Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: xMOnRPosmEo+cdStpCJd5Zzdod7iLsZzGtU8NJJeznM=
Subject key identifier: 12:61:CF:DD:64:7B:64:6B:A6:AD:52:2C:29:17:9D:B3:2F:67:37:E2
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 019CE6DA9F15C716B7EB21E320502D0FB863
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 05B6
Signing time: Fri 13 Mar 2026 11:00:13 +0000
Manifest this update: Fri 13 Mar 2026 11:00:13 +0000
Manifest next update: Sat 14 Mar 2026 11:00:13 +0000
Files and hashes: 1: _3SsPoZz4ndBlE9FKTU4o6A47bQ.roa (hash: YLTYKbUjdWoX7zGu97DHQcaZdG5VUWTXRbFjuRFb06w=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: t8gg5WwF4SRCroo7KSmoE4oAkbq+uGOtjHLo4fSD9jI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:da:9f:15:c7:16:b7:eb:21:e3:20:50:2d:0f:b8:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Mar 13 11:00:13 2026 GMT
Not After : Mar 14 11:00:13 2026 GMT
Subject: CN=1261cfdd647b646ba6ad522c29179db32f6737e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:05:cf:47:c5:c5:a5:58:41:1c:b2:93:c7:3b:
65:d9:c7:3b:ad:56:94:bc:01:29:f4:25:08:85:7e:
81:1d:c5:a9:ef:ca:79:99:7c:e4:ad:00:b4:0b:79:
0c:3a:f1:a5:4a:27:8b:45:66:7f:9d:3a:4a:ee:00:
6f:4e:d3:35:85:5d:17:50:ca:8c:ba:3d:45:9a:b3:
e2:59:21:17:66:7a:c8:b7:1d:1f:9d:bc:b4:24:fa:
7e:a1:a4:17:53:42:cb:4a:5a:ec:76:26:9d:15:7c:
18:bd:c0:71:dd:50:a3:e2:ae:ff:8b:68:76:16:1e:
9a:06:d1:0e:20:fd:2e:4a:5a:f9:7d:cf:7b:10:a3:
13:52:e1:1c:16:3b:81:73:16:cf:33:cf:2b:26:89:
6b:41:3e:34:e6:1f:81:1e:22:84:0b:86:00:f1:40:
1d:97:d7:23:6d:09:2e:0f:6f:64:f9:f3:85:9f:80:
58:5a:f9:30:c9:1d:9a:1e:9a:29:2a:e6:af:ae:0d:
9f:43:83:f5:d1:ad:63:11:00:89:4b:b9:2d:c7:6a:
c8:72:de:9a:9d:29:6c:b3:e4:40:12:a5:1e:df:61:
77:2a:e1:a4:4f:06:f7:5b:a4:66:2e:f1:b0:4d:27:
9a:b9:1c:06:ea:f5:e6:ef:30:d4:c3:5a:2a:82:28:
37:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:61:CF:DD:64:7B:64:6B:A6:AD:52:2C:29:17:9D:B3:2F:67:37:E2
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:9b:19:6a:a3:ea:3c:f9:84:7a:a4:5a:b3:14:65:9d:34:09:
75:d4:3d:31:1c:17:7c:90:0a:21:9b:98:0d:64:0c:4d:cc:14:
80:2d:09:3f:e1:65:8d:21:6f:9a:da:73:4b:e4:34:40:24:bf:
b4:dd:68:ea:b5:f6:69:f9:51:ef:1c:5d:1b:6c:6e:d6:1e:2c:
6b:fe:d0:21:a3:9e:2f:1d:21:b1:9a:31:a7:7a:4b:6b:93:f9:
53:dc:60:4d:5b:ec:3d:74:30:95:00:e6:74:31:e6:b2:e4:0f:
7a:b3:06:d0:fe:79:c1:ef:d6:f2:dd:d9:10:fc:e9:30:e7:50:
71:03:8d:8f:9f:27:9e:96:ee:53:24:73:f8:b0:73:22:39:40:
58:0b:48:3b:01:8b:5c:7b:86:cb:2f:e2:52:1a:fd:f5:0c:98:
89:36:2d:33:1e:4e:54:75:56:98:8f:d3:39:1c:4d:16:5c:2f:
01:85:32:13:fe:64:e3:bd:9f:7d:3a:b1:01:ce:eb:92:b3:da:
6d:12:8a:a1:30:13:c8:19:ec:2c:33:11:12:7c:1c:6c:75:5e:
a3:2e:92:74:b0:cb:cd:66:1a:8a:35:98:44:14:06:2f:cc:1c:
5d:c3:67:be:fb:39:37:5f:5d:47:61:30:d4:3c:ff:67:44:5f:
44:2e:37:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 17:59:44 2026 by rpki-client