Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
File: WdNqIemzaNdIurjHe-vd4sInxsM.mft (raw, json)
Hash identifier: dg+bP1DrQq5FLqmNnxaXmXxY90xb8gNogeJjU1pgWPc=
Subject key identifier: A0:9B:5E:49:68:01:85:5F:5E:42:38:B5:A4:62:CF:39:CA:0C:FA:E6
Authority key identifier: 59:D3:6A:21:E9:B3:68:D7:48:BA:B8:C7:7B:EB:DD:E2:C2:27:C6:C3
Certificate issuer: /CN=59d36a21e9b368d748bab8c77bebdde2c227c6c3
Certificate serial: 019D254CAFE2DDC003CD6FF16D00B37906BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
Manifest number: 0A67
Signing time: Wed 25 Mar 2026 14:01:15 +0000
Manifest this update: Wed 25 Mar 2026 14:01:15 +0000
Manifest next update: Thu 26 Mar 2026 14:01:15 +0000
Files and hashes: 1: 9Wfw7dNgON3Iv-f4gZLKJwmqfdk.roa (hash: VxggZehfP0xQ0L6heJyDzgszhdPfd2ExPOVBUF5TwOE=)
2: GsroAK5IWq3NdNiW9BwK5WuY-VE.roa (hash: H3yE7psnQWokNhBsDlT4htqiP5CFlu91pIZ4Z5Ln4rg=)
3: PxpKMgQ-eiKvCJeUK2dkf2gUoSM.asa (hash: upIljczPhg0qz3Pzpmtl5kRlJn9GZ5N1pBXA6jY4G1g=)
4: Q4Sy3gCd7dMsdf3U673WYPrB4qA.roa (hash: f+vgH/8lCAyoaopM+ARWem0PqsHCRHeZDcYhmCyBUow=)
5: WdNqIemzaNdIurjHe-vd4sInxsM.crl (hash: /oSi1i3UraSSls4XNsfjY6rRCeUeKAuBTMya9xH+pQE=)
6: beCqMYhwCg21aSUTwrhNMW4LcEY.asa (hash: 1lmykIh7IPZhs4mpEd/DgaG6yCKrGTPv5ZzBaPKUw4c=)
7: hJRVUfK1kg6uQoiqwZJxzqlaXqs.roa (hash: iKpwOj9nTc417SKhdao7QMWeIdAHHJ1ZRWb6QVPeswk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:af:e2:dd:c0:03:cd:6f:f1:6d:00:b3:79:06:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59d36a21e9b368d748bab8c77bebdde2c227c6c3
Validity
Not Before: Mar 25 14:01:15 2026 GMT
Not After : Mar 26 14:01:15 2026 GMT
Subject: CN=a09b5e496801855f5e4238b5a462cf39ca0cfae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1e:b7:63:f2:5d:33:af:83:9e:57:c8:ba:2b:
51:53:f9:ff:8b:08:55:d8:cf:f3:6f:26:62:a1:d6:
db:37:94:b1:87:7a:63:16:3c:03:19:f0:ba:08:7a:
46:e8:0f:5f:8a:6f:dc:ec:cd:32:0d:e0:c0:73:c8:
0a:1a:80:72:4d:66:6c:e2:eb:46:a4:d3:6e:fa:76:
ab:a2:e9:94:f1:90:bc:17:7f:47:0a:a1:37:44:95:
dc:fa:ee:49:00:09:06:13:e0:fe:5a:c8:f2:96:98:
fc:c4:7b:3a:36:63:16:09:66:f9:45:8c:5c:28:03:
6f:a4:0b:3a:76:71:c4:0f:58:af:52:b9:50:1b:f9:
f6:14:97:c2:ad:66:1b:64:88:3d:58:09:b3:93:4f:
3c:83:60:ae:bb:ec:56:57:b8:43:cd:0e:3b:38:b7:
b8:72:fa:84:31:55:d4:49:7b:f7:66:2c:30:e6:61:
50:c8:e5:c5:8b:87:67:29:a9:ad:13:2e:c4:cd:c0:
ec:15:58:95:2b:27:80:1c:80:be:85:78:63:81:9d:
7f:d8:d8:08:a2:74:21:b0:da:e9:1b:53:6a:19:22:
df:5a:7a:21:89:63:dd:2b:11:58:4c:1a:a7:49:5d:
c0:30:85:cd:d0:5c:80:cf:da:4b:3e:55:d4:89:25:
77:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:9B:5E:49:68:01:85:5F:5E:42:38:B5:A4:62:CF:39:CA:0C:FA:E6
X509v3 Authority Key Identifier:
keyid:59:D3:6A:21:E9:B3:68:D7:48:BA:B8:C7:7B:EB:DD:E2:C2:27:C6:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:64:00:93:23:f9:34:03:13:21:b9:c5:b3:24:5e:3f:d2:8d:
b9:08:d6:90:44:1c:06:db:97:3e:1a:3a:2e:3a:19:6f:0b:9c:
9a:99:88:0e:97:2d:56:ea:e5:a3:4c:d7:e8:2a:69:db:7b:31:
56:a6:c1:d8:db:5a:14:48:c6:d0:51:53:1c:3d:f4:bd:f3:3a:
62:4b:8f:65:fc:b4:ef:3a:68:d9:05:cf:c4:76:4a:7e:76:af:
fc:2f:4a:9a:1f:fb:5f:e1:06:60:ce:af:b0:6c:be:76:99:8e:
af:55:16:2e:ae:56:8f:a5:a8:ea:1e:a2:2f:64:2e:39:30:35:
06:56:a1:cf:55:e3:c4:6b:2f:42:3d:5e:53:fb:e8:68:64:02:
b0:36:65:cd:f9:5d:dd:09:7a:22:20:1b:c8:82:97:96:33:2e:
57:0e:9e:84:44:45:59:fe:fd:0c:64:a0:0f:84:38:59:9d:08:
c0:ea:19:cc:98:06:57:57:2d:aa:91:1b:a8:16:6b:82:0c:a8:
21:9f:75:39:64:32:31:4a:a9:f8:87:91:1b:3b:ae:2a:07:a5:
60:44:ae:ca:9b:3f:6c:cc:83:20:ef:ca:11:6c:d4:22:46:7a:
0b:0c:65:f9:55:1d:ff:0b:04:4d:eb:14:d3:93:1e:3f:8f:2c:
80:0e:b3:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 23:06:11 2026 by rpki-client