Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: h/3nCkTuWY3X1uYZ819qy6617OM72V9JVHRsKvi6WHs=
Subject key identifier: 84:DD:6C:A2:1E:6D:A1:DF:A5:14:2F:08:93:CE:99:9D:8B:81:E8:1C
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 019D329A2050285F70F44763D5F35D7EDB93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 181F
Signing time: Sat 28 Mar 2026 04:00:54 +0000
Manifest this update: Sat 28 Mar 2026 04:00:54 +0000
Manifest next update: Sun 29 Mar 2026 04:00:54 +0000
Files and hashes: 1: oPTsHymLci7fd09NsvXBq7O6RPk.roa (hash: LFrx4cQED0mzFhJ5bZEMbk7u2JP9cJJqjo6hpAnRfYc=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: dsT0s+ujJ93/urYIawDu1Ef2Vn3GYgWVoJP0+EDLj04=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:9a:20:50:28:5f:70:f4:47:63:d5:f3:5d:7e:db:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: Mar 28 04:00:54 2026 GMT
Not After : Mar 29 04:00:54 2026 GMT
Subject: CN=84dd6ca21e6da1dfa5142f0893ce999d8b81e81c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:89:a8:a7:75:fe:4f:11:4a:60:ba:69:20:b6:
f6:f0:b2:37:d8:cb:95:d2:f1:3b:e7:5c:ab:35:90:
7f:88:28:b4:49:e2:1a:58:08:07:30:ad:07:b7:da:
f8:c2:57:ba:ac:1c:15:b7:85:a1:fd:ec:fe:9d:3c:
9a:57:46:ba:31:ce:7f:60:81:d2:49:ab:1d:d6:4d:
84:c4:5a:31:0d:fe:a3:7a:17:aa:1a:61:6f:01:99:
8c:46:48:ee:fc:96:b7:a8:16:65:c5:7f:54:75:72:
c9:5c:66:1d:5b:5b:0b:cc:f8:7d:1d:6b:a7:4e:93:
fc:a6:2b:98:b3:99:e3:10:77:32:57:82:2c:b1:4f:
6b:10:18:95:a7:96:2f:d6:e7:e7:fc:4c:82:35:ac:
79:22:0f:54:53:25:ba:1c:8f:b3:6c:28:8c:c2:6d:
c9:9c:41:82:be:ff:07:b8:07:75:d7:1a:de:d5:28:
d5:99:52:fa:9d:d6:07:48:3c:ae:d9:5a:49:4a:6a:
77:b0:ee:97:ba:b8:ec:34:45:fd:3a:1d:32:f9:35:
a6:7e:f6:a2:93:9f:4a:7e:27:bb:26:21:2c:36:97:
9c:2a:cd:de:38:2f:a8:b8:3a:ee:c3:69:15:63:06:
8f:7e:0f:54:9a:29:6a:b2:ca:83:86:7a:41:63:43:
26:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:DD:6C:A2:1E:6D:A1:DF:A5:14:2F:08:93:CE:99:9D:8B:81:E8:1C
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:23:37:66:5f:79:77:05:c9:3e:a1:63:02:b3:c5:db:0e:55:
45:d1:e3:21:c6:77:00:20:e3:73:9a:b9:67:80:e2:1b:57:f8:
34:04:70:37:de:39:b2:25:de:07:0b:1e:c4:17:36:80:1e:00:
7f:c8:fa:75:58:53:eb:b0:09:28:25:8c:61:4c:20:db:2b:c4:
3e:53:bb:1c:30:8d:94:1a:70:73:b7:22:63:1a:05:fd:7e:2c:
87:32:ca:5d:8c:92:b7:5a:8c:c4:bc:aa:65:c1:17:84:64:08:
a5:f3:d6:47:e1:3e:40:1d:00:3c:5a:cf:06:f9:9d:ee:9a:ac:
43:17:2b:e6:6f:2e:89:b4:f1:0b:2a:6e:66:69:fb:66:3f:56:
a2:c1:0b:76:54:a1:97:7a:1e:ca:e4:d7:98:c4:a1:56:f6:19:
68:6e:a4:78:a7:dc:ec:6e:bd:89:3e:47:e3:b1:15:e3:fe:24:
4b:15:66:32:cf:88:33:38:75:ed:d6:b7:aa:71:de:37:9c:ce:
6f:d1:6a:e4:7c:61:f9:16:47:0e:6e:e2:db:bb:b1:52:c9:f2:
18:8d:e7:ce:c3:f8:ee:38:7f:a7:c0:53:68:80:96:50:0d:b6:
fa:f4:97:9f:28:5d:d0:2f:a1:ed:7e:17:74:83:cd:ab:8c:a9:
f2:66:01:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:46:46 2026 by rpki-client