Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
File: tKW-MwcSDmXjxBZcnI50jBwSp6I.mft (raw, json)
Hash identifier: 3zE1Yi4ykutnX6fXr7VF3/wy9iqYCiqtmTIfUAa85E0=
Subject key identifier: FC:35:A0:75:DB:E5:2A:53:D0:8C:41:8E:7D:C8:40:A3:4A:44:90:52
Authority key identifier: B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
Certificate issuer: /CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Certificate serial: 019D2960FCC3C172AE05912C197DCE19BB5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
Manifest number: 07D8
Signing time: Thu 26 Mar 2026 09:01:55 +0000
Manifest this update: Thu 26 Mar 2026 09:01:55 +0000
Manifest next update: Fri 27 Mar 2026 09:01:55 +0000
Files and hashes: 1: LjuU5djH0bj7AfY9nu23U4wSPOA.roa (hash: EiQ98ilCXZaBWGDxlsn6lY55eGRwfatMfYh7/0PXujU=)
2: tKW-MwcSDmXjxBZcnI50jBwSp6I.crl (hash: tAORhF/xsC8/wMjQiN82UGUyNG017orhLTZCgd6Shoc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:fc:c3:c1:72:ae:05:91:2c:19:7d:ce:19:bb:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Validity
Not Before: Mar 26 09:01:55 2026 GMT
Not After : Mar 27 09:01:55 2026 GMT
Subject: CN=fc35a075dbe52a53d08c418e7dc840a34a449052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:14:dd:fc:79:cd:12:68:13:f7:c8:e1:00:3f:
30:c0:ce:ce:b7:16:43:8c:b9:84:14:f8:6e:65:c8:
af:8a:30:38:fd:34:98:3b:49:30:d8:c1:e9:85:73:
b7:dc:2c:c8:8c:7e:e8:b5:11:65:31:2b:b1:e1:c6:
ff:0c:5e:98:e2:b8:ba:42:4b:f2:7c:dc:c9:89:ff:
e5:70:b1:f6:d4:5f:38:91:59:53:0e:77:34:ef:3d:
93:45:3e:f0:a7:c1:aa:1b:c5:a4:1a:49:5c:1e:6e:
fb:64:a1:c3:af:80:84:95:33:64:16:b3:f0:53:08:
f7:51:20:0f:55:78:82:a2:77:e8:e7:24:70:93:77:
05:72:b5:a0:b6:14:ef:b1:73:60:af:ad:27:3f:03:
b1:8c:4e:d2:8c:5a:6e:3d:08:7a:47:ad:15:1a:85:
84:61:6a:e3:0e:a4:09:cc:88:fc:35:55:c1:e5:c0:
76:ed:8a:ec:91:6f:9a:ac:3b:03:ad:d2:a1:33:94:
a3:3a:78:38:0c:a6:35:50:b1:cd:c7:19:eb:ed:31:
2f:27:c7:1d:96:83:e8:34:97:60:65:66:da:ac:da:
3b:75:be:29:7f:ca:ee:68:51:18:6f:e9:42:55:8f:
7d:08:58:2f:9b:12:27:a2:2c:44:3d:9c:ba:16:61:
e5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:35:A0:75:DB:E5:2A:53:D0:8C:41:8E:7D:C8:40:A3:4A:44:90:52
X509v3 Authority Key Identifier:
keyid:B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:02:6a:dc:a0:9a:a9:86:b4:3b:fc:57:41:e8:76:13:db:c9:
a3:7e:17:1c:ef:62:c4:d0:39:4b:c9:9e:32:b3:3e:72:5a:42:
b8:97:05:1b:17:3a:e5:51:88:82:2a:8f:68:5c:63:11:c3:d8:
cc:8a:15:b7:af:16:91:cd:cd:96:a9:4c:3d:35:59:df:8f:78:
84:27:3b:bc:77:b4:f7:2f:d2:b3:3c:04:e5:fa:86:7c:30:f0:
70:ed:cf:13:de:c7:05:c5:a1:2c:67:9e:ae:a0:01:77:ec:12:
a1:03:9a:52:80:be:8b:9d:d5:3e:ed:e5:1e:c6:8a:81:59:c8:
30:88:98:15:60:5e:7a:9c:6a:2a:62:3f:64:c7:f9:30:fe:99:
f9:89:15:b0:77:6a:cf:3e:6d:51:96:17:88:37:70:c1:bb:b3:
d8:6d:41:28:7d:af:06:57:82:a8:bf:f4:bd:bf:f3:6b:7b:6b:
01:15:50:15:20:79:d1:d1:7b:54:42:2f:4a:87:44:1a:91:e7:
d6:12:35:4e:99:02:ef:fe:d7:21:ca:75:f2:c9:07:46:50:d1:
dc:09:1d:be:b7:b8:4c:8a:a1:50:30:57:2c:f3:b2:3b:b3:d6:
12:6f:51:a5:e1:7f:f8:7b:88:ae:59:db:c6:15:65:ac:35:2a:
8b:12:77:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:09:30 2026 by rpki-client