Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: a83qqtRo06iNIJQPNloNa6p3SzZMOPItWC9alpjfJ7g=
Subject key identifier: D7:57:09:F9:06:C8:87:D5:B6:3B:EC:23:30:03:AA:3D:17:32:0E:EB
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 019CAED9C5C73B78FF5F338B7F62BAAE8F20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: 03F5
Signing time: Mon 02 Mar 2026 14:00:33 +0000
Manifest this update: Mon 02 Mar 2026 14:00:33 +0000
Manifest next update: Tue 03 Mar 2026 14:00:33 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: hqAWP5smlySMjdoB2HCfBukaR089tbe2WkLv22mc/H0=)
2: rk1bcafZ-NbbUdZCLT9lMRUYm-I.roa (hash: 5haE3uSWqoSmkVp2C59/CSPiEElkrF1oivdNjZDrJeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:50:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:d9:c5:c7:3b:78:ff:5f:33:8b:7f:62:ba:ae:8f:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Mar 2 14:00:33 2026 GMT
Not After : Mar 3 14:00:33 2026 GMT
Subject: CN=d75709f906c887d5b63bec233003aa3d17320eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:84:b9:3b:ca:19:94:c3:ca:3a:0b:c8:7b:f6:
d1:cf:b8:e4:51:2f:88:e2:86:80:9c:51:2b:e4:72:
21:ee:2e:1a:8d:c9:f7:c8:6b:ac:56:9a:44:7d:7f:
6e:4d:c8:4a:f9:b5:e6:ec:c2:ef:f6:5b:b7:98:de:
80:fc:b6:3d:ad:ab:8c:79:bc:34:99:f0:f8:6e:cb:
ff:e6:60:87:3e:8e:82:51:bf:83:7f:7e:de:24:dd:
5e:21:68:ce:86:7e:5b:9c:9d:6d:11:ed:17:82:34:
fc:06:1d:2c:0d:40:ee:12:87:e9:3c:29:a6:85:6d:
22:1b:a3:d5:13:23:30:78:4b:27:39:62:f6:8c:3e:
38:22:26:51:77:85:8c:c3:7f:c6:d0:eb:82:44:51:
37:89:a0:7b:16:67:85:e3:d0:fd:42:88:61:15:d9:
6a:47:2f:a0:15:1d:f5:6f:66:47:83:59:e3:d7:91:
95:a6:31:b7:bf:e4:af:4e:a2:5e:81:70:08:c5:73:
c6:df:cb:86:e0:33:f7:fb:f6:e9:23:df:11:ae:e0:
3f:bf:02:4f:4b:c1:fc:fe:da:33:ee:1d:f6:52:a5:
c2:85:4f:f7:c7:6e:58:5f:22:3b:ab:c9:2c:99:a3:
cc:96:e7:9d:a6:b4:2f:66:0d:f8:0e:0b:87:de:0a:
d0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:57:09:F9:06:C8:87:D5:B6:3B:EC:23:30:03:AA:3D:17:32:0E:EB
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:f1:ae:31:b7:4c:a8:51:20:8d:d2:85:4b:ee:18:8b:9a:b6:
3b:01:35:a5:f1:a1:d6:8f:12:d4:26:4d:20:62:cc:bf:6d:97:
6f:8e:e1:70:84:14:eb:3c:aa:6f:f4:0d:21:4d:bf:f3:1c:15:
a4:11:b1:6b:a4:52:34:f1:22:e5:7e:5a:8d:44:8d:9c:53:63:
24:a6:5e:bb:bb:7a:a9:e2:72:65:2f:e2:0c:8d:6d:04:e7:b9:
dc:be:d0:cd:d8:d1:5a:50:96:87:93:bf:05:cc:48:38:fb:15:
7b:60:25:65:00:dc:76:da:33:0f:b5:9b:dd:5d:c4:66:0c:b3:
01:3e:c2:b3:3e:b7:21:83:b7:cd:87:90:95:aa:57:8f:05:0d:
d1:40:01:e4:fa:ff:02:7b:3a:57:43:48:c9:e2:bf:d4:34:28:
b8:a2:11:f5:33:06:50:c7:d5:ca:32:6c:a0:06:e4:c4:96:af:
0b:ab:1d:8b:2a:28:6a:72:18:a6:ed:3c:16:50:55:9b:84:6d:
35:e2:9c:c2:e4:d4:6e:5c:08:b7:04:10:98:ce:b1:fa:ca:3c:
33:ed:97:03:be:b7:d4:79:cf:15:a5:1c:21:fc:2d:3e:66:30:
69:a4:62:9f:b9:2d:99:88:94:1f:3a:38:c9:52:1a:7e:81:cd:
0f:b8:bd:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:05:55 2026 by rpki-client