Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
File: CWnLIVY-Ju22r7INHZLok6jduB0.mft (raw, json)
Hash identifier: zJ/2bn4uK1fbDocPmPfW0OP9eeiLonStpCtEOcTtYgQ=
Subject key identifier: B8:CB:36:A8:5D:B9:30:85:9E:A8:D5:D8:77:7A:46:6B:81:AC:CD:F3
Authority key identifier: 09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
Certificate issuer: /CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Certificate serial: 019D28842DDCB7A5594BC5E098CA249252C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
Manifest number: 0434
Signing time: Thu 26 Mar 2026 05:00:44 +0000
Manifest this update: Thu 26 Mar 2026 05:00:44 +0000
Manifest next update: Fri 27 Mar 2026 05:00:44 +0000
Files and hashes: 1: CWnLIVY-Ju22r7INHZLok6jduB0.crl (hash: lXu3wY418eBaA0RbolX7cAC4GAyML7RvpN13kOcg5+Q=)
2: rk1bcafZ-NbbUdZCLT9lMRUYm-I.roa (hash: 5haE3uSWqoSmkVp2C59/CSPiEElkrF1oivdNjZDrJeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:2d:dc:b7:a5:59:4b:c5:e0:98:ca:24:92:52:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969cb21563e26edb6afb20d1d92e893a8ddb81d
Validity
Not Before: Mar 26 05:00:44 2026 GMT
Not After : Mar 27 05:00:44 2026 GMT
Subject: CN=b8cb36a85db930859ea8d5d8777a466b81accdf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d7:9f:ee:b8:60:34:25:30:e5:da:76:3b:28:
03:c6:a4:51:ac:61:1b:86:e5:7b:ed:1c:c5:58:09:
88:b7:e9:fb:16:3a:a7:2b:69:13:d0:b8:06:61:26:
1f:4b:48:79:77:10:07:c6:9f:98:34:e1:8a:8b:28:
ac:d2:ec:f6:c0:68:10:21:63:d6:27:cf:07:42:90:
42:73:e4:cb:a6:e7:4c:73:c7:aa:90:da:5a:df:6a:
2e:32:9b:9b:c4:12:93:25:e1:84:4e:ea:c4:79:54:
7a:a5:6e:7b:c8:39:be:38:30:93:79:e5:d2:ba:49:
48:2a:26:30:43:78:53:58:42:02:8e:23:9c:0d:b8:
1c:20:5b:96:27:46:fe:ca:a7:5b:dc:12:d5:34:36:
67:b9:32:71:12:70:d0:4c:b7:a1:af:1e:fc:02:66:
18:30:8f:82:fc:32:b6:aa:ea:cd:bc:cc:42:22:72:
fb:0f:1c:a0:26:f1:08:99:b7:e6:8a:83:1a:09:1a:
ae:e6:85:3f:12:91:da:92:7d:06:6a:fa:c8:08:74:
75:cf:3d:fc:c2:fb:46:c1:c2:61:1a:9c:e7:f3:38:
af:ab:ee:c3:82:3b:9e:04:59:3e:9c:e5:dd:30:b3:
af:9e:fa:90:9d:c0:5c:d0:bd:06:a7:d8:08:4f:92:
4c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:CB:36:A8:5D:B9:30:85:9E:A8:D5:D8:77:7A:46:6B:81:AC:CD:F3
X509v3 Authority Key Identifier:
keyid:09:69:CB:21:56:3E:26:ED:B6:AF:B2:0D:1D:92:E8:93:A8:DD:B8:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWnLIVY-Ju22r7INHZLok6jduB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7fe823-6ed7-4786-97b4-3600d02a6f0e/1/CWnLIVY-Ju22r7INHZLok6jduB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:15:92:db:22:11:21:69:e1:1a:51:05:e9:84:23:b4:f2:c1:
e2:0a:ae:37:10:7e:a7:19:6f:8d:fb:d8:89:a7:ef:dd:98:cb:
82:5e:58:9d:c9:d9:d6:02:9b:80:7e:32:10:4b:c5:de:97:66:
cc:bf:d6:f1:3e:5a:cd:cc:98:35:c2:41:2a:6c:dc:2e:7e:ad:
7f:d6:35:cb:5c:0d:1e:d1:4a:b0:95:a5:df:90:de:27:9d:57:
e6:8d:de:7e:0a:06:8e:79:db:30:16:0d:c7:fb:17:db:d5:79:
de:ec:59:87:d1:9d:10:78:84:d6:b8:71:e1:69:31:57:dc:61:
7b:32:f1:06:03:4f:6c:79:e7:e0:85:e2:cd:6d:54:18:b3:a7:
57:eb:3f:e1:27:f4:81:a3:ef:fc:dd:a6:c2:5e:88:fc:07:b3:
3f:5a:d1:fd:10:46:6e:b3:53:bd:5d:c3:ce:52:e0:86:e2:93:
81:d4:4c:41:73:01:87:b7:9d:4e:37:a7:98:92:77:4d:06:30:
e1:e6:08:27:06:65:48:1f:34:84:ae:8a:d8:83:1c:fa:8b:c7:
45:eb:0d:fe:b1:c6:4f:22:da:3e:de:99:90:7b:98:47:07:aa:
73:3d:d3:4f:55:a9:e4:33:8d:16:68:81:c9:60:ed:91:6e:a6:
d5:3d:2d:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ohC3ct6VZS8XgmMokklLJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5NjljYjIxNTYzZTI2ZWRiNmFmYjIwZDFkOTJlODkzYThk
ZGI4MWQwHhcNMjYwMzI2MDUwMDQ0WhcNMjYwMzI3MDUwMDQ0WjAzMTEwLwYDVQQD
EyhiOGNiMzZhODVkYjkzMDg1OWVhOGQ1ZDg3NzdhNDY2YjgxYWNjZGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2def7rhgNCUw5dp2OygDxqRRrGEb
huV77RzFWAmIt+n7FjqnK2kT0LgGYSYfS0h5dxAHxp+YNOGKiyis0uz2wGgQIWPW
J88HQpBCc+TLpudMc8eqkNpa32ouMpubxBKTJeGETurEeVR6pW57yDm+ODCTeeXS
uklIKiYwQ3hTWEICjiOcDbgcIFuWJ0b+yqdb3BLVNDZnuTJxEnDQTLehrx78AmYY
MI+C/DK2qurNvMxCInL7DxygJvEImbfmioMaCRqu5oU/EpHakn0GavrICHR1zz38
wvtGwcJhGpzn8zivq+7DgjueBFk+nOXdMLOvnvqQncBc0L0Gp9gIT5JMSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLjLNqhduTCFnqjV2Hd6RmuBrM3zMB8GA1UdIwQY
MBaAFAlpyyFWPibttq+yDR2S6JOo3bgdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQt
MzYwMGQwMmE2ZjBlLzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy83ZmU4MjMtNmVkNy00Nzg2LTk3YjQtMzYwMGQwMmE2ZjBl
LzEvQ1duTElWWS1KdTIycjdJTkhaTG9rNmpkdUIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASxWS2yIR
IWnhGlEF6YQjtPLB4gquNxB+pxlvjfvYiafv3ZjLgl5YncnZ1gKbgH4yEEvF3pdm
zL/W8T5azcyYNcJBKmzcLn6tf9Y1y1wNHtFKsJWl35DeJ51X5o3efgoGjnnbMBYN
x/sX29V53uxZh9GdEHiE1rhx4WkxV9xhezLxBgNPbHnn4IXizW1UGLOnV+s/4Sf0
gaPv/N2mwl6I/AezP1rR/RBGbrNTvV3DzlLghuKTgdRMQXMBh7edTjenmJJ3TQYw
4eYIJwZlSB80hK6K2IMc+ovHResN/rHGTyLaPt6ZkHuYRweqcz3TT1Wp5DONFmiB
yWDtkW6m1T0thg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:52:45 2026 by rpki-client