Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
File: CWmio5Y1t5dHbx8WM66PJ78ztTM.mft (raw, json)
Hash identifier: RrGI8LipjlA1Hw6ijBuuZMR9zbRbbQQ//gRc9IWdjH0=
Subject key identifier: 13:68:79:42:1A:89:F2:C6:8C:E8:C6:AF:45:89:FA:97:D2:B0:82:99
Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Certificate serial: 019D39AF24590BD04A449F9C328F4D5D895F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
Manifest number: 09F7
Signing time: Sun 29 Mar 2026 13:01:12 +0000
Manifest this update: Sun 29 Mar 2026 13:01:12 +0000
Manifest next update: Mon 30 Mar 2026 13:01:12 +0000
Files and hashes: 1: CWmio5Y1t5dHbx8WM66PJ78ztTM.crl (hash: j7hMIGNA0VvB5rasA3oqrEr2glvLAB0yjBJNx8i0LDY=)
2: RsTSr-3jTnG1CeXmaL5yjIv3e7A.roa (hash: U9h7mXi2TPfXP2mWBMjzpDcUhTXc3t6ZDS7Y90GMnqI=)
3: V2mAUhiuLSdY43WTX18t68JU52U.roa (hash: 0HD53IzD09TTvFxGJ5/toZ8gNnKRelVvlZQJyDdwGvM=)
4: ZYguphbq_OVZXqnSVXPcyY-MrWU.roa (hash: YBNSr4xuGhr4HSUuVKzH8avlZXqqbx+cNVBs9dQx+pg=)
5: kNW-FofDRFcYyJ6jdZntLsWi_kQ.roa (hash: vsRui+TumYQf+mEKOxKsjjJTMlbNB6Ytf/Fua/xhVUM=)
6: ksfa6RQDM_0VxmjR64arGWZD9rM.roa (hash: eBadilkI77a4zTmLhePWsFBGmFNKACYzx+SMzHBV/40=)
7: yNd_DMkIMvgYnrn_7Wsari1U2DE.roa (hash: IEhZvaGq91qhQu5JNN1NRfY/8v2XmumSPV2Zm2UUU6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:24:59:0b:d0:4a:44:9f:9c:32:8f:4d:5d:89:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Validity
Not Before: Mar 29 13:01:12 2026 GMT
Not After : Mar 30 13:01:12 2026 GMT
Subject: CN=136879421a89f2c68ce8c6af4589fa97d2b08299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:55:3a:5a:01:e5:0b:bb:35:52:d6:98:12:d4:
af:cd:ac:51:18:9f:27:a6:74:21:fc:e8:32:ee:39:
5a:f4:6d:e8:80:84:b9:c9:8d:98:03:9c:74:ba:c4:
f5:95:83:d1:b8:59:98:a7:76:11:d4:08:15:34:6b:
16:c1:27:f3:ce:14:ed:b9:4b:cc:f3:26:c7:25:c8:
c8:5b:82:c7:96:60:ad:34:a2:70:2e:40:37:b4:43:
11:7b:01:7b:85:f2:c0:95:f9:05:b4:ea:77:27:18:
66:24:5f:0f:d3:a4:6d:5f:38:3f:4d:c2:dd:9e:e4:
39:e0:ef:c4:33:14:ec:5d:ee:07:c6:03:63:65:a5:
33:36:c3:2f:ff:a1:7a:f5:ce:22:f7:33:52:cc:cf:
f1:5d:5a:b5:f3:b9:ca:70:37:eb:12:d8:ad:40:e1:
3b:46:fc:29:a8:13:d0:20:da:b2:f3:30:f2:40:bd:
da:a8:5d:55:de:87:83:b0:71:ec:9c:4c:0b:ca:16:
5e:3d:11:bb:bf:09:c9:81:b9:4c:21:80:9b:f5:b5:
ea:d6:61:f2:02:db:ad:3e:e1:c5:2e:1e:7b:e0:ce:
8a:d1:62:b8:d2:e8:3c:d2:7e:57:c1:51:1b:6c:ce:
74:6f:88:33:71:a9:2b:de:51:18:8f:66:22:cd:09:
5c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:68:79:42:1A:89:F2:C6:8C:E8:C6:AF:45:89:FA:97:D2:B0:82:99
X509v3 Authority Key Identifier:
keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:a7:19:b9:46:79:ed:9a:9a:43:06:c9:ca:4d:32:60:59:16:
48:9a:bf:c0:43:e2:f0:76:e0:9d:b1:72:1d:fc:f8:d2:cf:b2:
19:54:2d:4c:c5:62:21:67:a8:31:b8:a6:b0:ee:2f:58:76:32:
fe:0d:1e:0b:02:4c:24:3f:f2:1b:3c:0e:67:ad:ab:48:75:c9:
a1:78:5b:88:ee:29:bf:6d:2c:7b:77:54:d4:01:18:0e:57:f5:
8a:3a:10:6c:4a:37:e3:18:10:1c:7d:8e:37:1c:42:80:74:62:
a9:9e:13:69:7c:f0:47:cd:6a:9e:83:b2:1f:2d:62:eb:d4:bb:
c7:a5:c5:ae:9b:30:00:7b:bf:35:b8:ac:5d:5f:72:0a:97:92:
ee:0e:e5:d3:43:0e:19:f5:80:8e:e8:09:5f:9b:06:b6:d5:1c:
e8:64:96:68:22:68:49:b2:2f:ea:0a:ba:d7:61:7f:8d:e6:62:
12:0a:f8:aa:a4:bd:ef:3f:e1:80:bc:05:e7:1f:1c:9e:18:80:
35:8a:37:4e:08:9f:38:88:f0:70:ee:88:70:d0:4a:e3:77:d8:
87:3f:22:be:95:52:79:6c:61:d2:3a:6d:1f:6f:fd:6f:d1:14:
55:3d:b0:59:51:75:1b:1c:bb:5a:c6:92:52:80:00:a6:ea:8a:
5c:94:7c:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:48:24 2026 by rpki-client