Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
File: cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft (raw, json)
Hash identifier: zlrkkIIzgSXdDZRpOON5rNE0jF/mXHoxyKAR5cG7/Wo=
Subject key identifier: 42:70:7A:14:2A:04:70:FC:D9:B7:3F:1D:E2:91:94:2A:72:04:F5:1B
Authority key identifier: 73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2
Certificate issuer: /CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2
Certificate serial: 019D27E05E6F3140D644972353743444FE1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
Manifest number: 0521
Signing time: Thu 26 Mar 2026 02:01:48 +0000
Manifest this update: Thu 26 Mar 2026 02:01:48 +0000
Manifest next update: Fri 27 Mar 2026 02:01:48 +0000
Files and hashes: 1: cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl (hash: HhRRhZ62FdXXZY+LAfwBnN3m5weLar5N4sR5Z469w38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:5e:6f:31:40:d6:44:97:23:53:74:34:44:fe:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=730cbc47a6a30f23c5d84c180b14881d20ba0ac2
Validity
Not Before: Mar 26 02:01:48 2026 GMT
Not After : Mar 27 02:01:48 2026 GMT
Subject: CN=42707a142a0470fcd9b73f1de291942a7204f51b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e2:b3:66:ce:d4:ad:87:38:b3:fc:26:30:28:
d3:de:46:be:13:d2:d2:f6:61:07:09:82:02:13:7a:
7e:2b:b3:9a:4f:c6:1f:e2:8c:74:c3:fe:fb:8c:f4:
03:92:14:b1:37:89:2a:e2:a7:7b:0f:c9:ad:2d:c5:
c9:59:03:ab:55:20:0e:f2:bd:62:1c:59:d9:03:d6:
71:38:16:3e:15:7c:80:be:6a:c5:bf:c7:1e:0b:42:
62:a1:58:26:54:5d:8f:fd:92:f9:d3:0b:7d:42:cd:
c3:44:58:13:8e:4f:2f:eb:26:f9:bb:c5:00:87:86:
36:37:12:1b:ac:70:96:dd:e4:f4:01:c2:91:43:c1:
b7:a8:a4:74:c0:bf:a2:eb:c8:4f:fb:18:71:ec:b8:
5b:d0:d1:c5:94:d2:c2:c8:a6:22:f7:4c:81:88:ca:
fb:28:52:3e:dd:73:61:c7:a7:24:6d:9a:45:49:9a:
b4:b4:20:28:3d:fc:8f:90:ee:5a:fc:cf:3a:5c:d5:
1a:43:57:6a:21:ab:a3:d0:7c:a7:31:09:a9:68:ec:
55:32:f1:fe:f3:7e:fa:fe:ae:65:26:ef:fd:81:4e:
97:96:68:6b:16:19:a7:ed:a1:99:f4:bc:a0:3d:12:
17:3a:ec:e5:42:c5:6c:db:8d:6f:31:6c:2e:f8:5e:
24:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:70:7A:14:2A:04:70:FC:D9:B7:3F:1D:E2:91:94:2A:72:04:F5:1B
X509v3 Authority Key Identifier:
keyid:73:0C:BC:47:A6:A3:0F:23:C5:D8:4C:18:0B:14:88:1D:20:BA:0A:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwy8R6ajDyPF2EwYCxSIHSC6CsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/84b074-9c8d-48f5-bade-cba49a446d22/1/cwy8R6ajDyPF2EwYCxSIHSC6CsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:b0:53:de:99:4a:19:a1:a2:86:46:31:cc:79:cd:7b:c5:7b:
1b:c0:bc:55:d5:3d:b4:bf:37:aa:64:8e:cf:1a:bd:df:36:70:
4b:8b:d1:9d:f8:2e:20:b3:9e:36:e7:49:1b:12:59:bb:67:dc:
40:f3:3f:45:19:6c:90:b6:c1:a3:00:cf:2b:f9:33:d1:f1:e0:
df:c0:13:14:40:e1:7d:c3:cc:39:05:8d:9d:30:c4:22:88:3f:
2a:cb:c2:c5:19:16:4f:4f:ac:7b:15:c4:31:37:03:c9:33:e1:
d4:5d:04:f1:cd:03:0c:be:ef:7d:d2:92:09:47:84:a7:5f:49:
41:d8:df:bf:a8:bc:b4:ea:b5:34:f0:bd:cb:a1:71:79:b8:96:
a6:f3:81:86:2e:cb:04:bc:f0:1d:70:52:e8:db:f3:e5:db:4c:
b8:77:69:c4:9a:74:db:33:4d:cb:1e:9f:10:31:64:d6:7e:f7:
f5:5c:74:fa:3a:e4:e4:ff:3f:bc:9b:c6:d8:24:ac:de:6b:ca:
51:16:43:a5:51:0c:5c:fe:4b:99:18:7b:3b:cf:c7:96:d0:81:
dc:51:e1:09:62:10:78:f8:00:33:61:0a:f5:3b:dd:51:dc:70:
e3:d3:01:a1:8a:6c:5b:d7:e0:fd:dc:c9:59:d0:47:73:2d:02:
87:17:10:80
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n4F5vMUDWRJcjU3Q0RP4fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczMGNiYzQ3YTZhMzBmMjNjNWQ4NGMxODBiMTQ4ODFkMjBi
YTBhYzIwHhcNMjYwMzI2MDIwMTQ4WhcNMjYwMzI3MDIwMTQ4WjAzMTEwLwYDVQQD
Eyg0MjcwN2ExNDJhMDQ3MGZjZDliNzNmMWRlMjkxOTQyYTcyMDRmNTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAueKzZs7UrYc4s/wmMCjT3ka+E9LS
9mEHCYICE3p+K7OaT8Yf4ox0w/77jPQDkhSxN4kq4qd7D8mtLcXJWQOrVSAO8r1i
HFnZA9ZxOBY+FXyAvmrFv8ceC0JioVgmVF2P/ZL50wt9Qs3DRFgTjk8v6yb5u8UA
h4Y2NxIbrHCW3eT0AcKRQ8G3qKR0wL+i68hP+xhx7Lhb0NHFlNLCyKYi90yBiMr7
KFI+3XNhx6ckbZpFSZq0tCAoPfyPkO5a/M86XNUaQ1dqIauj0HynMQmpaOxVMvH+
8376/q5lJu/9gU6XlmhrFhmn7aGZ9LygPRIXOuzlQsVs241vMWwu+F4kGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEJwehQqBHD82bc/HeKRlCpyBPUbMB8GA1UdIwQY
MBaAFHMMvEemow8jxdhMGAsUiB0gugrCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3d5OFI2YWpEeVBGMkV3WUN4U0lIU0M2Q3NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS84NGIwNzQtOWM4ZC00OGY1LWJhZGUt
Y2JhNDlhNDQ2ZDIyLzEvY3d5OFI2YWpEeVBGMkV3WUN4U0lIU0M2Q3NJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS84NGIwNzQtOWM4ZC00OGY1LWJhZGUtY2JhNDlhNDQ2ZDIy
LzEvY3d5OFI2YWpEeVBGMkV3WUN4U0lIU0M2Q3NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV7BT3plK
GaGihkYxzHnNe8V7G8C8VdU9tL83qmSOzxq93zZwS4vRnfguILOeNudJGxJZu2fc
QPM/RRlskLbBowDPK/kz0fHg38ATFEDhfcPMOQWNnTDEIog/KsvCxRkWT0+sexXE
MTcDyTPh1F0E8c0DDL7vfdKSCUeEp19JQdjfv6i8tOq1NPC9y6FxebiWpvOBhi7L
BLzwHXBS6Nvz5dtMuHdpxJp02zNNyx6fEDFk1n739Vx0+jrk5P8/vJvG2CSs3mvK
URZDpVEMXP5LmRh7O8/HltCB3FHhCWIQePgAM2EK9TvdUdxw49MBoYpsW9fg/dzJ
WdBHcy0ChxcQgA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:02:29 2026 by rpki-client