C6nXsG6UDvJjYHmVMk3MguMztUw.roa (hash: DZ6jiw9DI8ZM7KfN0j9o/vZRidGddKGFVOWlQEbKrbI=)
2: TtMkzMCQuDGCmReur3ODTwg0Ss4.crl (hash: x+Y7RH24P+rUzcynJZy98q3TWk207rNGbDtIkloIEPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:dc:e6:e7:8b:86:79:68:17:86:6f:70:b9:07:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ed324ccc090b831829917aeaf73834f08344ace
Validity
Not Before: Mar 29 07:01:32 2026 GMT
Not After : Mar 30 07:01:32 2026 GMT
Subject: CN=14ea4ec42cbe2c7cb7e992b60c0bab02933a8de5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:13:1b:bd:d1:9c:d0:93:3a:73:98:f8:5e:75:
45:7d:cf:1c:9a:a4:3d:af:d4:93:49:1f:69:a5:c5:
82:d0:7d:ab:cf:98:6a:2a:b0:73:8e:e9:d5:95:05:
5f:c4:ac:67:ed:ee:3e:bd:a8:ea:76:d1:f3:a9:53:
af:62:3a:17:2e:98:6e:b0:29:01:ef:52:22:63:78:
b4:d9:6b:c1:20:44:53:7f:b3:ac:85:93:bf:c0:0c:
e6:27:b9:d6:6d:44:88:14:54:ba:ba:49:55:99:b1:
ff:3e:f5:d6:f3:ce:d4:1d:61:18:50:4f:01:57:4d:
c4:49:f8:0f:a2:7b:e7:dc:3f:82:1c:91:7c:76:7e:
ab:1f:85:2d:25:2b:3d:09:f9:70:ac:48:79:11:5f:
11:a5:71:7c:fb:a8:52:78:69:c1:a3:bc:c3:7a:24:
2d:a8:c1:96:b8:38:79:f4:e1:90:2b:45:90:c1:72:
94:fc:bb:42:c1:9d:bb:a0:f2:44:ce:dd:7c:ae:9a:
f0:80:14:03:74:34:b8:17:d8:42:d3:fa:9e:10:91:
60:62:dc:2c:72:a0:e8:16:b1:13:d4:1f:cb:90:88:
50:80:69:98:c4:88:01:a3:84:83:b6:d6:55:72:d8:
eb:2c:8c:00:98:8c:6a:7c:5b:6d:b0:d4:18:21:b6:
ca:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:EA:4E:C4:2C:BE:2C:7C:B7:E9:92:B6:0C:0B:AB:02:93:3A:8D:E5
X509v3 Authority Key Identifier:
keyid:4E:D3:24:CC:C0:90:B8:31:82:99:17:AE:AF:73:83:4F:08:34:4A:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TtMkzMCQuDGCmReur3ODTwg0Ss4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/017c37-61b6-4d40-881a-53a084390527/1/TtMkzMCQuDGCmReur3ODTwg0Ss4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:36:96:7f:ab:18:47:4e:8d:80:2b:8b:51:dc:9f:21:8a:70:
91:a5:06:81:f7:b1:3a:99:5f:67:56:57:7d:a2:03:b2:cc:0c:
64:0b:48:3b:3d:af:8c:89:78:03:8d:3a:08:f1:ce:f6:c5:d2:
dc:5e:ac:95:54:82:3d:af:a8:50:80:20:c2:8f:98:6b:e5:2e:
56:42:4f:a5:f1:ef:92:e6:34:3e:54:46:c6:df:7d:f5:15:76:
9b:a5:82:5a:6a:b2:cc:c8:e1:9e:47:c8:57:65:fb:c8:32:e8:
cf:ba:d9:fe:ce:38:bf:ba:44:cd:1b:dc:71:2f:af:13:43:a5:
8e:61:2b:33:84:ba:30:34:3d:e3:ad:e6:4b:ea:98:fe:81:1d:
dd:9b:bd:01:88:00:2d:1e:cd:9f:f9:1c:a2:cd:6a:82:1f:81:
9b:68:cb:fc:77:98:19:56:7b:62:04:b4:dc:d4:70:d6:3d:bc:
2d:e1:42:c9:ac:70:f9:69:3b:17:eb:38:b7:c5:18:fd:5c:0c:
04:c8:55:5e:62:83:d2:52:ed:01:60:6f:46:6b:b9:65:09:42:
57:70:cc:ee:86:43:9b:57:32:c5:d0:60:9f:2b:97:5e:b1:bc:
a5:61:d7:8a:41:11:c1:09:3e:a0:77:08:d3:03:b0:ec:54:70:
14:d4:8d:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:22 2026 by rpki-client