Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
File: CWbgXRUnUN-q3l-veRutOR3G0tQ.mft (raw, json)
Hash identifier: gQd3H/lr8afl7XFBlRtCL5EudvH+GtK631zffFwIBeo=
Subject key identifier: B3:FA:5C:E0:EA:E0:E4:65:29:8C:04:D7:75:CD:55:E9:70:97:FA:3C
Authority key identifier: 09:66:E0:5D:15:27:50:DF:AA:DE:5F:AF:79:1B:AD:39:1D:C6:D2:D4
Certificate issuer: /CN=0966e05d152750dfaade5faf791bad391dc6d2d4
Certificate serial: 019D9999A6016565ED48723CD8725C15A126
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
Manifest number: 1103
Signing time: Fri 17 Apr 2026 04:01:16 +0000
Manifest this update: Fri 17 Apr 2026 04:01:16 +0000
Manifest next update: Sat 18 Apr 2026 04:01:16 +0000
Files and hashes: 1: CWbgXRUnUN-q3l-veRutOR3G0tQ.crl (hash: kzYYWKpstPTmyWMabCNqjtD+e9RJXvTnfPEJtd/ddsc=)
2: VvLHzr3zCOAlK7-AXr_k4lfnOVQ.roa (hash: K7rgIOGpP+zDsf8T3qgiqdA3/otSoFPMZHtAoCJ/7Q4=)
3: fLM3lMDOIHwMeEuupYXPThUldrU.roa (hash: LE/OpJSbb472I3p+Lhs1DmaGG8pkRz+JrIDCohhLEEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:a6:01:65:65:ed:48:72:3c:d8:72:5c:15:a1:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0966e05d152750dfaade5faf791bad391dc6d2d4
Validity
Not Before: Apr 17 04:01:16 2026 GMT
Not After : Apr 18 04:01:16 2026 GMT
Subject: CN=b3fa5ce0eae0e465298c04d775cd55e97097fa3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d5:39:59:34:ed:cd:37:9d:b3:36:24:a4:fd:
42:e4:5b:1f:ec:59:8e:21:1b:7d:3f:e0:cf:03:da:
7f:85:a3:d1:48:29:86:f5:e0:8d:09:b0:41:31:91:
85:63:a3:c1:e1:44:73:ec:88:09:35:9e:9b:68:2a:
e6:ad:ed:76:d9:89:ca:b2:9f:2e:e0:10:c6:40:c6:
ca:cf:3a:e6:50:a0:da:10:c5:36:22:61:52:8c:2f:
06:37:2d:fd:72:2e:aa:60:87:ba:36:fb:91:57:d0:
e0:a0:49:08:2c:a2:72:17:f5:78:7d:9e:0c:c3:f8:
18:10:ef:bf:d3:bc:6d:cb:c7:e8:1d:9d:73:92:d3:
8c:4f:99:da:5c:88:2a:46:63:1d:bb:26:85:e9:5f:
ed:c7:00:18:d4:75:60:2b:6b:88:7d:76:f5:93:76:
23:ee:81:f0:31:1c:f2:da:cb:e8:ed:da:7f:c2:08:
d0:13:b3:42:a0:95:34:19:e3:21:32:bc:5a:de:1e:
60:13:d7:97:6e:6b:e6:93:40:55:96:df:70:d8:32:
80:91:f8:a8:34:e2:0b:b7:a0:ce:f5:c5:4a:0b:4e:
ef:53:92:ee:69:65:dd:47:21:23:97:ae:77:15:65:
be:ce:53:9d:51:e8:a1:fb:87:52:e5:89:1c:37:80:
e2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:FA:5C:E0:EA:E0:E4:65:29:8C:04:D7:75:CD:55:E9:70:97:FA:3C
X509v3 Authority Key Identifier:
keyid:09:66:E0:5D:15:27:50:DF:AA:DE:5F:AF:79:1B:AD:39:1D:C6:D2:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:de:75:de:d3:77:80:b6:8b:87:03:ce:76:dc:08:54:74:6b:
a7:f5:bd:45:2e:f4:76:57:ee:a5:ce:c4:4f:e7:3d:2b:5a:83:
41:b1:ad:03:4a:f1:db:f7:3f:51:b9:2b:12:8c:99:88:12:d4:
c3:5e:fd:3f:7c:09:14:2e:5b:97:86:71:3d:15:06:30:fa:c5:
ac:99:be:26:67:00:8f:ba:d5:7f:d6:f6:1c:fd:72:b8:f0:fa:
13:f7:62:21:05:88:a6:76:27:ed:c6:ce:55:99:eb:b8:12:20:
8b:0f:69:c6:02:e0:69:03:b6:b2:7a:14:bb:ee:8b:2d:b3:1a:
fe:90:9a:7f:ba:7b:2d:00:77:7a:7c:db:1a:4c:22:13:17:7c:
81:d4:62:17:d9:66:6b:91:b2:f1:ce:6e:cc:93:39:63:91:0b:
ec:20:2c:f4:97:fe:af:b9:84:35:92:ba:bc:cb:58:cc:0f:65:
2d:74:8c:69:13:5a:4b:3d:0f:bb:c9:89:b4:45:12:3a:41:7b:
b4:13:0a:67:0b:cc:5c:2f:d6:2a:5d:c2:73:d0:6e:da:f1:6d:
9c:df:99:90:5f:a1:7d:20:be:90:59:df:00:11:ac:4e:93:f3:
f0:af:51:85:70:b1:10:d3:21:15:3c:7c:6c:b1:90:a8:70:2f:
75:f0:00:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:39:55 2026 by rpki-client