Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: uA+A+mavfJ/df92aESWTGNQp4PLjjwBqFOP09HDqj2E=
Subject key identifier: 88:6B:BA:B5:09:13:C8:46:7D:31:3C:C1:59:78:81:77:41:A0:50:41
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 019D98F452B086BC3BDA35BEBD3600A6382C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 1854
Signing time: Fri 17 Apr 2026 01:00:41 +0000
Manifest this update: Fri 17 Apr 2026 01:00:41 +0000
Manifest next update: Sat 18 Apr 2026 01:00:41 +0000
Files and hashes: 1: oPTsHymLci7fd09NsvXBq7O6RPk.roa (hash: LFrx4cQED0mzFhJ5bZEMbk7u2JP9cJJqjo6hpAnRfYc=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: ty/4OX3SUeRzfdfAum9IWQwSxU5bG+VmJ5Tv7TkzT4s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:52:b0:86:bc:3b:da:35:be:bd:36:00:a6:38:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: Apr 17 01:00:41 2026 GMT
Not After : Apr 18 01:00:41 2026 GMT
Subject: CN=886bbab50913c8467d313cc15978817741a05041
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:06:07:5b:6f:f0:94:d9:ab:00:83:53:28:25:
6a:a6:37:60:5a:0d:ec:90:9a:1b:e1:a2:c5:8b:64:
e5:02:e6:8f:63:34:41:86:65:ef:5f:a9:f8:52:b6:
cd:8b:9e:f3:00:50:fe:13:dc:44:35:15:bb:03:05:
60:dd:80:1e:ec:f6:fa:9b:32:cd:f7:6e:e2:e9:8f:
05:fa:c0:6e:51:71:35:f3:79:c7:00:56:83:b6:fd:
43:f7:e0:cd:f2:24:f9:9b:fb:ab:02:63:11:31:03:
9e:aa:1e:84:e7:49:26:f5:43:e8:57:9c:cc:61:68:
cc:14:8c:98:ad:dd:c2:e8:1a:d7:bc:fb:f8:b2:46:
04:15:52:9f:62:f7:cf:b8:d0:20:27:03:f9:4b:14:
f5:fa:ec:76:71:72:f2:f1:3c:28:9c:44:66:5c:5b:
5c:eb:7d:36:e2:14:af:25:a4:cf:17:48:e2:56:82:
cc:b8:bb:86:86:22:a9:b8:6e:86:d5:56:a8:38:7f:
6e:83:3d:00:8f:5a:39:40:2f:44:e6:56:be:66:c1:
57:de:23:59:9c:c3:96:89:93:32:ec:0d:4b:1e:fd:
ea:be:76:7d:04:bd:e9:f6:62:96:80:fe:5f:c4:81:
a7:d1:ac:87:9a:c8:8b:67:cf:f9:33:53:ca:06:41:
98:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:6B:BA:B5:09:13:C8:46:7D:31:3C:C1:59:78:81:77:41:A0:50:41
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:ea:19:73:bb:6c:16:e5:e7:94:00:f5:25:cc:28:67:6f:bd:
d0:d8:65:51:28:d3:e2:68:e8:e9:46:40:fb:8a:be:70:cc:44:
5d:79:a7:54:1f:18:48:e8:8c:b4:98:80:46:9f:b3:eb:da:f7:
ca:de:27:54:47:3a:7f:d2:fe:a6:0e:8f:87:c6:09:55:d2:eb:
57:12:6e:e6:37:6d:b6:fb:0f:24:55:c9:36:f5:45:85:65:70:
2b:e6:a9:2e:b5:20:26:7b:66:cd:62:c6:06:19:4d:93:a4:1a:
2b:f5:52:01:86:da:47:60:dc:15:56:0d:75:87:e5:22:d8:95:
ef:19:49:09:27:44:b3:e7:1c:73:e2:7a:91:73:ce:f3:a9:3e:
a6:c8:21:d0:dc:dd:37:db:06:4d:0e:4e:6f:2c:69:1e:91:87:
09:90:d4:1f:8d:4f:69:ab:4b:4f:7a:85:d7:d7:c2:ea:ac:0f:
dc:43:c0:02:c1:0c:59:22:d2:b5:57:f9:9e:c4:23:a3:73:c9:
93:7d:9c:75:60:c3:65:22:b3:d8:5a:a2:7a:bc:3c:eb:cd:33:
78:39:6d:e5:99:82:ed:e4:f9:1d:03:61:51:d8:7d:41:de:60:
5f:3b:38:fe:10:da:c2:38:38:ff:39:f7:08:4e:23:2c:0b:13:
15:38:dc:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:04:00 2026 by rpki-client