Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
File: WqKpJUebz8vBloipUqJDAfTnaDk.mft (raw, json)
Hash identifier: dN9xg1LH9Y7pOoacAk0zKULHJwGDhXWxjPrKM3q78NM=
Subject key identifier: 86:ED:53:6B:42:BE:6D:0E:0C:C8:5F:98:11:B8:EC:8A:E7:BD:65:78
Authority key identifier: 5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39
Certificate issuer: /CN=5aa2a925479bcfcbc19688a952a24301f4e76839
Certificate serial: 019D3753350F8DF219B39EE586937BE15B6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
Manifest number: 09E6
Signing time: Sun 29 Mar 2026 02:01:33 +0000
Manifest this update: Sun 29 Mar 2026 02:01:33 +0000
Manifest next update: Mon 30 Mar 2026 02:01:33 +0000
Files and hashes: 1: Kri8lcqdAC5Txkl5fI-cqACqq6c.roa (hash: J1QbpgXMbeBVuARIX0Ol8v/rcfJIXCmPbQPctcPNzxM=)
2: WqKpJUebz8vBloipUqJDAfTnaDk.crl (hash: oLOmyZ5DZ8SzzBCz4mSkjTo2iV24Mt4I/UoHErvn680=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:35:0f:8d:f2:19:b3:9e:e5:86:93:7b:e1:5b:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aa2a925479bcfcbc19688a952a24301f4e76839
Validity
Not Before: Mar 29 02:01:33 2026 GMT
Not After : Mar 30 02:01:33 2026 GMT
Subject: CN=86ed536b42be6d0e0cc85f9811b8ec8ae7bd6578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:e3:fd:d5:2e:55:b6:ed:bc:dc:b9:1b:89:d4:
85:fe:fc:f2:c3:f7:58:80:d8:41:43:5b:c0:ac:c6:
85:9f:f5:03:ad:43:e3:3c:9a:ae:c2:8e:5b:5c:2c:
fb:8d:3d:4b:36:36:18:36:47:5d:8a:38:d6:75:91:
11:fd:86:ee:0f:e6:0d:12:66:69:c3:15:c3:38:ab:
95:f9:46:c0:ba:c5:5c:d0:02:f5:4e:fe:9c:74:97:
8e:43:ce:ca:49:91:e3:f2:0d:e2:f5:58:01:8a:ec:
fb:3b:89:21:ba:16:ee:98:ed:68:eb:8c:fd:cb:ca:
d7:9f:7f:4a:bf:49:e4:c5:47:bd:20:f6:05:a2:7e:
41:ce:25:af:5a:32:e4:b5:e8:3b:60:1e:12:51:de:
b1:fc:09:30:1f:53:09:47:53:44:67:37:c9:e9:30:
33:10:33:4f:1b:80:73:f4:7d:4d:c1:72:e6:87:21:
85:a4:81:a0:95:16:ad:ca:e9:d5:04:36:14:86:9a:
49:c3:e4:c3:09:e6:b6:45:97:a7:aa:18:89:c0:2f:
2a:de:be:39:61:cc:04:c2:04:9a:95:7d:4c:4a:eb:
55:34:fc:4a:e1:c0:a1:30:49:68:a2:1f:01:a8:67:
14:f0:ce:95:bb:35:ee:94:c2:3c:3c:c2:1f:3c:2b:
49:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:ED:53:6B:42:BE:6D:0E:0C:C8:5F:98:11:B8:EC:8A:E7:BD:65:78
X509v3 Authority Key Identifier:
keyid:5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:43:fc:b7:ae:5d:5c:fd:67:6e:1a:d9:90:48:bc:d7:6e:6f:
6c:19:3b:d9:58:51:50:cb:5a:21:73:78:4c:0c:1a:0f:4a:4f:
96:fd:85:69:7d:0d:46:3d:77:bd:ee:81:f7:65:5f:07:f9:35:
26:d8:ef:f4:a0:2e:1d:98:28:47:89:7e:dc:1a:b1:da:b5:aa:
c5:0d:99:17:fa:8a:91:eb:e6:9b:fe:0e:84:fd:2c:9d:06:11:
45:ac:bf:2f:c3:a4:00:09:71:a3:e9:d9:3c:e0:20:bf:1e:60:
8d:a0:65:b4:c3:ab:4f:93:b1:c4:ab:c7:6c:0c:7f:8f:09:39:
db:d8:02:1f:7a:67:c2:79:81:2b:16:64:90:4b:3c:d6:6e:66:
a3:32:91:49:f7:09:15:79:c2:b8:c3:e8:c0:78:41:c1:9d:e2:
0c:6d:98:d5:56:9d:8d:d9:79:79:ae:79:b3:4b:6c:ea:16:e9:
58:70:c0:ca:75:59:fa:1a:68:30:ae:39:99:26:24:fb:8b:b2:
00:1d:df:dc:0c:fa:ce:e0:c5:1b:bf:20:93:92:72:b2:51:65:
b7:71:0c:d3:21:ce:e4:88:63:0a:c3:52:48:b8:ce:b2:c1:76:
8d:41:cd:3d:93:9e:ee:00:e4:5e:a9:72:c9:bd:d1:e8:9a:cb:
ad:74:be:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:53 2026 by rpki-client