Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
File: wSWw9XiOWBEj5eSfAB1S16f89a8.mft (raw, json)
Hash identifier: w+dld4/bQlBJPyYsKzQU+kT1mS3+IlnysOI/Ww80xuo=
Subject key identifier: 43:6D:F5:EC:AC:E4:39:04:50:F3:2E:6D:4C:2A:FC:B6:4D:1E:BF:E1
Authority key identifier: C1:25:B0:F5:78:8E:58:11:23:E5:E4:9F:00:1D:52:D7:A7:FC:F5:AF
Certificate issuer: /CN=c125b0f5788e581123e5e49f001d52d7a7fcf5af
Certificate serial: 019D389C11F4663A0D4DEDD74B57F0C9FCC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSWw9XiOWBEj5eSfAB1S16f89a8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
Manifest number: 02EA
Signing time: Sun 29 Mar 2026 08:00:45 +0000
Manifest this update: Sun 29 Mar 2026 08:00:45 +0000
Manifest next update: Mon 30 Mar 2026 08:00:45 +0000
Files and hashes: 1: vmkoqoQ_otv0F89R60xz-Vuo-2g.roa (hash: iq0VYDEcTpvgBWZIkkSwVuASLLS7URTHNl2Z2J0KqqE=)
2: wSWw9XiOWBEj5eSfAB1S16f89a8.crl (hash: ruuwxavnYL43YVWsNqI3o3Z/bQjgFwHKdoR8huWBv6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
rsync://rpki.ripe.net/repository/DEFAULT/wSWw9XiOWBEj5eSfAB1S16f89a8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:11:f4:66:3a:0d:4d:ed:d7:4b:57:f0:c9:fc:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c125b0f5788e581123e5e49f001d52d7a7fcf5af
Validity
Not Before: Mar 29 08:00:45 2026 GMT
Not After : Mar 30 08:00:45 2026 GMT
Subject: CN=436df5ecace4390450f32e6d4c2afcb64d1ebfe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:c0:bd:b2:b0:d2:8c:b3:97:fd:e8:64:3e:46:
75:b7:b7:9f:00:b6:76:63:10:a6:fb:3a:4c:32:ea:
b2:69:3a:0f:f7:70:a7:e5:d8:12:e4:0c:5e:50:1b:
b8:1b:88:9d:a5:7d:74:73:5c:7c:33:30:4d:aa:3c:
c1:87:78:e4:4b:e4:cb:96:29:2e:c0:f0:f4:01:66:
9e:9c:3b:5d:c1:41:22:7f:5a:3f:5b:49:1e:85:e9:
8c:74:ba:68:f6:a7:f8:c1:c5:ca:a2:89:b1:86:c4:
b2:91:5d:16:30:b1:98:f4:d9:32:73:6f:82:ec:99:
db:ed:85:42:d8:ff:8d:ba:cc:f1:c3:ce:77:da:68:
30:06:12:6f:3f:fe:46:8a:22:5f:d5:ff:22:90:44:
07:9a:ce:c7:40:38:56:c6:79:92:83:fe:51:ad:3f:
85:44:9a:e5:63:66:dc:7b:e6:7e:c7:6a:6f:5f:dd:
c9:bf:6a:87:cb:76:38:2d:40:6a:83:77:2e:8c:83:
1a:76:1d:0a:91:17:44:58:92:2f:88:03:33:57:eb:
32:dd:66:34:35:19:67:4e:b5:ac:b3:3d:cd:ae:04:
82:d0:90:03:83:e4:3b:54:97:e7:02:ca:0c:d1:23:
70:2e:aa:53:22:78:39:36:35:ce:2e:3d:f2:fd:91:
39:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:6D:F5:EC:AC:E4:39:04:50:F3:2E:6D:4C:2A:FC:B6:4D:1E:BF:E1
X509v3 Authority Key Identifier:
keyid:C1:25:B0:F5:78:8E:58:11:23:E5:E4:9F:00:1D:52:D7:A7:FC:F5:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSWw9XiOWBEj5eSfAB1S16f89a8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/e76814-d227-40ca-b383-4693d806e8c9/1/wSWw9XiOWBEj5eSfAB1S16f89a8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:ae:64:74:82:60:18:b6:46:84:90:ed:b4:ea:7b:27:0c:92:
63:0a:a0:50:de:93:ad:f7:01:c2:26:d7:df:d9:ef:29:da:f9:
94:2e:14:70:ac:22:4f:d8:75:3d:ad:54:3b:1d:12:09:0c:5f:
ab:5e:5b:6b:dd:8b:8d:34:8e:e2:cb:34:1d:0e:73:75:0d:1e:
69:10:89:72:0b:ee:97:b7:aa:c3:bf:aa:d1:04:18:0f:b4:82:
12:c6:3e:64:5f:84:b5:e0:1c:11:21:0e:8a:8e:15:f3:43:a1:
82:a5:a7:f4:c0:f2:88:bf:5f:17:55:44:50:9b:07:eb:79:fe:
1c:9a:67:ab:33:c3:0e:d2:7a:22:c1:1e:bf:a7:5c:d3:6e:0d:
e1:cf:09:bd:c4:1d:79:20:39:b6:92:98:67:94:64:70:04:56:
4f:17:9e:e7:53:64:a9:87:ef:4c:65:d2:f2:ee:8e:9a:d8:43:
f5:4b:41:5f:60:24:2b:18:55:e9:d7:3d:0f:a6:c5:3f:f6:07:
44:89:c5:f4:9f:90:1d:dc:58:90:17:66:ee:13:54:26:3a:f6:
29:20:d2:b9:79:2d:d9:e2:a6:c3:56:5e:fb:32:ef:11:fc:49:
7a:88:d8:6a:c1:1b:21:13:20:b9:72:95:20:65:6f:b6:1c:b5:
bf:2d:fb:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:12:52 2026 by rpki-client