Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: DyRyYI8Bz/RWNKtdLXmytLJ92Ng8KrtYUanKmmv5GKs=
Subject key identifier: 56:55:26:A3:B5:2B:E6:74:3C:1C:26:DD:0B:3C:85:66:29:DB:77:5E
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 019D2A728A321B8490BF9D854D24C9E0C92C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 05D9
Signing time: Thu 26 Mar 2026 14:00:42 +0000
Manifest this update: Thu 26 Mar 2026 14:00:42 +0000
Manifest next update: Fri 27 Mar 2026 14:00:42 +0000
Files and hashes: 1: _3SsPoZz4ndBlE9FKTU4o6A47bQ.roa (hash: YLTYKbUjdWoX7zGu97DHQcaZdG5VUWTXRbFjuRFb06w=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: ni0hSwcrKQXGyIyJERRDcE8EnXzf63DtfIC0IJxyUjw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 14:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:8a:32:1b:84:90:bf:9d:85:4d:24:c9:e0:c9:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Mar 26 14:00:42 2026 GMT
Not After : Mar 27 14:00:42 2026 GMT
Subject: CN=565526a3b52be6743c1c26dd0b3c856629db775e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:db:3b:4c:b1:22:43:da:ef:7c:38:fe:76:0a:
08:e2:f6:0c:9e:4a:77:84:2f:f4:c9:be:b9:1a:b0:
cf:e6:a9:d6:aa:be:28:97:4a:ce:08:1b:c3:79:0b:
0e:91:29:d1:67:db:a2:21:a5:21:a2:9b:d1:ba:45:
1a:fa:88:a7:18:a1:a9:0d:68:a4:ff:00:4d:ee:5e:
48:35:57:94:af:6a:e8:df:ec:d3:a5:d5:38:96:33:
4e:42:34:2e:96:aa:2f:27:c7:16:5d:7a:aa:8c:6b:
ac:a7:c0:91:56:dd:3b:3f:66:78:af:d9:a6:0a:e6:
17:57:56:a3:f8:26:73:ee:2a:ce:62:fa:e7:8e:99:
08:07:7b:bc:5c:cb:f1:31:40:53:33:a2:84:e7:7d:
56:51:63:d7:00:0e:88:16:3e:23:1a:17:95:66:2b:
63:be:0e:5f:96:12:12:20:38:5a:c7:1b:1f:1d:6a:
d3:cd:23:33:fe:37:fb:dc:96:f6:bf:47:e4:e4:0b:
3d:0e:1f:4e:7b:4f:c5:b4:78:90:24:1e:7a:5d:b1:
a0:29:31:62:6a:18:c4:f4:a4:75:dc:22:e9:fd:1e:
71:08:09:35:36:ed:ba:28:96:1a:5f:54:66:36:86:
ee:bc:c5:93:c9:03:30:f1:3c:dd:82:46:9c:07:8b:
a0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:55:26:A3:B5:2B:E6:74:3C:1C:26:DD:0B:3C:85:66:29:DB:77:5E
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:cc:b6:be:a0:ed:19:ea:47:b3:65:37:91:89:78:00:bf:9b:
03:03:af:ae:f2:72:9a:e3:c9:db:6c:3e:a2:15:e7:a8:a4:c7:
7c:a1:b7:c4:c9:2b:e1:4b:61:e7:9d:d8:4a:78:b2:fd:99:d1:
fb:d8:6d:63:09:a6:00:3d:6f:ca:43:25:7a:20:e0:c9:cb:a1:
b0:ff:71:a5:4f:cc:c0:d3:ae:cd:59:7c:69:ec:8d:69:af:4b:
7e:80:a5:c1:95:23:09:84:b1:1a:c7:88:53:d8:c4:16:6a:24:
b5:70:54:10:93:73:de:6b:f2:f6:4d:57:38:f0:48:3e:78:40:
57:77:e7:90:cd:6c:6c:8d:69:d9:77:23:0f:f3:db:aa:7a:1c:
d4:d2:8c:8d:71:4b:26:2a:22:0b:1c:6f:5c:1e:d3:8e:bc:7d:
77:93:4b:48:d3:5e:6b:9b:bf:42:65:56:f1:d2:3a:d0:60:46:
10:40:5c:5e:5a:2d:1f:04:db:b2:6a:43:b3:6a:98:84:04:27:
c5:0e:5d:56:cb:33:f3:cf:8e:4c:14:85:6f:e0:5e:68:31:ae:
cc:f0:c7:27:48:b4:08:6c:86:16:7d:d9:c1:f4:f6:ae:e9:87:
cb:fe:f3:72:51:be:3d:06:6f:da:f5:24:84:8b:e7:f8:4f:1d:
cc:f7:ce:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:02:46 2026 by rpki-client