Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: /8yRMyg9sh61AajeLUcdQLwYaK/0MLK3nge+/MCDxPY=
Subject key identifier: 2B:FC:BE:21:68:D1:F7:B9:BD:8E:EB:6C:B2:D7:4E:C2:3C:A3:D4:E5
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 019ED34F8CE9C5606026247DCF2DD7D99195
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: 0511
Signing time: Wed 17 Jun 2026 02:01:06 +0000
Manifest this update: Wed 17 Jun 2026 02:01:06 +0000
Manifest next update: Thu 18 Jun 2026 02:01:06 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: LwulHBk1RIOrgRB6d1NN9ex1Wpu3+VltGw+EXo5AWSo=)
2: rk1bcafZ-NbbUdZCLT9lMRUYm-I.roa (hash: 5haE3uSWqoSmkVp2C59/CSPiEElkrF1oivdNjZDrJeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 02:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d3:4f:8c:e9:c5:60:60:26:24:7d:cf:2d:d7:d9:91:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Jun 17 02:01:06 2026 GMT
Not After : Jun 18 02:01:06 2026 GMT
Subject: CN=2bfcbe2168d1f7b9bd8eeb6cb2d74ec23ca3d4e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:6a:5b:b4:3e:33:fe:8d:85:07:26:bd:f6:5e:
3d:86:f0:ce:a9:5c:dd:7f:da:df:6c:99:27:65:c9:
5b:d5:81:44:53:53:28:8a:00:b2:76:f3:7e:89:84:
f3:69:30:88:d3:06:dc:e1:57:ae:18:46:0f:ad:01:
c9:77:23:f3:48:19:55:65:cb:f7:5a:fd:7c:17:bc:
42:5d:e1:9d:c3:c1:ba:43:cd:ce:52:63:9e:e0:0f:
83:68:eb:56:ef:1f:1b:e9:ec:e6:61:fa:15:53:08:
79:fc:4b:37:8d:2f:a5:40:30:8d:c9:ab:7b:ee:ae:
f2:92:dc:4e:31:70:23:ec:19:0e:ea:12:a1:ef:27:
92:3e:c3:a0:c1:cb:8f:95:38:a3:67:70:f7:59:a2:
a1:2a:ae:69:f2:b5:48:b9:cb:da:85:9b:c0:f8:ff:
a4:78:65:b6:4a:17:7c:bf:92:c1:93:28:e8:ab:78:
b7:14:8c:04:ea:3a:8a:16:aa:53:b7:fe:82:76:56:
35:05:bc:a9:99:f2:76:26:a3:f7:8d:e9:19:c1:e6:
1b:c0:c3:43:73:7b:57:14:e2:cb:c0:10:e0:ad:07:
ab:02:d9:5d:b8:a6:a0:c9:06:94:ad:39:e0:8d:91:
4f:e7:7a:bd:1c:6f:84:de:d1:09:f1:98:64:42:a9:
2b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:FC:BE:21:68:D1:F7:B9:BD:8E:EB:6C:B2:D7:4E:C2:3C:A3:D4:E5
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:02:31:a7:e7:a5:58:ac:4c:84:05:c2:a3:6f:1c:ac:cc:12:
80:d9:88:4a:c9:0b:d6:5e:63:a5:a2:ed:76:0f:85:e9:9a:cf:
d5:45:39:b6:7c:8d:c7:7c:90:01:9e:3b:75:8d:24:32:0a:38:
de:fd:9e:11:5c:85:5f:27:97:4c:e4:1c:8b:22:21:27:d7:64:
41:ab:d1:b2:98:72:30:e8:6b:47:52:a1:14:31:38:a2:a8:92:
7a:80:ab:a0:ce:f2:9b:ab:aa:89:46:73:06:a6:2a:8f:fc:4e:
76:4b:48:99:6c:9e:da:3e:1a:70:fa:78:fd:f3:2a:8c:5f:b6:
71:be:2e:bd:59:9b:18:f9:d2:6a:92:c1:c8:c9:d0:03:ca:50:
42:96:61:d2:11:dc:91:0d:f2:9c:e9:16:92:05:0a:ae:91:6e:
8b:25:14:de:14:c7:e3:41:a2:17:89:4c:18:f1:d7:39:ac:13:
cc:16:66:df:ee:1f:3f:ad:31:94:44:71:a6:c7:0f:a3:50:c2:
2f:b8:59:26:c6:5c:91:67:45:f0:36:bf:ae:64:64:b3:d6:56:
e2:7e:bf:69:40:1a:1f:95:95:88:bf:00:77:15:f9:f3:4b:5d:
5a:c5:6a:1a:d0:40:b2:ff:53:30:7f:43:10:b1:49:8e:8d:46:
86:ba:ee:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7TT4zpxWBgJiR9zy3X2ZGVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NjljYjIxNTYzZTI2ZWRiNmFmYjIwZDFkOTJlODkzYThk
ZGI4MWQwHhcNMjYwNjE3MDIwMTA2WhcNMjYwNjE4MDIwMTA2WjAzMTEwLwYDVQQD
EygyYmZjYmUyMTY4ZDFmN2I5YmQ4ZWViNmNiMmQ3NGVjMjNjYTNkNGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWpbtD4z/o2FBya99l49hvDOqVzd
f9rfbJknZclb1YFEU1MoigCydvN+iYTzaTCI0wbc4VeuGEYPrQHJdyPzSBlVZcv3
Wv18F7xCXeGdw8G6Q83OUmOe4A+DaOtW7x8b6ezmYfoVUwh5/Es3jS+lQDCNyat7
7q7yktxOMXAj7BkO6hKh7yeSPsOgwcuPlTijZ3D3WaKhKq5p8rVIucvahZvA+P+k
eGW2Shd8v5LBkyjoq3i3FIwE6jqKFqpTt/6CdlY1BbypmfJ2JqP3jekZweYbwMND
c3tXFOLLwBDgrQerAtlduKagyQaUrTngjZFP53q9HG+E3tEJ8ZhkQqkr0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCv8viFo0fe5vY7rbLLXTsI8o9TlMB8GA1UdIwQY
MBaAFAlpyyFWPibttq+yDR2S6JOo3bgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQt
MzYwMGQwMmE2ZjBlLzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQtMzYwMGQwMmE2ZjBl
LzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQQIxp+el
WKxMhAXCo28crMwSgNmISskL1l5jpaLtdg+F6ZrP1UU5tnyNx3yQAZ47dY0kMgo4
3v2eEVyFXyeXTOQciyIhJ9dkQavRsphyMOhrR1KhFDE4oqiSeoCroM7ym6uqiUZz
BqYqj/xOdktImWye2j4acPp4/fMqjF+2cb4uvVmbGPnSapLByMnQA8pQQpZh0hHc
kQ3ynOkWkgUKrpFuiyUU3hTH40GiF4lMGPHXOawTzBZm3+4fP60xlERxpscPo1DC
L7hZJsZckWdF8Da/rmRks9ZW4n6/aUAaH5WViL8AdxX580tdWsVqGtBAsv9TMH9D
ELFJjo1Ghrruxg==
-----END CERTIFICATE-----
Generated at Wed Jun 17 13:01:06 2026 by rpki-client