Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
File: rwMNO0xYnpSj72Hd1UAajz_3m20.mft (raw, json)
Hash identifier: XbyWr6zxBPSK8a08H+nplbUnqWTOBEYdzW3FYPYITD4=
Subject key identifier: 4D:38:7C:6F:23:E6:61:ED:D5:1D:91:66:74:EE:01:27:09:83:75:DB
Authority key identifier: AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
Certificate issuer: /CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Certificate serial: 019D99630ECE2EDED7DAA97D1DA7F235597A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
Manifest number: 06F8
Signing time: Fri 17 Apr 2026 03:01:38 +0000
Manifest this update: Fri 17 Apr 2026 03:01:38 +0000
Manifest next update: Sat 18 Apr 2026 03:01:38 +0000
Files and hashes: 1: rwMNO0xYnpSj72Hd1UAajz_3m20.crl (hash: RTRqLN22JNQLvDT9pRO20Wl99BzWlqPi48tk9lVYNK0=)
2: sKXut25F8mstcMlebmCBZ3ash14.roa (hash: WdcSiIGfJAIq+j/hEE113/iMWyToETbAb54DBmpGZ9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:63:0e:ce:2e:de:d7:da:a9:7d:1d:a7:f2:35:59:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Validity
Not Before: Apr 17 03:01:38 2026 GMT
Not After : Apr 18 03:01:38 2026 GMT
Subject: CN=4d387c6f23e661edd51d916674ee0127098375db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:85:94:75:c9:19:7c:93:25:88:9c:48:f6:ff:
b0:67:50:50:69:ea:3f:5b:27:1b:c4:0f:de:e9:66:
f9:39:1b:b5:63:f9:0a:09:bf:67:31:6d:f9:6d:12:
4b:45:6e:97:7e:1e:3e:0b:f4:3f:7a:fb:68:7d:90:
b5:9d:74:48:dc:ed:9e:81:4b:02:8d:bb:b0:c6:16:
1f:82:24:06:8b:da:5f:75:50:10:af:00:84:2a:c8:
da:e8:e7:38:05:9a:00:fc:6e:a6:4c:69:63:ff:4f:
6c:b3:0a:ec:61:81:d3:f1:03:61:22:5c:7e:e0:9e:
e5:e8:2b:54:9e:73:e3:4a:9d:59:dc:1d:6c:49:13:
8d:c2:3f:fc:6c:a3:53:91:68:96:8c:55:72:8a:8b:
26:b9:e7:67:63:3e:61:5f:ca:c7:b2:89:8f:02:33:
94:2d:3e:da:2b:e5:bb:01:d1:d3:5f:3b:6b:22:7b:
28:46:77:f0:eb:f5:56:4f:45:49:f6:8b:21:71:1f:
20:16:e7:4c:74:ec:ac:98:0b:ad:af:0a:49:96:e1:
ff:a5:50:e6:27:96:4e:84:4b:ca:89:e5:ce:9e:f7:
b9:fd:68:3f:8b:fe:61:e7:67:75:63:b0:9a:ab:d2:
c7:36:c7:fd:cc:eb:15:26:64:6a:49:95:c8:d5:71:
4b:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:38:7C:6F:23:E6:61:ED:D5:1D:91:66:74:EE:01:27:09:83:75:DB
X509v3 Authority Key Identifier:
keyid:AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:99:aa:01:be:54:f5:86:de:1e:1e:63:8f:29:e7:65:63:3d:
e0:c0:a2:29:23:1b:b8:d6:ea:7d:6e:d7:da:f4:70:e9:3f:98:
e5:d2:7d:05:57:a2:7d:1f:9e:87:4c:de:7c:6e:ec:81:83:9b:
29:bd:a4:37:b8:cc:c4:b8:93:5b:a5:33:b7:53:b7:f0:e4:7d:
d2:b4:42:bd:56:f2:a9:59:b4:88:9e:63:95:e2:4a:1b:52:c6:
37:31:02:30:9d:2b:ca:a3:4d:cf:3a:52:7d:2d:f9:47:89:b5:
7a:b9:f3:92:42:b0:90:7b:7d:eb:85:41:f1:88:0b:80:7a:b2:
5f:6a:99:2e:05:fe:f6:73:d7:e2:7e:2e:97:15:04:29:de:d7:
a7:8c:2d:5e:e0:97:f6:29:7f:86:d9:48:33:32:7c:9a:bc:83:
fb:b4:f7:bb:e8:f5:0d:67:48:30:88:6d:db:19:31:d0:2f:fd:
71:9e:5c:f0:8d:9d:bd:f9:cb:7b:b9:98:92:fa:ed:a6:32:9b:
e8:d7:e0:ad:c7:b7:60:f4:94:67:f2:c7:e4:1b:92:1f:57:9a:
67:df:55:29:ef:55:ea:fc:6c:ea:cc:0f:51:19:8e:a4:75:01:
a9:d9:4f:b6:43:2d:0a:24:f0:f2:49:1d:f8:e8:2d:b4:38:e4:
24:88:04:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:59:09 2026 by rpki-client