Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
File: rwlQP8rAF2lRWhny3CZX2S_TUN8.mft (raw, json)
Hash identifier: 8TIGMtABpBTDLt79FJtpsNF7B5Acu+la8cKoiiv8Uic=
Subject key identifier: E1:D9:D8:67:2F:3E:6C:FB:1C:B2:C6:1D:A0:C5:5F:54:C5:BC:AE:32
Authority key identifier: AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
Certificate issuer: /CN=af09503fcac01769515a19f2dc2657d92fd350df
Certificate serial: 019E1E351A04DD9BAC3EF24CDFD95539358E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
Manifest number: 1899
Signing time: Tue 12 May 2026 22:00:56 +0000
Manifest this update: Tue 12 May 2026 22:00:56 +0000
Manifest next update: Wed 13 May 2026 22:00:56 +0000
Files and hashes: 1: oPTsHymLci7fd09NsvXBq7O6RPk.roa (hash: LFrx4cQED0mzFhJ5bZEMbk7u2JP9cJJqjo6hpAnRfYc=)
2: rwlQP8rAF2lRWhny3CZX2S_TUN8.crl (hash: usjwP65bzGJgNUOe/RMMUAe2Fo46Hb11vOIlUo7Z+DI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:1a:04:dd:9b:ac:3e:f2:4c:df:d9:55:39:35:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09503fcac01769515a19f2dc2657d92fd350df
Validity
Not Before: May 12 22:00:56 2026 GMT
Not After : May 13 22:00:56 2026 GMT
Subject: CN=e1d9d8672f3e6cfb1cb2c61da0c55f54c5bcae32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d7:33:17:55:2c:8b:10:9b:64:ee:51:90:b3:
3a:d9:db:30:67:0f:04:46:77:fe:3e:69:95:7d:bd:
f4:74:0f:11:58:09:2c:14:33:c1:d9:11:17:01:bb:
ae:cd:31:5a:26:c4:6b:2d:a9:4c:ae:1d:2e:49:61:
79:15:1b:b8:80:14:14:b6:15:da:83:f0:11:9e:7c:
dc:86:ff:70:f5:08:3b:53:2b:cb:a6:a8:e8:6d:9f:
a1:13:28:8b:57:98:4a:d3:a0:f5:99:c2:b0:f7:03:
aa:be:57:fa:b5:73:34:5d:ed:0b:97:83:e8:7e:86:
d4:db:f5:8d:7a:84:18:39:dc:69:6c:e5:d5:d9:de:
40:39:58:fb:ff:6d:cc:86:90:16:66:df:36:e5:25:
49:1a:05:68:4f:25:f7:7d:c0:c3:ba:61:7d:96:2d:
06:ee:b2:da:41:44:67:aa:38:7e:d5:b2:cf:12:d2:
30:b5:3f:86:47:2c:46:89:07:d5:70:bf:ec:09:6c:
19:af:4f:33:d2:12:a4:a7:b2:f2:ca:89:f7:4a:74:
b4:ff:2a:b3:f4:24:f9:47:3a:21:71:e4:50:23:2d:
19:9a:4a:6b:cf:8c:fa:f3:73:e6:01:e0:be:75:6c:
17:b1:35:3e:bc:61:9d:ee:c1:b2:b5:af:fe:45:2e:
1f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D9:D8:67:2F:3E:6C:FB:1C:B2:C6:1D:A0:C5:5F:54:C5:BC:AE:32
X509v3 Authority Key Identifier:
keyid:AF:09:50:3F:CA:C0:17:69:51:5A:19:F2:DC:26:57:D9:2F:D3:50:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwlQP8rAF2lRWhny3CZX2S_TUN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0d1089-d967-43b5-bc30-17502d3df95f/1/rwlQP8rAF2lRWhny3CZX2S_TUN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:d0:4b:a4:f9:fb:ef:20:cb:03:5b:91:75:c9:65:79:40:7a:
81:ce:b4:60:42:f0:37:31:7a:91:dd:e4:13:2b:0d:83:be:1d:
dd:47:ff:65:7f:23:b3:f2:e8:78:45:37:aa:73:3f:f4:96:c9:
6c:ea:69:e2:02:53:31:55:32:6e:39:c6:69:56:14:9e:8e:80:
40:e0:89:de:e9:c6:a4:45:67:13:e3:f2:fa:ff:93:95:e1:17:
f7:3a:eb:e8:8e:cc:07:68:f0:4c:c3:0d:7f:bb:52:15:fa:c3:
b1:72:dd:85:e2:1d:92:7a:df:a3:18:15:8c:00:98:74:d7:5c:
6e:78:6d:3c:fa:e6:ec:c1:ec:d0:b3:0b:f9:41:7d:e3:dc:25:
a7:06:a4:97:7e:0d:27:e3:e9:50:de:9d:32:41:bd:76:8d:10:
40:b3:2d:92:5e:5c:42:08:67:9f:5b:bd:95:59:51:9a:ff:13:
98:0d:c9:fb:b9:67:49:8b:50:75:bb:0d:ef:04:00:55:c8:70:
2c:fb:4e:c4:bf:27:9b:3b:9e:d4:98:ef:ce:f1:a9:46:2a:85:
00:5e:fe:90:7b:9a:d8:3d:64:16:87:2f:b9:e0:38:bc:ae:f2:
94:90:3b:18:a0:0b:5e:91:da:f3:0f:89:31:bf:93:a9:9f:0c:
76:7a:ea:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:22:51 2026 by rpki-client