Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.mft
File: cswkIhQgt1-V7bnOuh93OPoXN54.mft (raw, json)
Hash identifier: n1k1tmwLqUbggi0kA57Pe58JJf3yhVEaoAvWM1h/zfo=
Subject key identifier: 6B:6C:ED:70:C8:62:49:3E:3F:66:65:1C:BB:9A:32:DD:44:8E:84:58
Authority key identifier: 72:CC:24:22:14:20:B7:5F:95:ED:B9:CE:BA:1F:77:38:FA:17:37:9E
Certificate issuer: /CN=72cc24221420b75f95edb9ceba1f7738fa17379e
Certificate serial: 019D28168385A48474EEB30EECCF625AC062
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cswkIhQgt1-V7bnOuh93OPoXN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.mft
Manifest number: 24
Signing time: Thu 26 Mar 2026 03:00:57 +0000
Manifest this update: Thu 26 Mar 2026 03:00:57 +0000
Manifest next update: Fri 27 Mar 2026 03:00:57 +0000
Files and hashes: 1: aNY_udjUjweJXPOJqKkLsSUQQEk.roa (hash: zB53YZr6NXhIUp/aEuccelkUG4JTzu5aMzPXoShO6FY=)
2: cswkIhQgt1-V7bnOuh93OPoXN54.crl (hash: J9CNtgiiMQHesWV8VUlfl6W7LbHU4y/pBmQC/S9OHis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.mft
rsync://rpki.ripe.net/repository/DEFAULT/cswkIhQgt1-V7bnOuh93OPoXN54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:83:85:a4:84:74:ee:b3:0e:ec:cf:62:5a:c0:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72cc24221420b75f95edb9ceba1f7738fa17379e
Validity
Not Before: Mar 26 03:00:57 2026 GMT
Not After : Mar 27 03:00:57 2026 GMT
Subject: CN=6b6ced70c862493e3f66651cbb9a32dd448e8458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:05:cd:b5:db:8b:6f:95:18:51:bd:c2:a0:6f:
7e:05:f6:19:ea:7f:b8:f7:d8:5a:38:06:e4:0b:fe:
c6:5d:f8:65:86:0a:ed:6c:0d:b2:b3:68:1d:83:b1:
93:0d:af:b4:e1:a4:4d:58:c7:1a:a2:d2:da:80:3c:
3e:c8:7f:76:01:0c:3c:52:fb:dc:7e:14:cc:a9:da:
99:27:64:5f:76:db:f1:8b:32:36:fd:c4:b7:2a:80:
77:9a:8f:c0:3e:be:2b:eb:39:d1:92:ba:4f:f1:25:
22:82:8c:c3:25:59:53:0f:61:ab:8b:97:5d:7c:49:
04:d0:34:46:e9:a5:53:cb:6d:b7:fa:53:d6:71:57:
24:9b:6f:44:75:bf:ea:6e:32:33:7b:8b:0d:e0:9c:
0f:54:5b:1d:26:a9:a7:65:ae:1b:23:63:68:4f:35:
70:91:1f:9a:ba:4f:65:59:33:e8:36:1c:d2:a7:62:
ec:d3:f5:1c:41:7c:d4:2d:de:5c:b7:b8:ab:06:6d:
b2:33:1f:e5:e4:ed:f9:64:db:4d:7b:d9:ce:03:00:
29:55:4e:d5:fe:ef:3c:49:75:e8:f5:18:1d:46:32:
ef:fc:15:1a:99:53:9b:5b:19:39:af:33:27:0d:d0:
db:9c:f4:4f:39:dd:13:72:d2:6d:a7:63:08:df:ce:
a7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:6C:ED:70:C8:62:49:3E:3F:66:65:1C:BB:9A:32:DD:44:8E:84:58
X509v3 Authority Key Identifier:
keyid:72:CC:24:22:14:20:B7:5F:95:ED:B9:CE:BA:1F:77:38:FA:17:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cswkIhQgt1-V7bnOuh93OPoXN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/bd4df2-b781-4348-bc54-db387c7801e8/1/cswkIhQgt1-V7bnOuh93OPoXN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:e9:98:20:9a:f4:bc:cb:d7:98:5e:cc:ce:d2:6c:52:b7:3e:
c1:b3:b3:ea:89:5e:a9:c9:84:cc:45:43:e4:ed:9a:9e:49:be:
e7:e5:38:41:e1:12:3a:26:bc:4c:9c:46:ac:c1:ad:28:94:b7:
c5:04:8b:cd:bb:2c:91:b0:91:ca:a0:9c:78:0a:40:51:6e:0d:
9a:6d:ee:6f:d0:e3:a9:b5:a7:43:10:65:0a:4d:5c:a2:c5:cd:
4d:f2:03:4d:7a:f7:c1:41:6a:31:cc:88:e3:97:6f:3f:b9:18:
de:0c:6f:29:e1:62:af:11:b8:37:34:f7:af:80:4a:a5:ca:49:
99:e8:11:00:94:f7:bd:bc:55:1b:d9:45:7a:80:10:d2:90:f6:
22:34:5f:90:22:05:bd:87:96:00:2c:6d:b4:57:69:d7:78:20:
71:47:02:29:5a:c4:5f:06:07:95:0d:d1:e1:40:4c:cb:18:c7:
05:26:d2:7e:cd:cd:8b:60:42:23:ed:f6:ad:8d:74:9c:98:de:
18:c1:56:2a:7a:ff:79:09:61:10:13:a8:1b:d5:a1:0a:b9:4c:
41:de:80:64:0a:fe:bd:02:75:42:ad:c6:8d:d5:fd:23:d1:f9:
00:f9:50:aa:b7:79:7b:65:4f:b6:90:08:85:59:a6:64:81:64:
b6:34:6e:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:07:42 2026 by rpki-client