Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.mft
File: DWisydbqg0IUE-TPWgc3-sMXNSo.mft (raw, json)
Hash identifier: WeU1WuireYVZ6PFcgxhrNC4XUS/EV2C7Yjvp6yIBjUQ=
Subject key identifier: D9:B1:E2:5A:D4:D6:72:E5:A8:EA:AB:75:CD:91:26:CE:D0:C1:51:EF
Authority key identifier: 0D:68:AC:C9:D6:EA:83:42:14:13:E4:CF:5A:07:37:FA:C3:17:35:2A
Certificate issuer: /CN=0d68acc9d6ea83421413e4cf5a0737fac317352a
Certificate serial: 019D2A04DCFD963C0CFD026D8D062B94EDE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DWisydbqg0IUE-TPWgc3-sMXNSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.mft
Manifest number: 05B9
Signing time: Thu 26 Mar 2026 12:00:54 +0000
Manifest this update: Thu 26 Mar 2026 12:00:54 +0000
Manifest next update: Fri 27 Mar 2026 12:00:54 +0000
Files and hashes: 1: DWisydbqg0IUE-TPWgc3-sMXNSo.crl (hash: opmgHjpxcXcugS5ueMUBRzb22tqStlhIT6FDnmop22c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/DWisydbqg0IUE-TPWgc3-sMXNSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:dc:fd:96:3c:0c:fd:02:6d:8d:06:2b:94:ed:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d68acc9d6ea83421413e4cf5a0737fac317352a
Validity
Not Before: Mar 26 12:00:54 2026 GMT
Not After : Mar 27 12:00:54 2026 GMT
Subject: CN=d9b1e25ad4d672e5a8eaab75cd9126ced0c151ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:78:9e:0d:6c:5c:a7:8a:e6:f0:7d:8b:d9:d5:
d8:f9:7a:ff:ed:88:2f:fc:e9:40:45:34:e9:95:e9:
d6:0c:ed:04:8a:bb:a7:49:cc:ab:d8:be:54:33:06:
b9:b5:42:db:35:a8:4d:dc:9f:9d:1a:13:0b:f1:a5:
77:67:62:8c:9d:d3:d6:1d:74:65:87:f3:5c:6a:e3:
92:0d:e4:c7:65:f0:0d:63:01:a2:0a:81:14:bf:f3:
d6:39:84:e3:80:17:ad:c1:d5:aa:39:ff:c0:0b:a6:
8c:58:a3:5e:87:c7:1d:af:38:98:89:fb:0f:53:39:
ec:8a:f2:74:30:a4:3d:4d:06:8f:70:c8:b8:a7:59:
d2:d5:71:b0:60:23:a1:d6:be:47:9b:6d:90:b2:fc:
62:95:ce:0c:e3:8c:d1:7b:0e:f7:6f:53:74:f2:b7:
02:16:46:32:81:ea:22:ef:81:05:74:7c:63:57:0d:
1b:b5:5d:0f:f3:db:82:85:49:7b:e1:2e:6e:09:84:
04:2f:cd:bd:ea:c2:27:6e:47:34:bd:9b:e5:9d:0e:
7c:fd:b9:c4:73:44:9a:1b:b5:f8:2e:19:0e:7b:7b:
c0:d0:2b:7a:72:77:c1:a1:04:79:35:73:8c:04:97:
63:7b:f3:42:d5:39:a1:c7:bc:90:77:f7:e2:76:31:
3c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B1:E2:5A:D4:D6:72:E5:A8:EA:AB:75:CD:91:26:CE:D0:C1:51:EF
X509v3 Authority Key Identifier:
keyid:0D:68:AC:C9:D6:EA:83:42:14:13:E4:CF:5A:07:37:FA:C3:17:35:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DWisydbqg0IUE-TPWgc3-sMXNSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/79e61d-9afb-4d55-94a4-4e4a5065594a/1/DWisydbqg0IUE-TPWgc3-sMXNSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:4d:f0:fa:53:0b:aa:4e:3b:fa:71:4e:18:79:e3:d0:64:7c:
d1:62:a2:0e:61:18:cd:5c:29:28:c8:80:2b:c7:00:eb:49:d4:
1b:1b:ca:54:70:66:43:51:8f:9b:bb:f2:81:bc:bb:f2:9c:a5:
3a:6e:78:29:71:db:a7:62:b5:6a:d4:b3:6b:b0:30:bb:a2:dc:
68:a4:23:e8:4c:70:14:be:f4:a9:df:a1:a6:cd:00:d3:1f:b1:
f9:c9:38:43:11:3d:78:89:a6:6c:24:cd:42:a9:22:79:6d:d7:
bc:04:94:dc:56:dc:0c:0b:31:f8:5b:1f:27:74:7c:c4:89:30:
00:d6:79:e0:91:f2:46:7f:a6:9e:9a:6b:62:8a:2d:fb:7e:60:
22:bd:51:0a:71:94:af:27:87:d1:44:a6:1f:3e:1f:26:ae:42:
9a:b4:4e:b9:57:1f:43:8f:37:f3:96:30:dd:d6:f3:4c:56:3b:
35:69:ba:85:b5:8c:44:2d:6d:76:21:81:9c:60:71:c1:ca:8f:
03:b4:b4:b5:bf:f4:dc:ed:b7:5c:90:ca:ba:3f:f8:83:96:3c:
a1:34:b7:55:12:7d:6a:a1:a5:e3:19:b4:f5:db:bd:a8:8c:77:
8f:29:2b:36:17:e8:3b:6f:d0:01:6b:a0:db:8f:50:a4:58:b0:
3a:b9:30:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:54:31 2026 by rpki-client