Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
File: CWmio5Y1t5dHbx8WM66PJ78ztTM.mft (raw, json)
Hash identifier: u0FGfN15toUP8lvtEZngjJWBVhCIOc4GZ9pWRW40mvo=
Subject key identifier: D7:45:65:5A:5C:E3:F8:C9:42:E0:F5:5B:FE:FB:0B:AD:D6:66:4D:89
Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Certificate serial: 019CAAC621067926BEB7A5925B326F7D2836
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
Manifest number: 09AD
Signing time: Sun 01 Mar 2026 19:00:37 +0000
Manifest this update: Sun 01 Mar 2026 19:00:37 +0000
Manifest next update: Mon 02 Mar 2026 19:00:37 +0000
Files and hashes: 1: CWmio5Y1t5dHbx8WM66PJ78ztTM.crl (hash: Jyp0QXIByd8A/YmxyAre/0EhXv/Phdwuu5ulvwz3rNE=)
2: RsTSr-3jTnG1CeXmaL5yjIv3e7A.roa (hash: U9h7mXi2TPfXP2mWBMjzpDcUhTXc3t6ZDS7Y90GMnqI=)
3: V2mAUhiuLSdY43WTX18t68JU52U.roa (hash: 0HD53IzD09TTvFxGJ5/toZ8gNnKRelVvlZQJyDdwGvM=)
4: ZYguphbq_OVZXqnSVXPcyY-MrWU.roa (hash: YBNSr4xuGhr4HSUuVKzH8avlZXqqbx+cNVBs9dQx+pg=)
5: kNW-FofDRFcYyJ6jdZntLsWi_kQ.roa (hash: vsRui+TumYQf+mEKOxKsjjJTMlbNB6Ytf/Fua/xhVUM=)
6: ksfa6RQDM_0VxmjR64arGWZD9rM.roa (hash: eBadilkI77a4zTmLhePWsFBGmFNKACYzx+SMzHBV/40=)
7: yNd_DMkIMvgYnrn_7Wsari1U2DE.roa (hash: IEhZvaGq91qhQu5JNN1NRfY/8v2XmumSPV2Zm2UUU6I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:21:06:79:26:be:b7:a5:92:5b:32:6f:7d:28:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Validity
Not Before: Mar 1 19:00:37 2026 GMT
Not After : Mar 2 19:00:37 2026 GMT
Subject: CN=d745655a5ce3f8c942e0f55bfefb0badd6664d89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:58:1f:00:96:95:f8:db:13:20:34:f6:73:a8:
f8:49:74:51:04:5a:99:5a:59:69:07:58:29:51:87:
c9:7d:37:5d:52:8c:ee:68:5d:c6:b3:0f:92:78:9f:
05:f4:07:13:59:48:2e:ff:60:e8:6d:95:e1:57:48:
03:4e:cc:65:41:11:3e:92:89:a0:e1:d9:01:db:02:
84:b8:3a:01:17:ff:14:dc:27:8b:e7:de:fa:6b:d8:
f4:58:65:f3:e9:03:50:6f:cf:39:0e:06:53:8c:f0:
df:c4:59:db:d9:ec:4e:4e:a9:f5:c6:b8:40:82:1d:
e6:c5:92:d2:e3:b8:b8:87:cc:1a:cf:64:c3:c5:35:
d1:c3:2d:b9:e6:72:2d:ca:e3:29:7f:04:86:c7:cf:
97:90:96:b1:1f:c3:d3:fc:4f:a0:91:69:24:33:fb:
81:a2:f7:a1:38:7d:37:f3:9b:b0:f0:ea:db:44:e4:
a0:52:dc:55:93:f3:0e:d1:b8:83:17:e2:22:fe:9c:
b8:63:86:d7:61:9e:6e:36:75:1c:46:99:d9:9f:c1:
d6:0e:2b:c5:52:16:40:08:26:44:fc:dc:1e:da:17:
3d:dd:f3:aa:ce:15:38:11:b9:09:09:53:f1:e5:bf:
25:46:bf:1d:33:96:54:e6:bd:38:6b:c3:d4:13:40:
06:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:45:65:5A:5C:E3:F8:C9:42:E0:F5:5B:FE:FB:0B:AD:D6:66:4D:89
X509v3 Authority Key Identifier:
keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:cc:41:25:37:28:bc:2b:5b:b3:18:c7:b7:99:51:fb:67:5f:
6f:4c:e3:88:6d:c7:11:10:be:4b:23:24:45:34:57:15:46:23:
96:9e:32:cc:7b:e2:ab:e1:f6:cc:79:b3:9a:6d:bc:ba:8b:ae:
eb:3b:3e:0c:46:8b:d8:bc:27:89:d7:7a:73:95:cf:08:18:58:
37:b9:e9:2c:6d:a9:26:c9:29:33:e4:86:04:2f:ec:98:39:d4:
bb:80:93:e9:95:26:4c:d4:ae:f5:91:00:80:f1:2b:4b:5e:cc:
9d:d2:c4:ae:9a:44:f6:db:35:33:49:29:e9:05:66:6d:bf:54:
07:67:a4:0a:9f:49:c1:9b:59:62:28:1f:5e:de:af:0f:25:88:
c9:9c:98:43:4a:0f:e7:36:44:5a:5d:08:7a:2f:04:c6:c1:62:
13:03:a4:c0:6c:1a:ec:37:f3:16:16:97:3f:62:c7:73:e6:8b:
71:7e:71:bf:64:25:d1:11:da:60:01:51:85:1d:73:df:b6:c9:
cf:0b:a6:66:16:6d:a0:fe:14:53:10:57:43:4b:54:88:90:07:
81:ab:67:a4:ae:b6:9b:a9:ec:fa:07:bf:0d:4d:b9:14:84:b4:
fd:1a:ef:0d:ef:00:bb:0c:8d:a9:ee:0f:d9:66:4d:06:03:35:
9a:97:67:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:26:44 2026 by rpki-client