Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: LYBOtig6aQ4l6dD2G/bvW5I6Vm+S9RZblhmP/jwASME=
Subject key identifier: 41:12:EB:A4:2A:1F:C5:D4:16:71:CC:DC:9B:2A:08:8B:D2:DC:CC:16
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 019EC06D9F5B1356DA51854FB9F19EC7C64F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 18ED
Signing time: Sat 13 Jun 2026 10:01:10 +0000
Manifest this update: Sat 13 Jun 2026 10:01:10 +0000
Manifest next update: Sun 14 Jun 2026 10:01:10 +0000
Files and hashes: 1: oPTsHymLci7fd09NsvXBq7O6RPk.roa (hash: LFrx4cQED0mzFhJ5bZEMbk7u2JP9cJJqjo6hpAnRfYc=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: Jw4w5FCq+MSd7pQ0ybixHo4vRLkkdCBzxuikoRA/yfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:9f:5b:13:56:da:51:85:4f:b9:f1:9e:c7:c6:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: Jun 13 10:01:10 2026 GMT
Not After : Jun 14 10:01:10 2026 GMT
Subject: CN=4112eba42a1fc5d41671ccdc9b2a088bd2dccc16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7d:72:e5:53:23:72:3a:62:d4:bf:cd:8f:bd:
57:38:b3:89:68:ee:2d:21:50:ec:1f:c9:32:2a:b5:
0b:97:ae:ed:68:6b:f5:f4:24:7b:2b:37:6e:f5:c6:
a5:be:e9:2f:c2:bb:b2:a9:5d:88:1b:5f:2d:28:14:
4b:c9:43:5e:0a:32:b4:1f:18:24:6e:0b:6e:15:20:
01:d0:e0:d5:34:a4:6d:87:f7:63:5b:74:3f:7f:cf:
cb:e0:7b:b7:10:b8:2b:6e:9f:3a:9e:5e:84:4a:7a:
44:3c:55:c6:e9:5d:1b:6a:0d:07:05:03:6b:9e:cd:
4e:6f:0c:4e:78:15:b7:e2:eb:08:c6:34:a9:b3:14:
c3:5a:86:fa:99:43:5f:5d:97:20:41:ee:aa:f4:b0:
6a:64:b2:1e:99:7e:54:7a:a7:44:f5:9f:62:e9:c5:
69:40:15:b2:41:1e:04:b7:02:aa:2f:84:56:2c:55:
8a:15:97:1e:5a:b6:c0:3c:42:75:d2:e5:af:7d:62:
2b:40:74:29:30:ff:8d:2c:81:aa:f3:6c:a3:11:95:
ae:ba:c4:03:ea:34:a9:88:fd:42:82:f2:4c:6a:fb:
bf:d7:4f:42:2b:91:c0:bd:28:07:8f:45:63:a0:8d:
99:be:a6:e9:65:96:9f:23:20:98:6e:ca:ae:49:ff:
38:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:12:EB:A4:2A:1F:C5:D4:16:71:CC:DC:9B:2A:08:8B:D2:DC:CC:16
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:33:11:d0:c0:e7:d6:a6:d7:71:01:b7:7e:5a:c9:f8:f9:ac:
67:f3:5a:5e:e8:13:bb:16:22:75:4a:40:3b:bb:62:23:7b:ae:
1c:7f:85:8b:bf:49:c6:84:9f:51:22:2a:d6:c4:a3:a0:67:3c:
1b:de:27:8b:08:e1:2c:96:0f:4e:42:42:a1:8e:f2:df:a6:cd:
8a:be:0e:6c:5a:d2:fc:9a:56:1f:31:b5:14:9e:76:d9:62:1c:
81:81:af:74:a1:e5:46:38:aa:d6:c3:be:7c:c6:1d:42:c9:ff:
dd:40:dc:80:d6:09:9c:42:a5:d0:ba:89:c7:32:f4:91:d2:05:
02:db:fc:9c:38:13:c6:0b:7f:ab:16:98:06:54:46:c9:d4:a3:
bc:3e:48:ee:5c:00:33:57:ff:88:8b:64:3e:ba:81:cb:99:5b:
68:51:78:c6:08:8b:8b:1c:55:2e:38:00:2c:d1:a7:e3:ed:9e:
b1:6d:87:4c:48:49:07:9b:3f:a5:13:65:3c:af:43:26:9d:a7:
50:06:73:55:0d:27:75:8f:ea:cc:c3:d9:07:aa:0a:bf:4e:68:
79:79:92:03:f4:66:3c:33:25:d9:cd:6e:e6:4e:9c:ff:65:aa:
8e:89:ca:33:9c:b4:12:2e:cf:99:47:9d:ae:83:98:ba:8c:12:
d6:60:86:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:33:11 2026 by rpki-client