Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: w8Ek4hSZ3w5PoT6y2I2BTP5rGSVUVpw0nMup0R1ZbPM=
Subject key identifier: B7:BB:33:D3:A5:C2:09:02:7C:FA:10:A4:B0:DA:AD:3C:38:06:72:6D
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 019EB957FFEC7F490ADA91F6D5836E1F65BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 06A8
Signing time: Fri 12 Jun 2026 01:00:12 +0000
Manifest this update: Fri 12 Jun 2026 01:00:12 +0000
Manifest next update: Sat 13 Jun 2026 01:00:12 +0000
Files and hashes: 1: 9aRTzcNv5guAsQiFnGIvU6cyVjw.roa (hash: yxAswLOvy7NpNtBGcnZYbW1+LR5oOn3Rqal1sA9FoVg=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: jJV14rdnWMG6r0TCck5i+Y+Rlg7uNcpbvo/VERZ7m3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 01:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:57:ff:ec:7f:49:0a:da:91:f6:d5:83:6e:1f:65:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Jun 12 01:00:12 2026 GMT
Not After : Jun 13 01:00:12 2026 GMT
Subject: CN=b7bb33d3a5c209027cfa10a4b0daad3c3806726d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:22:f9:8d:55:c9:3a:41:cb:a9:3c:07:9e:64:
7b:98:25:1e:7e:0d:a4:36:a5:a3:4c:89:da:2b:6b:
a8:1d:96:08:c1:78:db:4c:b1:f9:d7:69:23:e0:dc:
80:63:af:3f:e9:fb:40:93:cb:ec:ac:e4:7f:e4:4a:
49:1c:20:33:b6:88:62:5f:15:e6:91:35:7b:84:0e:
14:1d:7f:7b:84:c2:20:1f:45:c2:b7:f5:41:6d:2f:
01:00:35:36:c4:c6:17:0e:dc:84:c4:ff:6a:0c:09:
c8:52:4a:51:cd:0f:fe:2f:4d:40:a2:dc:dd:fa:3c:
cf:03:4d:de:b5:06:aa:02:f4:f2:b8:ed:94:c3:bc:
35:c3:e7:c8:82:21:49:81:ef:7a:8a:aa:c4:02:b3:
99:32:52:5a:18:7e:85:68:44:c1:be:48:1d:5d:de:
cd:1b:98:40:1c:e1:11:10:0b:82:b5:06:7c:5c:97:
2f:1f:59:a5:44:d0:aa:ea:98:10:59:64:30:a7:be:
53:fd:c9:3a:f8:c2:7d:bd:93:bc:c3:a1:ff:20:93:
10:ca:55:ef:fa:10:d5:47:b4:b4:80:57:73:95:9f:
9b:42:ce:0b:ec:ba:46:45:74:9e:9b:62:b9:41:93:
91:c6:54:cc:77:ce:57:73:d5:5e:30:68:91:6e:7b:
b3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:BB:33:D3:A5:C2:09:02:7C:FA:10:A4:B0:DA:AD:3C:38:06:72:6D
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:a5:67:4e:02:e8:9a:a6:46:bc:14:6e:0d:0d:f6:a4:61:7e:
94:82:ba:a4:ae:d5:ff:99:39:75:d5:33:2a:24:8b:3f:94:0e:
34:43:fe:21:2e:5e:06:ec:7d:63:04:08:c5:13:03:a7:ea:c9:
f4:37:eb:f6:c4:13:c3:e4:bc:14:ff:78:a5:ea:02:c4:d0:9f:
a1:3c:d4:0f:df:86:5a:06:73:4e:d1:d5:c5:d2:1a:01:0d:0a:
62:55:d1:c9:c7:84:d8:61:8f:f9:fa:44:25:94:ba:e9:90:5c:
56:c8:e5:38:6e:62:40:42:62:ca:94:c8:03:7c:f1:20:2b:85:
e6:13:34:45:0d:cd:82:1e:ab:da:5d:73:eb:fc:61:69:de:2b:
33:13:56:c5:fd:11:12:14:1e:b8:ff:d6:ed:46:55:4b:70:8c:
68:3a:c8:71:94:84:91:5e:ec:57:dc:af:fa:29:21:a8:5d:bb:
ae:f2:a9:97:3d:8b:b6:c9:08:ee:9b:5a:a2:dd:40:9a:64:90:
16:78:5f:c1:b7:6e:54:17:45:2b:2c:94:f7:23:92:9c:c3:74:
61:1f:70:60:36:d8:84:ad:82:05:df:3f:a4:79:1f:96:6f:04:
9a:eb:6e:8d:3f:8c:1c:17:0b:52:f5:7b:61:46:50:01:fe:c6:
64:98:e6:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 10:57:30 2026 by rpki-client