Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
File: tKOwBTZrDhDVAulBSQHNhPri3JU.mft (raw, json)
Hash identifier: qqHdD3nBbjjmF5QTSWbFsalu7/GoX6EWwgz3pgMSDZA=
Subject key identifier: EB:17:8E:BB:61:B4:E1:2D:1E:BA:52:4E:83:AB:50:C2:A1:20:75:E5
Authority key identifier: B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95
Certificate issuer: /CN=b4a3b005366b0e10d502e9414901cd84fae2dc95
Certificate serial: 019CE7128A45CE4F26CB8E5512367817C16D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
Manifest number: FA
Signing time: Fri 13 Mar 2026 12:01:17 +0000
Manifest this update: Fri 13 Mar 2026 12:01:17 +0000
Manifest next update: Sat 14 Mar 2026 12:01:17 +0000
Files and hashes: 1: CSchYm_Yb2tAYnM5byG6HH2lrs0.roa (hash: QoobycHQMak1ztaLqGk0kAyMV2X2IAYlbkDS/x6XelI=)
2: tKOwBTZrDhDVAulBSQHNhPri3JU.crl (hash: nwX0gG8G8wSbbndyf42snubvt9Btx4tn2wuysnDaLVg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:12:8a:45:ce:4f:26:cb:8e:55:12:36:78:17:c1:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a3b005366b0e10d502e9414901cd84fae2dc95
Validity
Not Before: Mar 13 12:01:17 2026 GMT
Not After : Mar 14 12:01:17 2026 GMT
Subject: CN=eb178ebb61b4e12d1eba524e83ab50c2a12075e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b7:d8:0c:89:0a:38:29:d2:60:51:46:1f:4c:
f6:34:31:eb:01:1c:a0:49:1f:f3:87:d8:78:6f:14:
ef:12:e7:ef:5e:06:3f:eb:58:f4:b4:9a:d2:5f:7e:
ae:e9:bb:54:68:f2:eb:81:cd:f2:2a:12:b8:5c:80:
57:a1:47:0c:7c:4a:05:c6:ac:5a:34:87:68:f1:25:
5b:03:35:c7:5d:fd:94:0a:e1:a6:ec:a0:41:f9:1d:
29:8a:51:fc:3d:10:d5:9b:0a:6c:3e:1c:0d:97:5c:
b5:e8:ea:9d:c3:95:01:bc:49:e7:28:4b:03:0d:a0:
00:1e:61:92:ff:d0:7b:87:1a:7d:a7:1d:78:2f:b5:
2f:6f:74:69:bd:d5:80:37:c4:9d:25:c9:a4:cc:9d:
f7:1e:2c:94:cc:b4:d7:5e:a3:f4:11:5e:0e:6e:a7:
27:d8:66:6c:0c:2f:2a:5a:ef:87:f8:2d:26:af:aa:
a8:15:32:d0:34:b8:c4:a2:7a:f3:97:71:93:44:3b:
c4:19:b2:85:65:0c:b9:29:85:6a:21:91:c9:f0:3f:
c2:fa:88:cd:e5:7f:b8:df:93:a1:1b:8e:70:15:03:
68:99:51:a1:a3:ba:59:1e:1f:1d:c0:e5:36:ee:02:
fd:4b:77:99:93:4d:ba:bf:82:79:fc:47:5f:e9:b0:
89:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:17:8E:BB:61:B4:E1:2D:1E:BA:52:4E:83:AB:50:C2:A1:20:75:E5
X509v3 Authority Key Identifier:
keyid:B4:A3:B0:05:36:6B:0E:10:D5:02:E9:41:49:01:CD:84:FA:E2:DC:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOwBTZrDhDVAulBSQHNhPri3JU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2ba72-a892-426d-aec9-a1575f91f83b/1/tKOwBTZrDhDVAulBSQHNhPri3JU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:d6:0a:19:76:18:5d:d3:ee:69:59:fd:55:87:62:a6:f7:5a:
38:bb:6d:ce:2e:78:17:9a:c3:2a:a7:10:74:36:a7:16:1f:87:
28:e9:59:86:a0:0c:24:ff:fe:0e:04:df:ae:30:82:af:6d:fc:
8e:6e:fa:b0:7c:61:74:a5:4f:30:fc:9b:66:a5:78:68:1e:ce:
a4:dd:60:f1:1c:e3:41:12:f9:46:6a:4d:1b:e1:45:ff:8e:bb:
2b:37:0a:bf:1c:27:26:d6:76:7e:1d:fa:25:36:0a:0f:c5:f8:
cf:7f:b9:fa:d0:2f:1f:d5:ec:0e:40:66:82:40:47:9c:f1:fc:
65:7e:90:e0:e3:06:70:2c:57:95:24:08:5a:09:f2:40:f0:e1:
e0:44:5d:be:e7:b4:19:6b:02:59:2c:cd:8a:9d:35:87:03:6f:
c8:a1:27:d9:c4:53:b8:5b:eb:3c:e1:8d:16:6b:3d:9e:c0:39:
6f:0c:31:a8:ad:84:87:1a:ff:ef:3d:f9:e3:37:66:66:1e:aa:
0d:6e:ff:bc:23:12:0c:13:eb:3b:3e:8f:72:a7:28:fa:6f:7a:
4d:70:26:ac:62:8e:07:41:f1:11:1c:47:67:95:a5:93:06:73:
a3:f3:85:7e:27:9b:bb:2b:09:bc:43:d8:69:d8:cc:65:6a:d4:
3a:18:23:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 14:53:38 2026 by rpki-client