Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
File: cdiwl1czMSbftYNIDqji09NGwI0.mft (raw, json)
Hash identifier: 5Y8m5IiNrynKeqxfkSJxurUapnLLbLT7pwEwe5XAW00=
Subject key identifier: C7:AB:96:EA:BC:82:5B:0D:9B:BD:6B:DB:6C:17:24:FD:A4:7D:CF:68
Authority key identifier: 71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D
Certificate issuer: /CN=71d8b09757333126dfb583480ea8e2d3d346c08d
Certificate serial: 019CAF10CA7DAB66ACA6EB9EAAE86CF69804
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
Manifest number: 0160
Signing time: Mon 02 Mar 2026 15:00:38 +0000
Manifest this update: Mon 02 Mar 2026 15:00:38 +0000
Manifest next update: Tue 03 Mar 2026 15:00:38 +0000
Files and hashes: 1: cdiwl1czMSbftYNIDqji09NGwI0.crl (hash: +GVjz9PXV85ECrs13O/HIzoTDZggFy+rs4QPKmLBXEs=)
2: d7QLV60EzdcK6Z9SHb-OI9Vui7M.roa (hash: rchiT/bvXuEanUa+M3WmCKgTEc1BUzo1gca2cFJPRLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:10:ca:7d:ab:66:ac:a6:eb:9e:aa:e8:6c:f6:98:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d8b09757333126dfb583480ea8e2d3d346c08d
Validity
Not Before: Mar 2 15:00:38 2026 GMT
Not After : Mar 3 15:00:38 2026 GMT
Subject: CN=c7ab96eabc825b0d9bbd6bdb6c1724fda47dcf68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:86:46:c4:24:a8:58:ed:ae:4f:6a:37:f3:af:
cc:1a:3f:b7:fd:b8:e7:82:01:f4:79:3e:d1:51:db:
2c:cc:ab:fd:3b:ec:13:08:3b:7d:1d:bd:bd:b8:27:
4a:a2:07:df:f4:1d:5d:bb:a8:1a:22:95:f0:3c:1d:
b4:f8:42:8b:fa:d0:ee:e3:0e:e5:19:7f:4f:c7:1d:
cf:80:ee:bc:5f:c2:1b:80:04:d2:ea:38:58:ed:c5:
9a:39:9b:b8:40:82:4e:41:d1:27:62:ff:d6:7e:dd:
fb:0b:8f:2f:ba:c8:8f:f7:f6:ff:78:c6:51:6b:eb:
dc:a8:47:00:6e:df:69:c2:02:7a:2e:aa:6b:86:65:
42:ba:8a:5a:ec:cb:0b:29:73:ca:02:99:ba:41:34:
ec:8c:70:6a:d2:8b:65:2b:d0:14:a2:df:2f:2f:a9:
19:74:00:94:c1:00:66:70:44:4d:40:55:c0:75:cc:
86:ab:9e:2c:65:b7:8c:b4:90:98:bb:30:f3:6a:39:
18:ad:a4:ae:ad:26:5b:8b:83:37:3f:3d:99:86:d8:
23:73:f5:95:84:7b:a7:51:96:7e:e6:ed:f1:ac:57:
b0:b7:e2:21:68:3b:4f:8a:fc:e2:49:43:26:d2:b5:
5b:8b:da:5d:32:33:bc:f8:91:b2:6b:45:c2:42:ea:
52:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:AB:96:EA:BC:82:5B:0D:9B:BD:6B:DB:6C:17:24:FD:A4:7D:CF:68
X509v3 Authority Key Identifier:
keyid:71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:73:7f:8f:4f:04:a5:1a:22:e0:10:7f:c3:c3:13:fc:c1:50:
eb:df:bf:fe:b7:70:cb:2a:75:0b:ec:36:2e:91:bf:60:89:63:
97:90:8c:a8:42:b9:42:47:45:c4:92:06:8a:6a:f4:d4:0d:43:
3d:3d:11:44:5a:34:30:d8:c6:2b:9f:ae:37:52:8f:3d:48:52:
d0:9d:f7:67:90:35:62:a2:3a:1e:96:67:7e:45:49:d4:42:f3:
7d:42:be:79:9f:67:b0:56:03:90:94:02:fc:2c:e5:64:f8:92:
95:ba:ee:c3:10:d4:b5:9d:79:86:3d:6a:c6:02:9f:08:17:40:
d7:f4:9f:64:40:ed:5a:43:bc:93:b4:c8:df:e5:af:f5:b7:c1:
2a:aa:92:17:8b:6a:5a:df:40:bf:b5:b0:f0:04:c2:d6:ea:02:
89:0e:be:a5:da:6b:c7:02:9b:57:69:78:2b:8d:48:0f:60:76:
e0:89:47:f2:69:28:2c:47:e2:6b:d1:3f:90:2d:2d:5c:66:9f:
ea:0d:62:e4:05:9f:34:e5:7d:fb:05:b0:37:c8:76:99:e0:12:
6c:66:fa:ca:98:be:32:da:04:b1:f6:ad:ad:8d:02:ec:9d:95:
20:f7:89:34:2f:c2:21:dd:8c:3c:8a:08:20:09:4c:a5:07:8a:
30:f1:3a:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:57:03 2026 by rpki-client