Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
File: w-twdDgV_kRclYo8URfvJ1PTD34.mft (raw, json)
Hash identifier: dUQOD6Op+rH66gvqK9FB8Ad4nHc3qH8ezjWmtnFto9I=
Subject key identifier: 5D:FB:BB:D3:CC:83:E8:97:24:A8:40:AD:F5:BA:B5:63:6E:CE:2A:11
Authority key identifier: C3:EB:70:74:38:15:FE:44:5C:95:8A:3C:51:17:EF:27:53:D3:0F:7E
Certificate issuer: /CN=c3eb70743815fe445c958a3c5117ef2753d30f7e
Certificate serial: 019D382EAEE09309852EE623D95B67691DB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 06:01:16 +0000
Manifest this update: Sun 29 Mar 2026 06:01:16 +0000
Manifest next update: Mon 30 Mar 2026 06:01:16 +0000
Files and hashes: 1: 9q8SdW4K_Qfg_qhjmay8aSi22H8.roa (hash: Ep0bFnw6XVVIIq0VGt/sxRJ3Mflsj+GO7Wgmc5rKidw=)
2: w-twdDgV_kRclYo8URfvJ1PTD34.crl (hash: gI1qXK+cOOEYi8xGaLlE03wJtxGpGWpn+KKPDExHpeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:ae:e0:93:09:85:2e:e6:23:d9:5b:67:69:1d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3eb70743815fe445c958a3c5117ef2753d30f7e
Validity
Not Before: Mar 29 06:01:16 2026 GMT
Not After : Mar 30 06:01:16 2026 GMT
Subject: CN=5dfbbbd3cc83e89724a840adf5bab5636ece2a11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:14:fe:dc:f6:c5:b7:ea:f5:98:d1:5e:71:6b:
b4:31:d9:b4:13:bf:b0:77:5e:fc:1a:fd:bd:0e:8c:
95:00:90:d3:e6:91:c5:48:86:7d:e4:80:4b:57:ec:
69:b8:81:99:47:b6:8f:20:ca:57:8b:51:21:d2:1a:
f5:5a:a0:56:48:48:9e:24:49:4f:38:bd:c6:24:58:
74:3b:cc:06:e3:1a:c2:14:48:bb:ef:31:e3:dc:48:
ba:ce:a9:f4:bd:59:c5:82:67:a9:13:0d:39:56:04:
28:27:1b:f0:d8:1b:7b:6f:2e:02:e5:95:43:ea:59:
86:8a:1c:bd:f9:30:6a:c7:68:2b:d5:4f:5e:f0:69:
54:03:9e:4d:54:ba:80:7f:c2:0c:c4:02:a6:e2:e8:
e1:f2:39:43:eb:50:64:f6:e8:f7:23:c1:a4:96:50:
d5:9b:2e:be:8c:c4:16:e6:f6:70:45:87:cd:7e:05:
dc:13:0b:d2:46:a6:75:6b:48:46:aa:12:eb:58:61:
52:54:2f:ff:e9:f9:69:c9:b0:ad:7b:09:5e:4f:fb:
28:e2:05:6f:8c:90:4d:2b:39:6a:c8:d3:29:b8:5d:
a8:0a:3c:96:6d:9a:7c:5c:c8:f4:e6:c6:61:73:c0:
f3:5d:dd:2d:88:77:5a:31:a9:00:ab:5b:7e:80:f0:
0d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:FB:BB:D3:CC:83:E8:97:24:A8:40:AD:F5:BA:B5:63:6E:CE:2A:11
X509v3 Authority Key Identifier:
keyid:C3:EB:70:74:38:15:FE:44:5C:95:8A:3C:51:17:EF:27:53:D3:0F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w-twdDgV_kRclYo8URfvJ1PTD34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/13754c-8be7-460e-8507-13575ef729f3/1/w-twdDgV_kRclYo8URfvJ1PTD34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:58:f2:8a:1f:6b:cd:5a:97:85:9a:f5:f9:30:1d:86:3a:fa:
7f:96:53:6f:e6:cc:9c:22:f1:9b:54:5a:d2:50:13:05:a4:3b:
eb:65:f5:6f:97:47:57:ed:58:b1:ea:0e:22:3d:de:2b:b0:1d:
ac:a0:d4:5c:a7:16:f5:6f:5c:73:ad:25:e1:03:a2:0a:b2:12:
8e:99:26:a6:89:58:47:14:ae:89:f6:c5:11:63:e3:ab:ce:05:
12:8f:e4:ba:7e:89:e6:fe:cf:38:92:55:80:ed:37:d9:c4:60:
7e:46:69:98:36:69:29:c6:08:d9:82:54:a8:a3:7e:fc:73:47:
62:27:bd:38:89:bd:ef:dc:6e:7e:58:2d:b3:c5:81:3b:7e:41:
43:b9:b0:7b:0d:e1:24:cd:d3:f2:0e:a6:54:50:45:92:d6:24:
a0:49:cc:65:f7:85:39:40:31:eb:98:43:2d:18:1b:1a:d6:ea:
9c:9b:bd:bb:0f:65:c0:fa:de:77:58:de:16:11:ef:1c:72:24:
58:8b:b5:94:3b:7d:3a:69:d7:e4:87:db:df:3b:74:05:d9:ec:
f1:6a:12:61:07:14:f8:c3:1f:9f:e6:56:d7:51:07:48:bb:66:
04:35:c8:03:b0:9d:19:b7:ca:43:b3:d4:4c:48:20:c2:66:53:
58:83:cf:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:39:52 2026 by rpki-client