Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
File: CWmio5Y1t5dHbx8WM66PJ78ztTM.mft (raw, json)
Hash identifier: IpRE3h42yMk5KOzYvAcstNDvBIACJKARNG/a/LtYJEU=
Subject key identifier: 97:2E:19:1D:C0:51:16:85:51:A7:A8:D5:1F:CD:5F:88:47:58:AC:AF
Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Certificate serial: 019D98501124C6CF8C9F92AA1B35DCC8194A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
Manifest number: 0A28
Signing time: Thu 16 Apr 2026 22:01:17 +0000
Manifest this update: Thu 16 Apr 2026 22:01:17 +0000
Manifest next update: Fri 17 Apr 2026 22:01:17 +0000
Files and hashes: 1: CWmio5Y1t5dHbx8WM66PJ78ztTM.crl (hash: AJ7Ba0rXCgiBJphGJjbiFO6/JvsgQc32EKiu4+V7oa4=)
2: RsTSr-3jTnG1CeXmaL5yjIv3e7A.roa (hash: U9h7mXi2TPfXP2mWBMjzpDcUhTXc3t6ZDS7Y90GMnqI=)
3: V2mAUhiuLSdY43WTX18t68JU52U.roa (hash: 0HD53IzD09TTvFxGJ5/toZ8gNnKRelVvlZQJyDdwGvM=)
4: ZYguphbq_OVZXqnSVXPcyY-MrWU.roa (hash: YBNSr4xuGhr4HSUuVKzH8avlZXqqbx+cNVBs9dQx+pg=)
5: kNW-FofDRFcYyJ6jdZntLsWi_kQ.roa (hash: vsRui+TumYQf+mEKOxKsjjJTMlbNB6Ytf/Fua/xhVUM=)
6: ksfa6RQDM_0VxmjR64arGWZD9rM.roa (hash: eBadilkI77a4zTmLhePWsFBGmFNKACYzx+SMzHBV/40=)
7: yNd_DMkIMvgYnrn_7Wsari1U2DE.roa (hash: IEhZvaGq91qhQu5JNN1NRfY/8v2XmumSPV2Zm2UUU6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:11:24:c6:cf:8c:9f:92:aa:1b:35:dc:c8:19:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Validity
Not Before: Apr 16 22:01:17 2026 GMT
Not After : Apr 17 22:01:17 2026 GMT
Subject: CN=972e191dc051168551a7a8d51fcd5f884758acaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:6d:46:dd:e7:93:9f:9a:49:e1:1b:19:f0:3b:
17:c4:e1:53:4e:02:4b:25:55:bb:7f:82:17:0a:43:
ac:81:4b:1f:76:e7:b4:1b:db:b9:2b:6c:40:8c:af:
b8:9a:62:ad:c6:15:3a:cf:8b:ab:b9:eb:ab:93:ae:
50:21:e6:77:3b:3b:01:f1:5a:8b:48:46:51:9d:23:
00:ac:62:bf:f9:be:5d:90:ec:69:47:16:d9:ec:8c:
f0:23:23:95:b2:cb:eb:83:33:8c:2c:35:1a:41:96:
06:79:ba:dc:fa:96:b4:d3:fa:b0:02:59:90:c7:4a:
81:40:c4:33:e4:69:91:9f:f2:82:e7:ff:9a:9b:4b:
d2:ce:58:ba:ce:82:f7:59:71:11:db:6c:dc:2a:e8:
6f:dd:da:a4:a3:7b:c9:cf:c2:d4:d4:ae:39:6b:53:
de:fb:00:c4:c1:1a:b9:fe:4f:1f:e4:f2:fd:59:14:
08:ed:df:fa:91:7f:86:29:85:fa:f4:4e:68:72:fa:
c8:23:4a:e8:ea:3f:3b:0a:70:e2:aa:2c:38:b2:3e:
0e:05:e5:2e:cf:96:1b:17:63:ac:40:b6:5a:b3:95:
fd:50:20:0e:0a:c9:91:33:2a:05:7e:cd:83:b3:e3:
3e:c9:f3:01:7e:46:0b:eb:a3:9d:09:e2:3d:87:86:
33:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:2E:19:1D:C0:51:16:85:51:A7:A8:D5:1F:CD:5F:88:47:58:AC:AF
X509v3 Authority Key Identifier:
keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:b9:ee:3a:16:1b:9b:7f:39:bd:f2:45:f9:b5:0d:f9:98:01:
e2:f5:22:44:01:1c:5d:66:d1:c5:21:0e:e7:ae:cf:46:b4:bb:
cf:9a:96:64:cd:78:4b:66:45:bc:a7:24:43:0f:bb:c7:84:87:
52:e6:43:ea:37:27:82:02:3f:eb:50:8f:e3:91:b2:0b:3b:2d:
68:45:62:f6:b9:bf:05:11:d3:f1:15:00:1d:fb:09:89:99:8a:
5f:46:8f:4d:c5:66:bf:d4:e9:ce:af:58:c7:e5:dc:84:71:a6:
8e:69:d2:8b:dc:ec:b1:24:14:02:62:5d:cd:25:5e:5d:f8:be:
5f:65:06:43:f8:c0:3c:de:97:18:2e:35:7c:df:b5:3e:e0:c6:
5d:c1:a8:84:2b:3c:74:94:85:e2:90:bc:e3:4f:f9:d9:dc:ba:
fb:c2:29:f0:fa:ba:7a:fd:5a:6e:43:16:da:0c:ad:71:f0:df:
8e:fe:43:12:7a:73:33:fd:54:fb:93:e2:e1:1f:dc:35:0e:9e:
ae:72:92:a7:d9:d6:cd:e4:52:9f:f3:2b:47:01:29:6f:24:b6:
72:c3:02:34:03:93:4c:e8:59:43:d5:a1:3c:b5:54:e7:ee:3f:
47:cf:51:d1:bb:a9:35:83:4a:3b:7d:c3:ca:f3:c7:af:77:5d:
42:52:dd:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:53:45 2026 by rpki-client