Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.mft
File: cswkIhQgt1-V7bnOuh93OPoXN54.mft (raw, json)
Hash identifier: vOxNlWVHE+dLblzztD2zCHpfhnXorZQq/2JoJOUmxIE=
Subject key identifier: BB:AE:21:D5:33:EA:D4:0F:BE:5B:64:BA:63:C9:7A:21:69:9E:ED:FC
Authority key identifier: 72:CC:24:22:14:20:B7:5F:95:ED:B9:CE:BA:1F:77:38:FA:17:37:9E
Certificate issuer: /CN=72cc24221420b75f95edb9ceba1f7738fa17379e
Certificate serial: 019E1DFE2A80D4C8C7AD0B0AC3B0793C9DC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cswkIhQgt1-V7bnOuh93OPoXN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.mft
Manifest number: A6
Signing time: Tue 12 May 2026 21:00:56 +0000
Manifest this update: Tue 12 May 2026 21:00:56 +0000
Manifest next update: Wed 13 May 2026 21:00:56 +0000
Files and hashes: 1: cswkIhQgt1-V7bnOuh93OPoXN54.crl (hash: 8NDUSVJvH3h5v0xEye+/cxTRUfGEZh8Lg3yD+p7IX+Q=)
2: l_OtXNVrTIJOg1BB7RzWG8ARoM4.roa (hash: Mw4PK7cmibSwEXPETc3oNPZi0T+bvVwJzq8QuAMIqGc=)
3: zZuqtQC2zJWrlRTYcv01DuQ539I.roa (hash: e8aj2NBAUu8cQDdfA+hZFwxLSq3XvalKKas01wW1IyI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.mft
rsync://rpki.ripe.net/repository/DEFAULT/cswkIhQgt1-V7bnOuh93OPoXN54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:2a:80:d4:c8:c7:ad:0b:0a:c3:b0:79:3c:9d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72cc24221420b75f95edb9ceba1f7738fa17379e
Validity
Not Before: May 12 21:00:56 2026 GMT
Not After : May 13 21:00:56 2026 GMT
Subject: CN=bbae21d533ead40fbe5b64ba63c97a21699eedfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:31:cb:7d:43:7a:5c:6f:6b:27:31:f7:e4:c7:
42:a3:2e:c2:0b:e5:17:a9:7a:5d:62:6d:83:86:f8:
84:16:0d:47:d7:12:89:f9:d5:46:cb:8b:d0:f9:10:
34:c6:ab:59:f4:eb:ec:96:a0:79:57:40:c3:11:7f:
2c:bc:85:fc:a9:cb:50:ea:ef:0d:16:42:54:92:64:
47:cc:6c:e3:fd:4d:44:76:87:9a:fc:2f:08:9d:5b:
69:8d:66:d3:b2:60:93:42:0e:37:97:c1:b8:1b:c4:
32:89:71:0d:68:f1:e5:c5:4f:45:e3:ad:42:3e:67:
28:0d:f1:65:15:66:27:d1:39:de:d2:e9:e4:92:46:
73:1e:d6:2f:4f:42:f4:c8:2f:4b:8f:07:2c:70:c3:
41:38:31:ea:04:5c:4e:11:20:b7:77:9e:0e:69:ef:
a0:7b:1a:2e:0a:41:d7:19:69:25:05:75:43:c9:c2:
51:81:42:14:8a:27:99:51:2c:f1:05:8a:eb:c6:02:
98:96:51:e4:35:4a:47:49:c7:8f:ac:c1:96:88:e2:
ac:c5:d5:c0:65:dd:00:6f:16:34:6a:e8:82:2d:9e:
42:d0:db:99:f9:6b:9a:2e:3a:9d:ca:2b:6b:17:2a:
76:95:95:f7:5e:4f:e9:e2:6b:f3:4a:4b:60:68:d0:
cf:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:AE:21:D5:33:EA:D4:0F:BE:5B:64:BA:63:C9:7A:21:69:9E:ED:FC
X509v3 Authority Key Identifier:
keyid:72:CC:24:22:14:20:B7:5F:95:ED:B9:CE:BA:1F:77:38:FA:17:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cswkIhQgt1-V7bnOuh93OPoXN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:cb:9b:93:16:17:2c:b6:76:6e:9b:20:12:c4:cb:1d:23:8d:
57:04:44:90:15:6e:46:44:7b:35:69:68:57:dd:8b:d6:0d:b8:
68:56:71:06:5f:d2:9c:ee:f8:f5:7e:b6:90:fc:0f:80:18:04:
43:aa:a4:c3:5c:de:55:fa:e6:25:67:a9:b7:b5:bc:ab:fc:d4:
39:b8:5f:48:eb:0f:af:0a:5f:3e:69:fb:61:a3:60:e9:70:5d:
7f:63:34:5d:38:2a:3b:86:f6:de:99:50:7f:d9:47:5e:2b:72:
a0:49:7b:3a:b9:5d:1b:77:6e:1b:03:bd:77:da:0e:59:00:a7:
8c:7f:e6:8e:71:a1:ab:7f:67:e2:6d:58:fa:b7:82:d6:f9:09:
80:e0:e7:2b:c6:f3:01:35:e6:8e:3f:d7:00:19:eb:17:37:cf:
c2:c0:d5:af:e2:c9:d7:29:9b:f2:b7:da:e3:72:bf:a6:4e:41:
68:1d:43:de:37:c3:e0:ed:c5:3b:49:86:8d:88:12:16:b9:6e:
3f:c4:d3:d0:3a:84:f5:26:fc:bf:fe:46:cd:bd:2e:b0:cc:9c:
24:8c:8f:5a:d6:94:85:4d:5b:66:3e:50:01:4d:88:c9:4a:d2:
57:1b:91:ca:bc:d6:fe:1d:10:78:7d:f6:3e:b7:44:da:40:d1:
df:fe:33:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:22:40 2026 by rpki-client