Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: wyjWXmf21NDFuGRKSg3i/6clNCJDc+9a9Q0tlSa2nXY=
Subject key identifier: E1:3D:E6:31:65:56:0D:C5:DC:D2:A0:25:7E:C0:B9:25:F0:1C:04:D5
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 019EB845E7F45D1B4C1DAA0417C5263D621B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: 0503
Signing time: Thu 11 Jun 2026 20:00:49 +0000
Manifest this update: Thu 11 Jun 2026 20:00:49 +0000
Manifest next update: Fri 12 Jun 2026 20:00:49 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: 9rzGiVN/o+fZKAbEppyWZ5LUMGRByfATrV/C+XFeZis=)
2: rk1bcafZ-NbbUdZCLT9lMRUYm-I.roa (hash: 5haE3uSWqoSmkVp2C59/CSPiEElkrF1oivdNjZDrJeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:45:e7:f4:5d:1b:4c:1d:aa:04:17:c5:26:3d:62:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Jun 11 20:00:49 2026 GMT
Not After : Jun 12 20:00:49 2026 GMT
Subject: CN=e13de63165560dc5dcd2a0257ec0b925f01c04d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:d6:26:c2:97:8d:ae:03:0c:1c:1a:7c:94:be:
0e:c3:c6:2c:f0:ed:cf:01:db:a6:55:ec:6e:f5:2e:
3d:8b:da:c6:ef:73:ec:dd:81:fb:14:bf:05:de:7c:
2c:4a:25:b1:e4:f4:02:d8:3e:a0:82:0e:6b:db:3c:
ed:d6:19:b4:d5:40:8f:9a:90:e4:50:c0:f7:46:41:
ea:ce:e1:99:34:6e:e2:6e:27:15:65:df:ac:02:92:
d0:d5:ca:4b:4d:04:f4:3a:46:ba:54:0e:31:dd:c4:
21:db:68:ef:b4:bd:27:cb:b3:70:b5:de:dc:69:27:
89:c7:3c:c8:38:b9:1d:6a:7b:49:14:43:f4:6f:cb:
50:e1:d8:6f:c8:53:b7:b9:b5:78:4a:f0:e9:f9:25:
44:aa:f9:41:a3:49:8b:a9:ea:59:6e:cf:53:1f:50:
6e:12:50:7c:8b:c7:55:87:35:a9:d8:db:d7:01:d4:
4a:b0:92:d1:d2:84:5e:c0:31:ac:0e:6d:db:df:06:
8d:ed:5d:2a:80:0a:94:3b:26:0d:73:36:81:b1:51:
c5:4d:d1:96:14:48:50:b8:26:e4:0d:5f:1a:64:c6:
0a:75:34:ca:ae:b5:ca:a9:46:0a:88:f8:3c:4d:eb:
a1:21:c6:1e:45:2f:7f:1a:b1:70:9e:fe:59:7e:64:
21:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:3D:E6:31:65:56:0D:C5:DC:D2:A0:25:7E:C0:B9:25:F0:1C:04:D5
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:88:1c:6c:88:58:34:46:00:f7:b4:41:22:b8:b3:2c:90:79:
01:dc:27:91:07:2d:01:1a:4a:35:2a:c2:81:95:74:aa:a8:e9:
29:25:29:a5:81:f2:e6:58:12:3f:2e:16:ad:01:c0:9a:cb:ea:
5c:8f:f3:39:1f:95:27:b9:f9:3f:96:38:fa:09:3a:43:f6:61:
bb:d6:a8:ec:79:45:8c:5d:d9:f7:00:21:eb:29:00:39:df:4a:
dd:71:bf:b5:3f:49:60:31:bb:75:20:98:e3:e4:3e:07:96:b9:
8a:c0:9d:16:70:05:40:5e:df:91:b5:27:93:9e:00:3c:2a:35:
7f:13:1b:8d:b7:60:e4:08:12:5b:c6:df:74:bc:8c:c4:65:83:
91:dc:cf:c9:fd:97:8f:44:12:08:50:af:15:9e:a7:eb:38:05:
32:1a:52:09:d4:84:0a:76:68:bd:6f:fb:d8:eb:32:1c:0d:e7:
fa:c2:0f:d6:98:75:3b:22:6b:35:03:b8:da:45:fa:1f:10:f6:
1a:95:9f:d9:16:dc:c1:02:ba:09:3f:35:6c:a2:f1:b4:e7:6b:
34:f0:0b:f1:58:23:3b:1d:31:dd:3e:b0:43:8e:4f:e7:64:ea:
ba:05:a7:7b:7a:5b:0c:47:33:64:10:a8:7f:89:3e:70:51:10:
7c:6e:bc:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:55:47 2026 by rpki-client