Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
File: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft (raw, json)
Hash identifier: g0vj1AcH+TkrG3stpMZhyJUSFcPbqs2HSvXkw3wV9w0=
Subject key identifier: AE:A5:29:75:1F:D5:D1:58:88:56:86:F7:C8:27:78:5F:2A:1D:7C:60
Authority key identifier: D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
Certificate issuer: /CN=d425900312ff3bda4d2f896f64df65646fd9c251
Certificate serial: 019D378940B20C0995D47D6EA3B713BECE43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 03:00:35 +0000
Manifest this update: Sun 29 Mar 2026 03:00:35 +0000
Manifest next update: Mon 30 Mar 2026 03:00:35 +0000
Files and hashes: 1: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl (hash: oRUwTWTBzFYv1uz6t35F42/E5LKfKbfIE/IL8tMwTUk=)
2: 1Kg_Ulab4sB3FtCcoo1l5PNO7rw.roa (hash: c8c2ZCfFSRIW6FylRlfxyknjH4TvpagO5fNnP9Ygg7g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:40:b2:0c:09:95:d4:7d:6e:a3:b7:13:be:ce:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d425900312ff3bda4d2f896f64df65646fd9c251
Validity
Not Before: Mar 29 03:00:35 2026 GMT
Not After : Mar 30 03:00:35 2026 GMT
Subject: CN=aea529751fd5d158885686f7c827785f2a1d7c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c5:82:eb:52:04:61:76:c6:ca:b2:dd:15:50:
af:52:4d:48:02:1b:dd:ab:22:26:f6:09:bf:dd:54:
26:b4:6b:8f:4e:91:3a:64:5e:d6:1e:93:8b:b9:aa:
3c:e1:c2:d7:d4:cf:de:b0:ea:26:46:38:13:78:a2:
a5:a2:73:cb:72:6c:8a:5c:10:d1:b8:06:5a:3a:32:
71:20:7b:7f:d2:3e:cf:7b:22:19:20:f7:97:4b:c7:
f4:ea:01:cb:62:41:f6:36:d1:e4:d9:5f:e5:b9:d6:
a9:69:c5:2d:53:44:13:45:46:07:b7:9e:de:2d:43:
0e:81:7e:70:af:29:97:95:e4:f8:58:46:ee:00:3b:
20:57:ca:5d:e2:6f:b7:7b:66:6b:45:89:54:8f:a5:
4f:dd:4d:02:af:ed:d4:9b:70:44:a6:e6:8a:67:06:
98:63:b4:dd:4e:8e:ec:28:d7:fd:fc:fb:17:a5:0c:
a6:31:4d:61:ba:54:79:6d:90:d2:45:b3:d2:52:37:
46:d1:a1:46:23:25:6d:a7:76:fe:77:1a:d2:c0:b1:
91:63:d7:9d:87:2a:96:50:9c:f8:37:cb:1e:2a:1a:
8f:b7:b2:e9:a0:33:35:7d:ba:e8:82:cc:45:43:f9:
12:08:41:7a:6a:78:2d:fb:61:06:44:2d:aa:cc:38:
8d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A5:29:75:1F:D5:D1:58:88:56:86:F7:C8:27:78:5F:2A:1D:7C:60
X509v3 Authority Key Identifier:
keyid:D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:53:3c:50:30:70:a1:a5:56:2c:34:1d:89:11:38:8b:fb:79:
a4:d4:9b:06:d8:a6:d4:a3:c9:c4:74:05:a1:21:ad:70:a2:ed:
14:f4:44:d9:3a:37:78:45:b1:6f:9c:87:51:ed:8b:66:ee:d3:
ed:95:bc:50:55:91:8e:f9:73:72:0e:89:10:43:08:30:af:bb:
dc:96:9e:54:54:b4:67:b7:03:f3:29:86:15:de:96:ad:95:37:
53:ea:66:f1:4b:76:fc:46:ad:52:7c:e1:e2:1d:20:c3:44:ff:
ee:36:fc:89:76:0c:67:bd:42:59:9a:01:ab:a9:c8:fa:ee:f8:
11:d1:4c:be:c4:8d:81:85:0e:a3:8b:08:7c:65:b5:29:3d:ef:
d2:d9:f2:7c:a8:0e:d4:00:fd:f6:90:a5:af:fc:e9:7a:82:cb:
88:cd:45:3d:fc:1b:8b:44:6f:2e:b1:04:72:8e:32:8d:4f:a7:
04:c2:f8:0b:97:e3:ab:42:e2:2d:87:f2:a1:e9:ae:73:e7:b2:
6c:3c:15:a5:96:bb:ab:36:60:ee:bf:84:b3:9f:7a:16:0e:d0:
9e:6e:15:d8:5e:be:e2:11:a2:d2:30:7a:f7:b3:5e:37:b3:7a:
07:10:4d:da:c7:35:09:13:fa:9f:b3:07:03:a1:bd:7a:c3:a1:
44:63:50:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:37:50 2026 by rpki-client