Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.mft
File: rwmHHP1haABnerIynsumHed3V-Y.mft (raw, json)
Hash identifier: FQB97qImW7KktYLsDdA+wbORzPxu1WlYoygm+NT6Z4A=
Subject key identifier: E6:21:9C:55:8B:E5:E3:A0:0A:36:AF:36:BD:E9:7E:A1:31:EA:A4:F6
Authority key identifier: AF:09:87:1C:FD:61:68:00:67:7A:B2:32:9E:CB:A6:1D:E7:77:57:E6
Certificate issuer: /CN=af09871cfd616800677ab2329ecba61de77757e6
Certificate serial: 019D37C07662F16055309396F36E2FDD438A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwmHHP1haABnerIynsumHed3V-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.mft
Manifest number: 03F7
Signing time: Sun 29 Mar 2026 04:00:53 +0000
Manifest this update: Sun 29 Mar 2026 04:00:53 +0000
Manifest next update: Mon 30 Mar 2026 04:00:53 +0000
Files and hashes: 1: rwmHHP1haABnerIynsumHed3V-Y.crl (hash: gv/jUsXtyq0TGBGCsN8Slns+l67zyrf0XWE9wju0M98=)
2: sFH6tWzzYMXYUh7zqttZsCWMvMI.roa (hash: rMgpOgG2cc64wCq+Cnj2ujaXEIMlsqr7PQwXm/GHr1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwmHHP1haABnerIynsumHed3V-Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:76:62:f1:60:55:30:93:96:f3:6e:2f:dd:43:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af09871cfd616800677ab2329ecba61de77757e6
Validity
Not Before: Mar 29 04:00:53 2026 GMT
Not After : Mar 30 04:00:53 2026 GMT
Subject: CN=e6219c558be5e3a00a36af36bde97ea131eaa4f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:07:72:17:28:18:fd:15:c5:d4:ed:f4:ec:af:
ac:4c:6c:21:68:99:4e:a1:f5:7f:77:fe:b0:d3:d3:
27:43:d2:2c:fb:cf:d4:08:ac:47:9c:95:2b:ee:4d:
9e:32:63:0c:bb:26:bb:60:e1:71:00:68:77:3f:26:
e3:de:b2:c1:fc:87:58:34:eb:db:01:62:55:f8:cd:
dd:f3:9c:b3:74:92:b9:40:34:e5:3d:b1:05:5e:ad:
4e:d0:ac:71:2f:f8:4c:c8:ea:a4:03:0c:4f:46:5b:
3d:44:cc:85:ac:1a:20:99:e6:25:c3:72:73:59:01:
20:d0:34:6a:40:4e:ce:29:57:17:f4:1b:64:2f:19:
de:1e:7c:18:14:ba:4e:4c:38:90:4b:ed:33:42:f2:
32:60:0b:45:d3:ce:88:64:a0:09:7b:bf:1f:ca:b4:
13:5c:15:bf:55:41:dc:55:e1:80:f6:0a:3a:66:35:
9e:2a:8c:79:1c:37:79:3d:0e:93:70:d5:79:33:7d:
60:b5:98:10:fd:3a:3b:d8:db:2d:e3:ee:ec:63:70:
a2:e5:d5:97:8f:c2:2d:84:90:07:45:cd:ce:5a:a1:
43:8d:a9:58:84:7f:cb:a7:bf:fb:cc:4d:b6:a1:3d:
b8:78:e7:d0:a5:24:95:d4:6b:ca:6a:dc:70:25:d9:
25:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:21:9C:55:8B:E5:E3:A0:0A:36:AF:36:BD:E9:7E:A1:31:EA:A4:F6
X509v3 Authority Key Identifier:
keyid:AF:09:87:1C:FD:61:68:00:67:7A:B2:32:9E:CB:A6:1D:E7:77:57:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwmHHP1haABnerIynsumHed3V-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/8ad9b3-0b9f-4224-909b-b43dbf895cfe/1/rwmHHP1haABnerIynsumHed3V-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:fa:b6:ee:eb:e0:02:28:fe:58:2a:6b:2f:9e:9a:28:ba:a9:
b4:72:6a:0c:56:0c:17:df:cd:9d:6d:54:0d:73:4e:4d:b3:51:
23:96:da:7d:13:48:e6:00:b9:cb:34:20:d1:a8:c6:7f:cc:99:
05:35:d5:4a:d4:f2:d4:cd:d0:b7:13:17:a5:7b:58:ea:95:cb:
0e:ea:ec:96:5e:04:9f:e4:c6:0f:97:79:4c:c3:f2:0f:96:f6:
a7:f5:6e:4f:2e:08:2b:75:db:27:01:81:8e:db:21:5c:d1:46:
8c:e2:4f:34:b5:e2:28:2f:c4:ea:3c:4f:5a:de:28:dd:a4:86:
23:d8:18:3f:59:73:53:e0:56:7d:f0:fe:f3:5a:6c:90:54:98:
07:14:70:8a:38:28:5c:c7:d5:2d:96:63:2d:55:8d:8a:1d:e8:
c5:86:19:6e:51:cc:e4:8f:54:ad:a5:d4:8f:20:f9:90:46:1f:
e6:4d:67:40:7f:c3:e0:5b:00:48:88:11:a1:0d:81:99:c6:18:
d8:47:e4:e6:27:3b:dd:47:75:e4:a9:f4:3f:d3:1e:65:91:c2:
2a:56:31:e8:e5:e6:c8:c2:be:43:ce:bb:af:2c:39:2b:9e:f8:
d6:9e:34:da:64:ac:1e:65:c8:a3:99:9c:99:05:09:b2:98:52:
db:3a:e0:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:41 2026 by rpki-client