Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: 2DCc3aT7CVVO19sRIbs0pdQU1Y75pOZgekI+dQfxJ/k=
Subject key identifier: A6:E5:1A:E7:B1:8C:83:D4:95:A4:F8:46:03:AC:3A:43:66:90:3F:E3
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 019DD087EEBAFB9B71A422B04BA7E937D30F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 062F
Signing time: Mon 27 Apr 2026 20:01:02 +0000
Manifest this update: Mon 27 Apr 2026 20:01:02 +0000
Manifest next update: Tue 28 Apr 2026 20:01:02 +0000
Files and hashes: 1: _3SsPoZz4ndBlE9FKTU4o6A47bQ.roa (hash: YLTYKbUjdWoX7zGu97DHQcaZdG5VUWTXRbFjuRFb06w=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: PZyKatFpU0/ChgVU3wcvX9KicVtnje3/gi5bFfzQrcQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:87:ee:ba:fb:9b:71:a4:22:b0:4b:a7:e9:37:d3:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Apr 27 20:01:02 2026 GMT
Not After : Apr 28 20:01:02 2026 GMT
Subject: CN=a6e51ae7b18c83d495a4f84603ac3a4366903fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:dc:62:10:0b:d7:d4:b9:9a:90:49:39:09:e3:
46:fe:fe:07:41:14:d0:2d:44:cc:5a:f8:c4:5a:e1:
93:07:09:54:f1:bd:c6:b7:27:a8:87:dc:39:89:13:
57:0f:3b:40:47:3a:a3:aa:da:af:a3:81:23:f8:6d:
c2:e1:e3:e2:7d:e3:e1:53:71:11:b0:cd:cd:18:cb:
ec:62:91:ea:26:6e:11:74:33:ae:c7:58:6a:a8:50:
c7:bd:83:c9:bc:1e:39:ae:5f:3b:2d:d4:64:13:7c:
fa:88:bf:ae:7c:d4:25:aa:46:4e:62:40:21:5c:b0:
0e:7b:13:bd:61:44:67:23:a7:15:42:fa:99:69:1b:
4a:9a:f9:b8:a5:1c:ca:91:73:b4:ff:c3:af:8e:cf:
1a:8c:7e:2b:41:35:12:fc:60:30:0a:78:c7:9f:56:
cd:0a:16:54:00:79:0c:ae:dd:f3:15:ff:7c:0d:c2:
77:f3:27:c6:45:28:a8:43:8b:6f:f2:39:70:a1:78:
e4:1d:dd:e9:39:e2:35:43:18:9d:52:51:c4:e5:80:
a2:7f:4b:24:a2:62:f5:d2:8e:70:5f:82:ef:1f:c0:
f9:0a:a9:44:32:5b:04:29:d8:67:e0:71:90:a0:46:
09:10:44:80:c6:62:de:02:53:f4:51:f0:6a:43:1d:
4d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E5:1A:E7:B1:8C:83:D4:95:A4:F8:46:03:AC:3A:43:66:90:3F:E3
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:6a:5c:a0:d2:e0:82:87:75:2f:a0:37:1b:6e:40:2f:8e:4d:
78:4a:86:19:ef:ec:85:66:70:7c:64:c8:ef:0f:ce:db:b8:84:
e7:95:cc:d3:8f:90:2a:3a:02:33:e2:40:d3:51:b5:28:e3:93:
03:d1:0b:ff:4f:0f:78:9b:e5:f6:0f:76:fc:c4:35:9a:6d:aa:
12:1b:3f:3f:f7:ef:1c:95:5b:3d:ca:76:c5:f6:ce:26:0e:b8:
00:b9:c9:98:9a:13:64:e5:5b:5b:5f:af:cc:f2:97:44:ca:f9:
57:f2:27:b2:3c:f1:0a:5f:f6:d5:15:96:7a:94:7c:b1:93:54:
44:18:17:97:d3:13:a0:9d:5f:c6:13:6c:15:4c:7f:0c:31:dd:
cc:c8:9a:25:c7:52:29:4c:2a:d3:b1:cd:f4:a6:a8:89:57:12:
18:04:72:8e:d1:3b:6f:61:05:36:ec:1b:24:15:ba:03:3a:b3:
0c:a8:81:72:8e:f8:9f:ed:20:79:57:17:a2:11:f7:7a:6f:e3:
a8:3f:f9:39:29:58:40:8b:c7:cc:08:a3:8c:a2:e1:09:ea:22:
5c:5a:e9:ac:3c:19:5b:d2:ce:5e:f9:6c:ab:12:a6:f4:7e:73:
93:09:b4:b6:35:6e:59:6e:7b:97:f6:b5:78:ce:d4:4e:ec:13:
07:d3:c4:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 23:16:22 2026 by rpki-client