Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
File: wb80sZClHOUwAleRGvMEBPSVH7Y.mft (raw, json)
Hash identifier: kmsxeofbT0HBILCqx5zwlyY/iziC2yvmUUjLqGO2V2Y=
Subject key identifier: 53:E5:81:0E:0F:AC:B2:A2:DC:F8:9B:25:F7:A6:46:1B:8B:85:D7:2E
Authority key identifier: C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6
Certificate issuer: /CN=c1bf34b190a51ce5300257911af30404f4951fb6
Certificate serial: 019D25F1D58BD26BCFCC7E1E5C2B4500AF36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
Manifest number: 1884
Signing time: Wed 25 Mar 2026 17:01:38 +0000
Manifest this update: Wed 25 Mar 2026 17:01:38 +0000
Manifest next update: Thu 26 Mar 2026 17:01:38 +0000
Files and hashes: 1: Y29t-Qutit4Mtq2FXXVVajwYkJ8.roa (hash: IFvAqWAV36VhOvXLelo0nvun/QoXpwk8T72OiDJu/UQ=)
2: wb80sZClHOUwAleRGvMEBPSVH7Y.crl (hash: +kjofOmX4SxUMHjOYsR22I92CEhPrMISwGs0nl+OY7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:d5:8b:d2:6b:cf:cc:7e:1e:5c:2b:45:00:af:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1bf34b190a51ce5300257911af30404f4951fb6
Validity
Not Before: Mar 25 17:01:38 2026 GMT
Not After : Mar 26 17:01:38 2026 GMT
Subject: CN=53e5810e0facb2a2dcf89b25f7a6461b8b85d72e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d3:73:b1:71:db:b2:61:5e:05:96:1d:46:6e:
dc:0d:d8:43:a5:d5:d0:ba:f2:20:33:e5:c3:d4:10:
09:04:65:2a:cd:7f:89:29:73:31:93:d0:42:f6:c6:
6f:7a:55:41:20:5c:31:36:b7:92:e9:bd:4c:33:91:
a5:29:21:22:4e:8d:0f:b9:75:27:3e:71:e0:3b:17:
3f:6d:ad:c9:5b:5c:05:ad:a0:42:ce:99:3d:59:e3:
95:43:3f:c8:09:30:38:6c:56:48:65:38:ee:e7:89:
82:a3:fa:23:b9:38:8f:38:a7:35:14:26:1c:d3:3a:
91:13:be:cd:ed:7a:50:91:3b:4c:bf:b9:7d:40:02:
27:98:f4:f3:b3:5d:01:73:69:f6:a5:b0:2b:a2:5f:
70:a3:66:b0:d0:38:ba:9b:27:a5:72:73:0e:bc:2d:
6c:c1:46:00:ca:73:29:bf:c4:da:84:38:ee:51:19:
84:7d:a4:13:cc:e4:b3:18:0c:f5:97:e2:5a:e5:da:
ac:5e:23:da:fb:98:43:2e:70:63:ac:8f:d6:c3:b9:
9e:85:7f:50:64:f5:01:0b:82:ce:8f:cd:88:5e:3e:
96:75:9a:92:01:69:08:8c:56:2e:77:57:33:d4:2d:
93:9c:bd:4b:1f:86:a1:0e:7b:14:19:9b:b6:8b:81:
5f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E5:81:0E:0F:AC:B2:A2:DC:F8:9B:25:F7:A6:46:1B:8B:85:D7:2E
X509v3 Authority Key Identifier:
keyid:C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:b6:fc:03:77:e3:4e:00:2a:57:8d:56:df:ae:f1:22:d2:6b:
82:45:1d:46:11:b8:13:62:b9:50:73:5d:d6:cc:2c:0c:02:e2:
8a:9f:e5:6c:fe:e3:0f:26:3b:8e:b8:60:49:d7:7b:a8:95:73:
e5:21:60:83:95:45:9b:70:31:83:7e:78:94:e6:da:48:36:73:
55:2f:9a:ca:fd:50:5c:a4:35:7d:ab:81:c9:17:d1:08:85:23:
e2:bb:14:8a:6a:0c:4a:68:7c:6a:37:89:e6:db:fa:cf:cb:fa:
5d:f7:96:9b:75:11:25:6a:7a:29:16:36:43:1d:65:87:7f:f3:
25:4a:88:18:95:45:65:77:c7:4a:3a:6f:ea:98:6e:41:c1:3b:
9a:ef:08:15:50:ec:48:c0:00:4b:d9:e0:08:ff:68:a6:c8:f2:
e2:52:7d:28:2f:cc:93:36:3a:44:15:24:21:94:4a:26:b1:a1:
2a:37:78:9f:05:77:68:55:15:66:d7:f8:0c:52:5f:b3:60:02:
2a:ee:8d:48:1a:3b:f1:2b:f3:de:07:c0:f7:de:46:5a:0b:c0:
f4:65:6d:96:8b:94:e5:f5:2a:70:c4:cf:f7:51:b3:9f:d2:a7:
8d:a1:27:53:29:b4:ac:1c:cd:52:b5:3d:fc:79:a8:55:1e:df:
5d:b6:cc:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:37:38 2026 by rpki-client