Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
File: w3URP9S_vTixBDhDwwkmoRDMD1E.mft (raw, json)
Hash identifier: a5NGI9/SODHJzg4ac8Lt/3xqSlMFmZHHsh6I2B0ce8Y=
Subject key identifier: 9E:49:80:7B:7B:20:C2:F6:3D:3F:B0:7E:90:90:E8:68:E5:7B:B1:12
Authority key identifier: C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51
Certificate issuer: /CN=c375113fd4bfbd38b1043843c30926a110cc0f51
Certificate serial: 019D25F184BB775524F9F58638A2702E3882
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
Manifest number: 1888
Signing time: Wed 25 Mar 2026 17:01:18 +0000
Manifest this update: Wed 25 Mar 2026 17:01:18 +0000
Manifest next update: Thu 26 Mar 2026 17:01:18 +0000
Files and hashes: 1: TYwN3t32Z7xKSSbdeezcjvxtZPw.roa (hash: vACqWvZBDZtntkC9z+JDWdjz/Gh+6JNnrhSbEy009gw=)
2: ZJWhX_sHEjs97qyEWeCy7JLXnqw.roa (hash: bAXAo9VS32osXOlNSknnXOi501Vm+Z7vmbwaL73CoDc=)
3: w3URP9S_vTixBDhDwwkmoRDMD1E.crl (hash: sJ12mogRnycvf4zrsHOcI9t8tJW6xbQzYO6bM36ovLk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:84:bb:77:55:24:f9:f5:86:38:a2:70:2e:38:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c375113fd4bfbd38b1043843c30926a110cc0f51
Validity
Not Before: Mar 25 17:01:18 2026 GMT
Not After : Mar 26 17:01:18 2026 GMT
Subject: CN=9e49807b7b20c2f63d3fb07e9090e868e57bb112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:27:a6:b5:fb:c6:dd:f1:6f:64:98:65:10:f5:
7d:11:d6:94:a0:ed:87:dc:56:55:17:fd:41:d3:44:
98:d6:a0:f6:cd:7e:c4:3e:aa:b2:57:c8:5e:19:11:
87:3d:7f:04:23:69:56:c4:41:02:be:90:18:a4:52:
57:17:87:d9:b4:00:49:a0:33:d6:31:50:53:9b:7b:
11:b1:2a:d8:d0:26:00:0c:c8:a5:80:32:3f:9a:64:
df:b6:97:69:c7:08:4b:12:76:41:8f:d1:e2:fa:e7:
89:46:5b:d2:f0:6f:96:94:da:7f:89:14:a4:ca:17:
d3:fe:d1:90:1f:c1:54:c1:09:5a:69:a2:31:75:4f:
c0:4c:23:16:c1:b7:a1:4f:6e:bd:4a:31:4d:b2:9b:
6d:09:61:ab:4e:e7:66:7f:2a:58:f0:93:12:31:2e:
c2:4b:3e:d2:9f:42:67:50:00:e4:c7:61:8f:0b:49:
32:7e:31:c6:b2:fd:e6:bc:7e:9c:14:4c:da:41:c9:
6a:e0:e5:58:e0:d7:52:2b:30:a5:48:bd:a6:ab:5b:
4d:07:24:60:e8:90:8b:25:30:1d:25:5e:e9:6f:32:
7c:9c:1e:90:32:0a:4e:f8:60:40:c5:07:fc:a3:bb:
27:0e:9d:05:43:17:0e:b4:13:0b:e1:7f:c4:c0:b3:
03:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:49:80:7B:7B:20:C2:F6:3D:3F:B0:7E:90:90:E8:68:E5:7B:B1:12
X509v3 Authority Key Identifier:
keyid:C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:e4:bd:0b:30:bd:03:1a:d8:56:d3:3e:94:b9:ee:f4:d0:32:
f7:74:22:f7:5f:ea:81:b7:d9:ee:e1:11:a3:cd:8d:40:28:8e:
ff:9d:09:07:5c:79:61:67:39:04:d9:f5:10:bb:f3:2a:8d:d7:
bb:c2:78:2e:07:b3:91:48:2f:36:b1:3c:f5:57:bc:ff:c0:58:
c7:7b:30:bc:66:04:ad:0e:2b:39:b5:a3:09:94:b4:d0:27:a7:
8a:71:a7:89:86:62:02:95:43:82:e1:0f:7d:bf:80:9a:b4:12:
ac:40:2a:6a:4c:1b:e3:94:8b:a3:e8:d4:4e:d6:cd:55:8c:52:
8e:97:74:42:73:c8:c1:0a:09:66:f6:03:2a:bf:76:a8:ab:be:
c2:b8:09:eb:7f:16:de:80:bb:49:21:a3:4e:99:5f:c5:96:9f:
bc:26:17:14:2b:a0:92:a2:81:08:1c:71:c0:e9:af:e0:5b:67:
0f:5e:7d:98:e2:b8:b6:ad:a8:36:69:17:70:26:80:54:b2:bc:
c1:3d:fb:16:6d:e5:f2:98:79:b4:cc:0c:f9:a0:89:17:8e:59:
7c:4c:30:7f:39:f6:b2:d4:c4:ff:96:f8:70:dd:48:f8:8e:41:
97:4f:11:f4:6a:5b:87:49:17:91:42:5d:f3:f5:f1:04:8b:df:
f9:7d:2c:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:22 2026 by rpki-client