Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
File: tKW-MwcSDmXjxBZcnI50jBwSp6I.mft (raw, json)
Hash identifier: 5xbcnE321X20L01p8yAEYzOfUQ7wFTuIZRSgpk3xkUY=
Subject key identifier: 3D:B6:3D:22:A2:AE:DE:15:4F:A9:0F:F1:46:20:6C:3E:73:9B:6E:67
Authority key identifier: B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
Certificate issuer: /CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Certificate serial: 019A71B81A66A2CF10039D2337BB281BB1C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
Manifest number: 066F
Signing time: Tue 11 Nov 2025 07:01:22 +0000
Manifest this update: Tue 11 Nov 2025 07:01:22 +0000
Manifest next update: Wed 12 Nov 2025 07:01:22 +0000
Files and hashes: 1: pHJ5oRo1kF5oiX8KeKirS42gdJI.roa (hash: pWmX7zoUYI3ChoG1HELYfAkOPLPYyR79PMNSLK6H1B0=)
2: tKW-MwcSDmXjxBZcnI50jBwSp6I.crl (hash: Lfns3iGt5wdo6UdzWB2TfuUqDpK1/7mz98Bls6K3CfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b8:1a:66:a2:cf:10:03:9d:23:37:bb:28:1b:b1:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a5be3307120e65e3c4165c9c8e748c1c12a7a2
Validity
Not Before: Nov 11 07:01:22 2025 GMT
Not After : Nov 12 07:01:22 2025 GMT
Subject: CN=3db63d22a2aede154fa90ff146206c3e739b6e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:db:f0:ef:29:02:2b:0d:7b:cf:ee:61:44:8e:
7d:40:11:cd:86:12:33:66:d4:f7:0d:70:96:7e:40:
08:9b:e3:47:01:d9:78:22:09:70:88:e6:bb:9b:6f:
7a:e4:9a:82:03:92:b7:25:73:e6:f7:35:be:98:0b:
5e:90:43:9d:0a:2a:ed:9f:8d:ca:23:d3:3f:c8:a8:
e1:02:49:73:76:48:e9:a0:a8:ea:49:49:3b:d5:a8:
54:2c:45:0c:25:77:df:47:bf:20:ae:3e:b7:8c:ce:
99:26:6a:86:ff:91:7a:8a:1b:7d:4d:98:96:c6:bd:
15:a4:7c:d4:aa:d3:9a:ae:73:60:bb:94:1a:ac:ac:
13:e0:df:f8:f4:2c:60:0f:68:19:98:79:5e:94:7a:
20:e8:a4:44:7a:e5:a5:fc:fe:27:b1:cc:0a:3f:5a:
9a:12:f0:79:6e:bb:13:d0:ed:62:e5:e1:de:68:2e:
24:08:fb:7c:f1:ba:b7:33:45:7b:cc:a4:9a:b5:02:
d9:3f:41:04:dc:73:e3:ad:92:17:99:1d:bf:c4:2e:
7c:23:b0:c5:99:5c:27:95:e1:ac:54:f9:dd:d9:8b:
67:ea:78:9d:d3:7c:8f:0d:e8:c7:60:94:c3:c3:d5:
41:9a:26:e4:9a:37:2a:30:68:8f:cb:ff:02:bd:4b:
4b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B6:3D:22:A2:AE:DE:15:4F:A9:0F:F1:46:20:6C:3E:73:9B:6E:67
X509v3 Authority Key Identifier:
keyid:B4:A5:BE:33:07:12:0E:65:E3:C4:16:5C:9C:8E:74:8C:1C:12:A7:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKW-MwcSDmXjxBZcnI50jBwSp6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fe276f-946a-446b-8453-170eb1c9fec8/1/tKW-MwcSDmXjxBZcnI50jBwSp6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:24:04:40:d8:e1:de:f7:ca:2e:ef:9a:24:7a:ce:7f:de:7e:
29:ec:6d:26:48:04:c1:f7:d6:c6:e8:47:77:7d:ef:91:3e:3d:
41:4c:4c:87:42:1d:2a:6f:87:7c:4e:0a:39:5c:93:c8:cb:7c:
9d:39:a9:20:ce:e8:06:29:4e:7e:7f:a4:52:7b:3d:0b:97:9a:
f6:d5:44:13:a0:84:95:33:5c:72:4f:ee:d6:7b:f7:a7:45:72:
9f:b4:16:6e:dd:80:f5:5f:82:67:08:0b:ce:76:43:1d:85:32:
9d:5f:7e:03:6f:09:c7:fd:dc:7e:45:9a:fc:f7:bb:e3:3e:b7:
0e:ac:4c:1d:20:bd:15:48:e4:b2:86:d3:df:f2:31:02:2b:df:
f4:2c:86:ba:27:2d:71:84:79:c4:40:48:87:dd:85:75:90:78:
55:88:8b:01:e2:22:c5:b3:b4:a3:f0:24:3b:47:64:36:fd:a3:
3a:d1:4b:92:b4:64:b5:7f:f7:f9:e9:4d:99:bb:02:d5:62:6a:
99:0e:0b:fe:a1:8a:f4:35:90:6a:98:b9:25:fd:85:6c:79:96:
57:3e:79:8d:dd:6c:87:7e:e9:2d:3e:c1:bc:5b:02:0b:b4:88:
fe:64:d8:60:86:75:e3:ae:3c:dc:77:2a:7c:70:55:90:ff:ea:
a1:04:8c:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 15:48:45 2025 by rpki-client