Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
File: cdiwl1czMSbftYNIDqji09NGwI0.mft (raw, json)
Hash identifier: ff0F857rY+1x5beA0KzVV0wqz/Zt7wDKaulwEpeui8s=
Subject key identifier: CC:F4:9A:4A:3A:56:54:94:05:20:69:EE:5B:97:43:33:DA:2D:30:42
Authority key identifier: 71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D
Certificate issuer: /CN=71d8b09757333126dfb583480ea8e2d3d346c08d
Certificate serial: 019D26CCAA3A9B37E245FC8C977189E7DB17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
Manifest number: 019E
Signing time: Wed 25 Mar 2026 21:00:40 +0000
Manifest this update: Wed 25 Mar 2026 21:00:40 +0000
Manifest next update: Thu 26 Mar 2026 21:00:40 +0000
Files and hashes: 1: cdiwl1czMSbftYNIDqji09NGwI0.crl (hash: IO9iACWaHzlCdgEJ08ccsGz/GfKOET0H14j4Ixe/xUc=)
2: d7QLV60EzdcK6Z9SHb-OI9Vui7M.roa (hash: rchiT/bvXuEanUa+M3WmCKgTEc1BUzo1gca2cFJPRLs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:aa:3a:9b:37:e2:45:fc:8c:97:71:89:e7:db:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d8b09757333126dfb583480ea8e2d3d346c08d
Validity
Not Before: Mar 25 21:00:40 2026 GMT
Not After : Mar 26 21:00:40 2026 GMT
Subject: CN=ccf49a4a3a565494052069ee5b974333da2d3042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ea:fe:37:2f:52:e9:2f:29:09:e2:27:fd:ee:
95:82:57:a5:9c:a0:59:ef:1e:87:03:16:d9:da:32:
2f:02:bf:73:b5:4e:9f:8d:45:eb:9a:b8:6f:9b:83:
fb:5a:98:a3:5b:88:48:f2:c7:ff:41:35:a0:79:7b:
9d:18:a5:34:d6:6c:a2:27:c7:a1:22:11:da:e3:3c:
63:c3:ea:55:de:0f:47:a8:ac:30:0f:c0:72:59:92:
d9:b8:33:0b:c6:a8:5f:a7:1d:bf:d6:5a:ce:69:b5:
9e:9a:c5:60:64:15:d4:38:ae:77:fc:60:13:8b:65:
99:0d:d8:30:1b:d5:a9:b9:dd:12:d1:b5:0f:16:11:
f9:9b:17:69:07:fa:38:11:a9:17:22:1b:1b:45:b9:
28:8b:2f:e0:c8:61:92:88:90:c5:58:0f:98:3f:0a:
55:ed:11:e1:19:17:20:90:9f:3c:67:04:b5:53:1d:
f8:71:06:9f:5a:e7:34:26:58:2c:40:e1:0a:a4:74:
7b:13:d1:fc:dc:fb:16:fb:ed:5e:51:dc:8e:42:c7:
73:d8:88:cb:5b:77:4e:af:6f:7e:e9:29:ee:e6:c6:
a4:c6:6f:e9:0b:09:b2:d8:4c:00:50:92:cb:4a:16:
21:bb:cd:18:a0:85:37:ed:33:40:b9:e2:4f:2c:28:
db:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F4:9A:4A:3A:56:54:94:05:20:69:EE:5B:97:43:33:DA:2D:30:42
X509v3 Authority Key Identifier:
keyid:71:D8:B0:97:57:33:31:26:DF:B5:83:48:0E:A8:E2:D3:D3:46:C0:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdiwl1czMSbftYNIDqji09NGwI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/6b9626-fb1a-445e-b95a-b002f35be739/1/cdiwl1czMSbftYNIDqji09NGwI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:1f:aa:42:de:e0:c3:2a:15:ec:56:78:9a:84:53:f5:b7:55:
7e:d3:c6:b4:a3:89:3b:97:6d:85:ae:9b:11:66:7f:37:7c:7f:
e5:7a:ae:fb:4b:e7:8e:fc:7b:29:a9:ca:7b:53:7e:77:07:80:
f1:59:b0:4b:21:68:7c:70:c6:4a:25:7f:a2:40:0b:db:15:eb:
53:c7:ea:0c:96:06:b5:97:33:b1:26:d6:8c:83:6f:f0:de:25:
e9:80:d7:05:47:37:3e:66:d5:82:38:24:3b:c7:4e:ab:5c:84:
d8:fa:da:b4:2b:7b:5f:b1:5b:3d:3c:27:42:bf:59:3b:16:21:
63:76:6e:ee:56:5d:40:b2:b7:fe:29:06:28:30:28:f1:9d:2b:
2b:0e:91:57:a0:0a:9d:26:8c:c3:64:e2:17:7c:b1:21:31:25:
91:fd:ad:3d:af:85:aa:a4:ef:5e:29:82:ae:13:a9:78:c5:f3:
a4:f1:79:de:3e:8f:75:b6:e9:1b:6b:ab:b8:3a:c2:0d:8a:af:
67:21:a3:aa:47:16:11:2e:72:39:fd:ed:69:67:69:1a:c2:aa:
46:46:ae:96:5a:8c:48:e8:64:88:6c:4e:1c:cb:9a:06:ca:f8:
f5:9e:18:43:65:66:f4:41:6f:b6:07:8e:58:8e:fe:88:af:f2:
ad:9f:75:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:29:54 2026 by rpki-client