Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
File: wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft (raw, json)
Hash identifier: 8undEc8j8+X+oavHbg5oVlPo6VWj5GuRa/OPm/pFxDw=
Subject key identifier: 77:8D:65:86:CF:69:87:E2:AE:0C:2C:3B:B4:49:91:79:97:69:22:DC
Authority key identifier: C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C
Certificate issuer: /CN=c21e32d047c5d1b9e26770c3840304cf6971de1c
Certificate serial: 019D26CD644830308A351A19380261B5E524
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
Manifest number: 0BA9
Signing time: Wed 25 Mar 2026 21:01:27 +0000
Manifest this update: Wed 25 Mar 2026 21:01:27 +0000
Manifest next update: Thu 26 Mar 2026 21:01:27 +0000
Files and hashes: 1: Y8cmMZQvMnJkziqHhszvZV_UjeQ.roa (hash: cYgGX/s9jr31rZGmmaEtyXpNrfjq8EGIHIKPU1pqwxk=)
2: wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl (hash: mkQ9U6LTNdUBF+XQLl7hTQeCEuJJCx2slFOA1NC0njc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:64:48:30:30:8a:35:1a:19:38:02:61:b5:e5:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c21e32d047c5d1b9e26770c3840304cf6971de1c
Validity
Not Before: Mar 25 21:01:27 2026 GMT
Not After : Mar 26 21:01:27 2026 GMT
Subject: CN=778d6586cf6987e2ae0c2c3bb4499179976922dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:68:55:9e:23:e0:06:14:a1:85:56:a4:42:e9:
85:d8:fe:11:de:17:c7:f5:30:94:81:91:89:c3:a5:
29:b6:6b:9d:58:c1:8b:51:75:21:82:07:14:e5:70:
fb:d6:11:46:68:14:4f:b4:41:7f:03:bf:5e:f2:17:
d9:6c:09:c7:8f:cb:0c:bb:06:2c:72:51:ab:3a:ce:
08:91:51:44:3c:64:ca:1d:52:e8:aa:5e:91:a7:4c:
60:d1:8f:5f:71:ef:da:35:1f:89:6c:d4:db:c2:92:
ce:64:1b:02:6f:21:f9:e7:00:9d:a5:81:e5:01:e0:
a5:6e:7a:f6:60:a6:ac:d1:8a:ae:cb:ce:bf:64:36:
98:57:0b:a1:94:c3:cc:fc:1a:6a:2c:86:a1:9c:16:
f8:9e:9d:73:5b:f6:a3:c4:ea:40:c7:32:77:32:f9:
e0:e2:1c:43:12:d4:93:69:7b:2c:f5:83:40:b8:b7:
a1:f3:af:7f:ed:51:1f:21:d5:90:3c:55:b2:ad:48:
26:fa:6a:e2:5e:f5:d4:34:62:69:ff:07:e5:85:6f:
8a:c0:aa:06:6e:41:9a:92:5d:a6:ed:e4:ab:84:af:
95:a2:e6:60:e1:0c:6f:ac:df:32:a0:3e:1b:f5:90:
6a:01:a2:7d:c3:4f:f9:a0:90:ef:a5:11:d3:ed:a8:
f4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:8D:65:86:CF:69:87:E2:AE:0C:2C:3B:B4:49:91:79:97:69:22:DC
X509v3 Authority Key Identifier:
keyid:C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:44:0d:6b:92:45:df:c3:cd:18:41:eb:e1:87:f0:bb:81:6c:
6b:ba:27:60:6c:1f:28:09:02:34:70:4e:74:89:29:5b:db:04:
43:ac:39:59:fe:ab:0d:1f:e4:2c:bb:43:b0:45:ee:a2:0d:23:
ab:db:a1:ba:27:93:d5:7f:69:12:09:0f:42:79:36:f5:9e:37:
84:6b:76:dd:95:96:ec:a2:15:a9:56:6d:a3:65:86:d9:13:b0:
98:79:c9:4a:17:75:f8:89:0f:00:b2:2a:c5:c4:46:74:f7:bf:
8c:55:f3:a7:7c:6a:ca:d7:59:50:4e:c0:d9:ef:99:ac:71:65:
e2:59:2c:a1:d9:60:d0:41:1c:82:ab:89:c1:d3:04:9f:2e:14:
fb:a8:34:e1:d9:3b:a6:61:0e:f9:f2:6d:52:bc:2c:f4:06:2b:
06:50:22:0d:10:a2:1c:0b:72:a7:3f:9b:b1:0a:1c:ed:6f:a7:
8d:30:e9:06:87:74:c9:97:fa:67:25:79:7a:89:e0:98:4a:a8:
23:25:0b:a9:05:a5:a1:63:82:30:b2:f3:33:11:57:6f:92:ef:
45:c9:f8:33:41:5f:a1:60:be:16:9a:72:da:93:f8:b8:7e:0d:
95:61:9c:7c:9a:59:63:07:98:20:cb:d5:42:ae:8c:a5:b2:be:
90:63:65:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:00:07 2026 by rpki-client