Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.mft
File: hWGkh4vcWz7Nz8wkXLJh8sd1vpY.mft (raw, json)
Hash identifier: Pw68Nz3sOkcsvyVwfoSJs9eQ7/F/+0qtu1pQYVXYilk=
Subject key identifier: EE:94:67:3D:28:57:FB:E2:A0:20:3A:9F:83:16:71:DF:36:5B:29:53
Authority key identifier: 85:61:A4:87:8B:DC:5B:3E:CD:CF:CC:24:5C:B2:61:F2:C7:75:BE:96
Certificate issuer: /CN=8561a4878bdc5b3ecdcfcc245cb261f2c775be96
Certificate serial: 019D29290527933B027C21F2287534EF900E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.mft
Manifest number: 05
Signing time: Thu 26 Mar 2026 08:00:47 +0000
Manifest this update: Thu 26 Mar 2026 08:00:47 +0000
Manifest next update: Fri 27 Mar 2026 08:00:47 +0000
Files and hashes: 1: GoAkPIAUSUzijoZyQV3GsDjC9oc.roa (hash: BcK9f3FlDHiLkWJEjaswzoi3ZThCydXJWpw7cE66v3c=)
2: hWGkh4vcWz7Nz8wkXLJh8sd1vpY.crl (hash: 0ETAOp+ZL2OtZ9g7YlLhHAcWEaxwRKjGfTwuxtW0nK0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:05:27:93:3b:02:7c:21:f2:28:75:34:ef:90:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8561a4878bdc5b3ecdcfcc245cb261f2c775be96
Validity
Not Before: Mar 26 08:00:47 2026 GMT
Not After : Mar 27 08:00:47 2026 GMT
Subject: CN=ee94673d2857fbe2a0203a9f831671df365b2953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:05:bd:37:74:1f:73:50:76:0e:1c:ae:65:8a:
9b:c4:bd:2a:26:56:b4:cc:ae:02:f0:a3:37:f5:2e:
50:06:1e:3a:e9:42:33:54:84:f7:69:c0:cc:29:35:
92:e1:67:aa:25:44:ea:45:e3:99:a4:62:3e:23:dc:
de:12:17:bf:17:be:39:58:88:77:ea:44:7e:9a:1b:
0b:d1:64:32:1c:fa:ab:a8:15:3b:e4:a4:e3:e8:81:
68:43:8f:9d:26:12:58:71:bf:60:e7:55:4a:02:db:
93:9f:e0:56:c4:ba:01:32:1c:f6:28:f7:20:b4:fb:
bd:08:c4:b6:56:37:22:34:b0:d2:33:6a:fa:f2:0f:
e9:b1:6a:54:d0:82:84:8c:4e:11:4c:f8:71:43:dd:
08:ef:f1:6f:ab:dd:35:b5:28:84:7e:45:4c:1e:0d:
a4:56:2e:77:25:3e:62:60:64:fd:5d:a0:7e:58:9e:
f1:b3:f0:bb:cf:fe:46:7d:90:54:45:0c:ae:53:3f:
a2:23:61:c2:7f:ef:c6:d4:b1:6a:4a:85:b6:60:6a:
c7:4a:c9:9e:47:3a:c0:29:59:5e:b6:27:b1:09:5f:
64:47:23:2b:2f:73:1d:69:28:16:45:4e:3f:7f:8c:
87:ef:ac:70:09:3e:60:ba:02:7b:b1:6a:1d:94:9e:
3a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:94:67:3D:28:57:FB:E2:A0:20:3A:9F:83:16:71:DF:36:5B:29:53
X509v3 Authority Key Identifier:
keyid:85:61:A4:87:8B:DC:5B:3E:CD:CF:CC:24:5C:B2:61:F2:C7:75:BE:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:84:74:58:66:ee:be:48:27:ce:a9:79:6a:57:82:a5:bf:bc:
1c:56:fa:6e:cf:0f:ec:e8:47:95:84:c7:4d:0c:fb:ab:5c:70:
71:ce:95:47:38:38:0b:2d:72:7a:94:7e:31:fe:dc:18:8c:ed:
3a:1e:8a:28:5d:ab:b2:3c:c6:cf:f1:16:8f:3d:ef:8a:e2:16:
61:fa:6b:81:4a:6b:38:42:ce:a9:fd:80:00:26:66:6d:41:88:
55:cc:e0:5f:30:92:50:30:b5:85:53:c3:bd:88:a7:5e:6e:da:
36:8c:96:5a:d9:40:05:62:5c:f8:05:77:6f:0e:ce:2f:e3:77:
d7:4b:cd:e2:bd:93:83:be:17:4a:6c:50:bd:1c:bf:16:8b:60:
14:2f:e7:0e:23:a7:08:8d:99:a6:b1:64:5a:c9:d3:18:c4:19:
42:a6:f7:9e:8f:62:5b:90:89:d5:9f:79:e1:fb:36:00:c7:f4:
ef:62:df:d6:6b:8e:b5:c9:77:68:81:61:db:07:e3:42:65:be:
bb:2d:ff:08:4c:58:1a:44:67:e9:b0:54:d0:8c:ca:0a:fd:9f:
39:bf:8a:44:ec:37:1c:a3:7b:f9:3b:3d:95:35:15:2e:8f:87:
4b:4a:22:05:14:b1:2d:09:e4:f7:24:85:8b:e6:47:50:35:18:
05:6d:7a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:27:51 2026 by rpki-client