Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
File: wSWw9XiOWBEj5eSfAB1S16f89a8.mft (raw, json)
Hash identifier: LaDHizE0KxoJG168h5cE9X/ON1S1fm0F96npJEJwbcM=
Subject key identifier: AA:3B:E9:88:7F:C9:73:8F:85:11:16:2E:2E:0A:5E:AF:C4:13:FB:0E
Authority key identifier: C1:25:B0:F5:78:8E:58:11:23:E5:E4:9F:00:1D:52:D7:A7:FC:F5:AF
Certificate issuer: /CN=c125b0f5788e581123e5e49f001d52d7a7fcf5af
Certificate serial: 019F11C0B31301A5D168BC6AEAE14527B081
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSWw9XiOWBEj5eSfAB1S16f89a8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
Manifest number: 03DF
Signing time: Mon 29 Jun 2026 05:01:09 +0000
Manifest this update: Mon 29 Jun 2026 05:01:09 +0000
Manifest next update: Tue 30 Jun 2026 05:01:09 +0000
Files and hashes: 1: vmkoqoQ_otv0F89R60xz-Vuo-2g.roa (hash: iq0VYDEcTpvgBWZIkkSwVuASLLS7URTHNl2Z2J0KqqE=)
2: wSWw9XiOWBEj5eSfAB1S16f89a8.crl (hash: oRylhfc4cEY4kXCLdBFvpUV183sj+e/1JuQNT2Opr4A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
rsync://rpki.ripe.net/repository/DEFAULT/wSWw9XiOWBEj5eSfAB1S16f89a8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:b3:13:01:a5:d1:68:bc:6a:ea:e1:45:27:b0:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c125b0f5788e581123e5e49f001d52d7a7fcf5af
Validity
Not Before: Jun 29 05:01:09 2026 GMT
Not After : Jun 30 05:01:09 2026 GMT
Subject: CN=aa3be9887fc9738f8511162e2e0a5eafc413fb0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1d:55:ca:f4:4b:f8:b7:21:56:d5:19:57:20:
8d:f0:38:18:7b:5e:62:b7:19:c2:20:d2:6f:88:94:
ca:e4:97:47:4a:f6:f0:16:92:96:3d:47:51:02:b4:
a2:60:6c:90:fb:a8:dc:8e:57:fb:6f:2c:0b:1a:38:
19:47:db:01:dc:da:28:cc:e8:1b:ae:35:ac:93:ae:
cb:bc:70:4f:08:6b:87:a4:2d:94:d4:27:be:2e:82:
22:8d:a8:4c:96:07:30:d9:ac:cf:1b:79:ef:dc:80:
ab:2a:22:0a:c8:b2:59:a5:0f:eb:c1:ea:92:0f:28:
b0:fd:11:53:7e:51:5c:ea:0f:c4:1e:4d:6c:cf:6a:
80:8a:8e:82:0a:b6:bf:ba:4a:77:09:7c:bf:2d:5f:
e6:04:66:54:56:26:7e:14:a7:c9:e8:e6:90:bc:92:
a5:7f:9e:ec:24:f0:e6:7d:81:4d:69:86:54:1f:3a:
c8:11:17:83:10:d9:6e:d7:0c:b0:de:fd:ec:2b:14:
d4:45:9b:8b:65:85:1a:c7:5b:9b:8d:8e:ad:4e:49:
d5:40:ad:e3:d9:ed:5f:c8:a5:b3:23:f3:b0:62:60:
b6:49:5e:6f:7d:dc:7f:19:09:3b:00:10:35:39:a2:
0a:87:9e:1a:42:7c:cf:15:d2:88:6b:c9:78:c9:98:
a0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3B:E9:88:7F:C9:73:8F:85:11:16:2E:2E:0A:5E:AF:C4:13:FB:0E
X509v3 Authority Key Identifier:
keyid:C1:25:B0:F5:78:8E:58:11:23:E5:E4:9F:00:1D:52:D7:A7:FC:F5:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSWw9XiOWBEj5eSfAB1S16f89a8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:80:83:fb:97:24:5e:4a:da:8a:70:2a:f6:33:f5:b9:f3:af:
65:44:2f:3b:41:2f:98:c8:9d:cd:a4:3b:ae:39:dc:9c:94:6e:
01:6d:29:ca:4c:f7:87:02:5c:7a:0c:ac:d9:bc:de:b2:bc:fe:
e0:5a:83:11:35:69:86:35:f9:cf:30:fe:4e:fc:d7:48:01:2f:
be:1a:3d:85:f0:bc:a2:fd:de:52:8d:ad:f5:a1:4b:f3:d8:a1:
8c:dd:2f:ee:7e:17:d9:12:d0:b1:6d:9a:0f:26:af:8d:39:5d:
68:f7:b2:3f:d5:7e:3c:f0:69:d2:60:76:d1:8f:6d:71:33:ba:
0a:c5:23:fe:8a:a2:26:a4:4e:e1:cb:04:55:4e:85:90:50:a7:
85:2d:66:60:c7:d2:67:2b:76:f0:3b:40:19:ed:b9:49:a3:4f:
11:f1:df:bb:32:69:83:fb:2b:b7:18:e9:01:28:07:96:11:8a:
7b:e4:6d:8b:a2:52:78:70:ce:2d:94:be:49:ad:72:19:21:50:
f7:9e:a1:38:15:50:85:bd:81:07:45:e3:82:2a:25:46:ef:13:
ec:7d:ea:76:8a:92:e2:6b:ee:66:8b:0c:eb:81:96:4f:c1:8d:
31:cd:41:49:f5:39:1f:b2:c0:1a:1f:aa:89:5d:d2:d0:45:de:
77:6f:bc:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8RwLMTAaXRaLxq6uFFJ7CBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMxMjViMGY1Nzg4ZTU4MTEyM2U1ZTQ5ZjAwMWQ1MmQ3YTdm
Y2Y1YWYwHhcNMjYwNjI5MDUwMTA5WhcNMjYwNjMwMDUwMTA5WjAzMTEwLwYDVQQD
EyhhYTNiZTk4ODdmYzk3MzhmODUxMTE2MmUyZTBhNWVhZmM0MTNmYjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwB1VyvRL+LchVtUZVyCN8DgYe15i
txnCINJviJTK5JdHSvbwFpKWPUdRArSiYGyQ+6jcjlf7bywLGjgZR9sB3NoozOgb
rjWsk67LvHBPCGuHpC2U1Ce+LoIijahMlgcw2azPG3nv3ICrKiIKyLJZpQ/rweqS
Dyiw/RFTflFc6g/EHk1sz2qAio6CCra/ukp3CXy/LV/mBGZUViZ+FKfJ6OaQvJKl
f57sJPDmfYFNaYZUHzrIEReDENlu1wyw3v3sKxTURZuLZYUax1ubjY6tTknVQK3j
2e1fyKWzI/OwYmC2SV5vfdx/GQk7ABA1OaIKh54aQnzPFdKIa8l4yZigGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKo76Yh/yXOPhREWLi4KXq/EE/sOMB8GA1UdIwQY
MBaAFMElsPV4jlgRI+XknwAdUten/PWvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd1NXdzlYaU9XQkVqNWVTZkFCMVMxNmY4OWE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9lNzY4MTQtZDIyNy00MGNhLWIzODMt
NDY5M2Q4MDZlOGM5LzEvd1NXdzlYaU9XQkVqNWVTZkFCMVMxNmY4OWE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9lNzY4MTQtZDIyNy00MGNhLWIzODMtNDY5M2Q4MDZlOGM5
LzEvd1NXdzlYaU9XQkVqNWVTZkFCMVMxNmY4OWE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp4CD+5ck
XkrainAq9jP1ufOvZUQvO0EvmMidzaQ7rjncnJRuAW0pykz3hwJcegys2bzesrz+
4FqDETVphjX5zzD+TvzXSAEvvho9hfC8ov3eUo2t9aFL89ihjN0v7n4X2RLQsW2a
DyavjTldaPeyP9V+PPBp0mB20Y9tcTO6CsUj/oqiJqRO4csEVU6FkFCnhS1mYMfS
Zyt28DtAGe25SaNPEfHfuzJpg/srtxjpASgHlhGKe+Rti6JSeHDOLZS+Sa1yGSFQ
956hOBVQhb2BB0XjgiolRu8T7H3qdoqS4mvuZosM64GWT8GNMc1BSfU5H7LAGh+q
iV3S0EXed2+8BA==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:42:39 2026 by rpki-client