Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.mft
File: txKyWiME97pEw40Dld3y7QT1x-8.mft (raw, json)
Hash identifier: HDcPy5Wry4m8CFFqP9TmaejxsZaPYscOX3pdzI/shxU=
Subject key identifier: 3C:7D:03:25:A8:9B:F1:B2:E2:20:42:C9:7E:F6:E4:2D:A6:7E:4A:CA
Authority key identifier: B7:12:B2:5A:23:04:F7:BA:44:C3:8D:03:95:DD:F2:ED:04:F5:C7:EF
Certificate issuer: /CN=b712b25a2304f7ba44c38d0395ddf2ed04f5c7ef
Certificate serial: 019D38D29B72724D18EED02BEE0C1557429D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/txKyWiME97pEw40Dld3y7QT1x-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 09:00:19 +0000
Manifest this update: Sun 29 Mar 2026 09:00:19 +0000
Manifest next update: Mon 30 Mar 2026 09:00:19 +0000
Files and hashes: 1: UaDGeJWsIXI8NDyfXgRgg0KcJv4.roa (hash: G/op3Q8p3v4tlB5sWD/LQVTf6+Xz6sN8yv1KW42vf5Q=)
2: txKyWiME97pEw40Dld3y7QT1x-8.crl (hash: SYZPz+fbCGP69o9B5espqqiFgrcw6Ydqyhv3qOi5F4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.mft
rsync://rpki.ripe.net/repository/DEFAULT/txKyWiME97pEw40Dld3y7QT1x-8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:9b:72:72:4d:18:ee:d0:2b:ee:0c:15:57:42:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b712b25a2304f7ba44c38d0395ddf2ed04f5c7ef
Validity
Not Before: Mar 29 09:00:19 2026 GMT
Not After : Mar 30 09:00:19 2026 GMT
Subject: CN=3c7d0325a89bf1b2e22042c97ef6e42da67e4aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c0:09:64:f5:83:4a:c0:40:bb:d0:7f:46:f9:
7e:37:61:d2:55:5f:0b:5f:dc:38:80:1c:fc:44:94:
15:5a:d5:7c:a0:d1:12:2a:5a:ed:18:08:dc:01:a3:
35:ec:5e:63:28:dc:bc:f7:72:04:91:f9:d4:51:f1:
45:98:06:bb:96:ab:94:e0:f2:29:09:0c:1c:a3:02:
8f:aa:c6:0d:0c:df:39:a9:b3:42:2b:b7:77:21:46:
e4:b4:b3:f0:87:f1:dd:74:c6:ac:72:4b:a6:b6:ca:
0c:7c:ec:e6:ce:3e:fc:5e:fe:23:80:29:ca:2d:57:
bb:24:04:66:5d:cd:f9:7d:2d:2b:2d:a8:4c:5c:66:
d6:14:a8:f8:f5:d9:60:c7:d5:65:0f:72:b4:74:2b:
7b:bb:b8:4c:18:64:a8:a6:0b:9e:52:90:90:b2:5e:
41:9e:3d:88:11:3e:66:12:83:ab:b7:1a:ac:cb:84:
84:9a:bc:b3:1c:54:df:15:04:ec:bb:fe:a6:2f:03:
c0:4e:b0:7d:bf:8e:65:ad:23:43:30:de:12:cb:19:
17:33:15:c8:a5:18:21:83:44:80:5d:ee:6f:17:9c:
2e:1a:1b:ae:b7:1b:cf:e4:27:7f:af:19:4a:4f:39:
e2:03:04:9b:ef:08:a5:c2:08:3c:d3:49:46:18:6c:
dd:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7D:03:25:A8:9B:F1:B2:E2:20:42:C9:7E:F6:E4:2D:A6:7E:4A:CA
X509v3 Authority Key Identifier:
keyid:B7:12:B2:5A:23:04:F7:BA:44:C3:8D:03:95:DD:F2:ED:04:F5:C7:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/txKyWiME97pEw40Dld3y7QT1x-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9aeae7-df10-40a7-b933-081cb7cb88f3/1/txKyWiME97pEw40Dld3y7QT1x-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:17:0f:c8:60:f3:39:b2:4f:03:bc:83:b3:78:1f:5d:05:75:
82:7c:33:12:16:73:5e:9b:5e:88:0b:30:08:9a:fe:6d:be:76:
80:59:ad:e5:e6:4e:20:d8:c9:69:c6:10:fd:8d:09:c0:eb:d9:
2e:21:9c:35:a0:de:3a:70:f7:be:4c:e0:a5:15:eb:19:af:4f:
fb:d6:fd:3f:cf:fa:23:9b:d5:84:52:f0:7a:5a:a0:95:9c:6a:
be:90:69:45:92:4c:64:9a:81:67:b8:6b:54:ee:ae:db:3a:d3:
4b:27:e8:66:73:22:49:b8:e2:2e:b0:d1:e0:e0:21:b8:52:33:
37:ea:db:cf:8a:0e:ae:4b:2d:3c:6b:7f:9f:13:d1:48:f6:d2:
df:26:1a:73:5a:67:72:54:8a:50:0b:21:76:a5:1c:08:a5:a6:
be:79:09:0a:50:a0:51:2c:46:26:22:82:e0:23:fb:e5:ff:96:
b1:26:54:91:e6:7e:1d:71:54:99:0a:55:9f:90:db:cf:a8:ef:
31:10:10:b7:ef:fc:82:35:b3:3f:3d:5f:d1:68:7c:93:71:e8:
f7:3d:81:04:15:1e:2b:55:4a:08:cb:2e:94:90:4f:b6:0d:64:
a9:66:19:22:62:7c:e8:6d:9e:bf:9a:6a:90:90:49:f9:35:28:
97:b8:2d:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:23 2026 by rpki-client