Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.mft
File: hWGkh4vcWz7Nz8wkXLJh8sd1vpY.mft (raw, json)
Hash identifier: OVprL///8qEbq/vvsSeTWI++JdnLJsyHjkqnfB0PGu4=
Subject key identifier: 38:AD:37:D4:4A:68:B1:EF:3A:1C:D8:A7:E7:0F:6E:5E:6B:81:D7:22
Authority key identifier: 85:61:A4:87:8B:DC:5B:3E:CD:CF:CC:24:5C:B2:61:F2:C7:75:BE:96
Certificate issuer: /CN=8561a4878bdc5b3ecdcfcc245cb261f2c775be96
Certificate serial: 019E205AD61E6DE2B27714F4385D07C58F9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.mft
Manifest number: 85
Signing time: Wed 13 May 2026 08:01:24 +0000
Manifest this update: Wed 13 May 2026 08:01:24 +0000
Manifest next update: Thu 14 May 2026 08:01:24 +0000
Files and hashes: 1: GoAkPIAUSUzijoZyQV3GsDjC9oc.roa (hash: BcK9f3FlDHiLkWJEjaswzoi3ZThCydXJWpw7cE66v3c=)
2: hWGkh4vcWz7Nz8wkXLJh8sd1vpY.crl (hash: 05rEPxSXAbHr7cvDmToFDjcQDYBsiHJOGKw8hkjTvb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:d6:1e:6d:e2:b2:77:14:f4:38:5d:07:c5:8f:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8561a4878bdc5b3ecdcfcc245cb261f2c775be96
Validity
Not Before: May 13 08:01:24 2026 GMT
Not After : May 14 08:01:24 2026 GMT
Subject: CN=38ad37d44a68b1ef3a1cd8a7e70f6e5e6b81d722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6b:d9:6c:9b:0c:b6:85:ce:e2:8b:c7:c8:54:
d1:c9:2e:c2:d8:5b:ea:5f:99:a4:f8:60:dc:48:6d:
38:be:c6:55:29:df:ab:f9:6d:8e:e9:cb:67:1a:c6:
01:39:5b:d5:ac:bb:48:78:c7:61:ad:2e:68:83:29:
05:9f:59:f1:d7:1f:88:47:58:3d:4e:d0:20:99:b7:
b0:ea:62:f2:86:03:b6:e2:25:84:a8:20:42:70:df:
d4:8f:c8:05:73:ca:37:fd:29:48:12:a7:05:c9:a6:
ad:b6:7c:21:16:d5:bc:0c:9f:57:b9:52:e3:24:c0:
dc:e6:49:cf:08:e5:73:aa:82:0d:14:a2:46:74:d0:
63:fe:56:84:a8:3c:e2:38:78:89:46:ff:60:f0:41:
4d:3d:3a:09:43:01:e8:aa:bc:52:5d:41:43:8c:98:
79:fd:ef:0b:a4:b3:f7:9b:14:61:fb:77:66:3e:6d:
a9:59:fa:26:77:55:dd:b5:09:6e:0f:ac:e7:4c:d3:
6c:62:f7:2b:88:c7:1e:b3:e1:c3:93:b5:41:16:10:
a9:8e:a4:6a:6e:81:1d:38:f7:12:42:ad:ec:75:fe:
02:d6:ce:0f:d5:89:fc:65:65:cf:40:5d:01:ab:58:
43:20:49:07:f4:15:15:90:9b:d6:ec:77:2c:c0:35:
e4:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:AD:37:D4:4A:68:B1:EF:3A:1C:D8:A7:E7:0F:6E:5E:6B:81:D7:22
X509v3 Authority Key Identifier:
keyid:85:61:A4:87:8B:DC:5B:3E:CD:CF:CC:24:5C:B2:61:F2:C7:75:BE:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/88ca08-a3eb-4a27-a123-69a643b6fad5/1/hWGkh4vcWz7Nz8wkXLJh8sd1vpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:59:5c:29:7a:b0:11:2b:9a:9a:a6:e6:77:3f:f9:99:d0:ff:
49:c3:6a:b1:dd:4d:1c:4b:2e:75:ab:fd:b2:4d:2d:8c:4a:82:
0f:6a:98:5a:45:e8:63:47:0f:02:d2:db:96:34:52:d0:0f:ca:
87:a7:37:37:7b:04:f8:9a:16:51:4e:f5:16:d7:dd:66:d3:a5:
b9:f4:c7:31:56:0e:49:97:b2:7d:8d:50:c8:62:69:62:ec:94:
f4:a4:08:a1:bf:ee:ce:bf:99:6f:d4:fb:10:4c:f8:6a:79:13:
13:d1:76:13:4a:13:8d:07:27:cf:c9:1d:f6:fb:6d:33:cb:77:
a0:2e:51:ec:34:f5:cc:87:40:ab:4d:9c:fc:05:c0:86:30:65:
2f:15:6d:58:0c:d8:27:22:81:6a:67:ce:f8:12:30:68:7e:53:
42:88:ff:df:24:99:35:33:f7:bd:8c:43:c6:01:94:97:d5:08:
d4:9e:cc:dd:2d:9c:ce:ff:d2:ae:ac:df:cf:ea:94:99:ee:24:
9b:f2:30:ff:41:65:a4:cb:a6:03:1f:4f:7c:0b:18:ea:75:6e:
c4:50:23:fc:be:56:15:d4:ae:e2:e6:68:cf:70:cf:4d:24:e2:
35:49:8b:39:cf:ff:77:6c:3d:e9:fe:e7:74:50:5f:5d:d7:94:
79:d4:a8:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:19:52 2026 by rpki-client