
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: G/xzIM5VeJFYoTu8MuWdU/HP02R96gmpnKRH7ftk8VM=
Subject key identifier: 05:3F:4E:0D:54:E8:D4:A1:07:CB:7C:E6:37:87:C8:DD:B1:0A:8E:BA
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 019CAD59C2BC83EEBEABD322C41410126046
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 17DA
Signing time: Mon 02 Mar 2026 07:01:06 +0000
Manifest this update: Mon 02 Mar 2026 07:01:06 +0000
Manifest next update: Tue 03 Mar 2026 07:01:06 +0000
Files and hashes: 1: oPTsHymLci7fd09NsvXBq7O6RPk.roa (hash: LFrx4cQED0mzFhJ5bZEMbk7u2JP9cJJqjo6hpAnRfYc=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: yDyH5Ey5bQSL9W37Cb3I6P+QPkWBxeqv58erZ+YnCAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:c2:bc:83:ee:be:ab:d3:22:c4:14:10:12:60:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: Mar 2 07:01:06 2026 GMT
Not After : Mar 3 07:01:06 2026 GMT
Subject: CN=053f4e0d54e8d4a107cb7ce63787c8ddb10a8eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:93:9e:a5:7f:88:63:2e:30:36:ea:4e:83:83:
21:7c:c9:86:93:82:b2:85:b4:63:ca:1c:05:25:83:
38:42:6f:79:ed:46:e0:a8:53:fd:14:65:5d:84:c6:
7b:82:3b:f1:cb:f9:bf:77:5c:3e:76:b3:60:f0:9a:
be:19:f9:27:10:ea:25:42:54:d2:96:58:b6:97:92:
fa:b5:a4:13:d5:0c:a1:3d:04:e6:8a:2d:53:2f:85:
63:74:92:d4:59:84:d4:1d:84:83:fa:f5:9e:7d:ee:
74:01:f8:00:59:48:fb:02:7d:30:97:ea:b7:70:42:
40:0c:62:b2:19:73:d4:a3:cd:93:cb:30:f0:13:ca:
a6:bb:11:83:04:c5:3d:ca:f4:50:a8:d7:0f:8e:54:
e8:b0:c3:db:00:43:73:de:fd:89:61:d9:9d:a6:1d:
61:d4:31:8c:17:ed:b8:e6:f0:22:86:6b:2a:6b:61:
53:a1:c2:32:97:c6:cc:90:23:12:d4:5b:fd:f3:ca:
fb:ec:10:6d:60:43:79:16:36:f5:0f:dd:21:e4:bf:
4f:f2:b1:c0:87:a6:db:15:9f:27:16:7e:de:13:8a:
86:de:e1:57:b5:7c:46:fd:93:eb:e8:ce:5a:21:1a:
da:a9:13:56:64:a5:82:9d:5a:41:35:bf:99:a2:f1:
e9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:3F:4E:0D:54:E8:D4:A1:07:CB:7C:E6:37:87:C8:DD:B1:0A:8E:BA
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:31:82:c2:26:fb:88:35:e7:55:9a:b5:90:43:bf:5f:27:9c:
c2:ea:b5:22:94:f5:4c:6e:63:9d:b1:55:97:cb:86:38:a7:ab:
c1:f8:3f:df:a8:2a:a4:24:b7:cb:a1:90:5d:73:dd:e7:66:e6:
eb:0e:cf:b5:54:ca:7d:77:e4:1e:b3:f2:6c:dd:4e:5b:bf:d4:
2f:c8:df:7f:f0:08:ca:4a:d8:4b:8b:7a:b2:d6:05:48:5b:73:
7e:84:68:59:0b:50:a0:51:59:d6:be:93:dc:e1:a7:cb:ae:e4:
35:9c:b4:62:af:77:4e:d8:3c:77:f7:4a:59:8f:56:1e:08:99:
d5:b3:7a:a7:46:63:1b:11:ef:d6:03:09:de:fa:00:04:92:ce:
e5:7f:e1:ba:24:28:65:ed:39:b6:62:5d:3d:de:6f:c6:a9:45:
05:aa:47:bd:47:d1:5b:28:a2:70:61:fe:6e:40:0b:00:55:55:
5b:d1:77:42:aa:0a:24:85:64:a5:5e:56:96:0b:4f:ff:b1:84:
35:96:3e:ac:dc:1d:e9:ba:b0:e2:00:18:ef:bb:cf:c9:5f:9c:
ed:61:67:d0:cc:bd:a6:ef:3b:5e:a4:73:db:ba:85:5d:98:c2:
3e:dd:71:cd:26:81:6e:1e:78:f2:02:ad:00:16:6c:19:48:4b:
89:bb:c4:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytWcK8g+6+q9MixBQQEmBGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMDk1MDNmY2FjMDE3Njk1MTVhMTlmMmRjMjY1N2Q5MmZk
MzUwZGYwHhcNMjYwMzAyMDcwMTA2WhcNMjYwMzAzMDcwMTA2WjAzMTEwLwYDVQQD
EygwNTNmNGUwZDU0ZThkNGExMDdjYjdjZTYzNzg3YzhkZGIxMGE4ZWJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpOepX+IYy4wNupOg4MhfMmGk4Ky
hbRjyhwFJYM4Qm957UbgqFP9FGVdhMZ7gjvxy/m/d1w+drNg8Jq+GfknEOolQlTS
lli2l5L6taQT1QyhPQTmii1TL4VjdJLUWYTUHYSD+vWefe50AfgAWUj7An0wl+q3
cEJADGKyGXPUo82TyzDwE8qmuxGDBMU9yvRQqNcPjlTosMPbAENz3v2JYdmdph1h
1DGMF+245vAihmsqa2FTocIyl8bMkCMS1Fv988r77BBtYEN5Fjb1D90h5L9P8rHA
h6bbFZ8nFn7eE4qG3uFXtXxG/ZPr6M5aIRraqRNWZKWCnVpBNb+ZovHpnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAU/Tg1U6NShB8t85jeHyN2xCo66MB8GA1UdIwQY
MBaAFK8JUD/KwBdpUVoZ8twmV9kv01DfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcndsUVA4ckFGMmxSV2hueTNDWlgyU19UVU44LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wZDEwODktZDk2Ny00M2I1LWJjMzAt
MTc1MDJkM2RmOTVmLzEvcndsUVA4ckFGMmxSV2hueTNDWlgyU19UVU44Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8wZDEwODktZDk2Ny00M2I1LWJjMzAtMTc1MDJkM2RmOTVm
LzEvcndsUVA4ckFGMmxSV2hueTNDWlgyU19UVU44LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAITGCwib7
iDXnVZq1kEO/Xyecwuq1IpT1TG5jnbFVl8uGOKerwfg/36gqpCS3y6GQXXPd52bm
6w7PtVTKfXfkHrPybN1OW7/UL8jff/AIykrYS4t6stYFSFtzfoRoWQtQoFFZ1r6T
3OGny67kNZy0Yq93Ttg8d/dKWY9WHgiZ1bN6p0ZjGxHv1gMJ3voABJLO5X/huiQo
Ze05tmJdPd5vxqlFBapHvUfRWyiicGH+bkALAFVVW9F3QqoKJIVkpV5WlgtP/7GE
NZY+rNwd6bqw4gAY77vPyV+c7WFn0My9pu87XqRz27qFXZjCPt1xzSaBbh548gKt
ABZsGUhLibvEBA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 11:17:28 2026 by rpki-client