Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
File: WKhqbHH7c0xwW15m50rBxWu5YF4.mft (raw, json)
Hash identifier: LEsq+iE6UAym1WUW8UInb5eUO2ecTa0QCzljdTg/2tU=
Subject key identifier: E3:97:80:FC:D5:5C:FC:52:CE:76:57:AF:14:93:FF:BF:20:89:AC:43
Authority key identifier: 58:A8:6A:6C:71:FB:73:4C:70:5B:5E:66:E7:4A:C1:C5:6B:B9:60:5E
Certificate issuer: /CN=58a86a6c71fb734c705b5e66e74ac1c56bb9605e
Certificate serial: 019D39AEB09D1D5C8E81B56B656172F6F83A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
Manifest number: 0EAB
Signing time: Sun 29 Mar 2026 13:00:42 +0000
Manifest this update: Sun 29 Mar 2026 13:00:42 +0000
Manifest next update: Mon 30 Mar 2026 13:00:42 +0000
Files and hashes: 1: WKhqbHH7c0xwW15m50rBxWu5YF4.crl (hash: cIzCDuRGmID4ZH/K0fonzZufnT/InJzmKgNRH4grbw0=)
2: cbzvxlYd2Sf5BPkKpVOxRrjDUx0.roa (hash: VqP2QOQPebJ1F3l2x635f2ND94zv4XuMIM8H7AehW9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:b0:9d:1d:5c:8e:81:b5:6b:65:61:72:f6:f8:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a86a6c71fb734c705b5e66e74ac1c56bb9605e
Validity
Not Before: Mar 29 13:00:42 2026 GMT
Not After : Mar 30 13:00:42 2026 GMT
Subject: CN=e39780fcd55cfc52ce7657af1493ffbf2089ac43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:82:38:3c:bd:1d:c5:f8:e4:09:b3:04:32:74:
b9:98:be:42:dc:3e:a7:c3:62:e5:19:df:9f:54:f0:
26:b3:87:5d:b9:ef:ac:cb:b0:e4:53:cf:1b:33:d6:
61:95:2d:e2:6c:a7:cc:34:65:b1:77:cd:26:5d:c7:
2a:c5:08:a1:0b:b4:7e:ba:44:76:7d:4f:bc:e3:c1:
df:78:4b:39:88:18:d1:b7:d7:bb:1c:e1:f6:ea:0a:
a7:95:84:b4:2c:ba:b7:a9:44:98:18:06:d1:5d:e5:
ec:c2:b8:f2:b1:ab:a7:af:7c:e3:6b:71:b2:d9:50:
ed:25:00:fc:ce:c5:c8:32:3b:41:61:a0:83:87:a1:
64:30:76:60:10:0e:bc:92:4d:77:2c:06:f8:c6:86:
c6:91:4e:ff:b9:e5:13:33:f9:81:99:fc:0c:03:1c:
7e:8b:e9:b4:ea:24:bc:75:0b:c0:72:96:cb:66:0a:
be:e8:23:a9:44:6b:16:c3:56:00:a4:54:c7:62:2a:
94:72:e2:d6:15:33:f7:54:af:83:90:e5:b2:ce:e6:
4e:06:05:8f:ea:d4:3b:12:0d:09:35:c1:dd:b1:61:
76:97:e0:c2:e5:33:2d:58:db:ea:cb:75:f7:de:f4:
e5:d7:5a:a0:5f:46:58:b7:87:04:c0:21:cd:7e:ee:
da:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:97:80:FC:D5:5C:FC:52:CE:76:57:AF:14:93:FF:BF:20:89:AC:43
X509v3 Authority Key Identifier:
keyid:58:A8:6A:6C:71:FB:73:4C:70:5B:5E:66:E7:4A:C1:C5:6B:B9:60:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKhqbHH7c0xwW15m50rBxWu5YF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9c4365-a98f-43fe-9950-a9b13c2800af/1/WKhqbHH7c0xwW15m50rBxWu5YF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:68:98:14:9e:ed:cb:77:01:ee:22:0b:e2:31:14:08:e5:f6:
c2:85:70:55:55:71:f0:5d:21:f1:8f:44:ed:20:1d:0e:23:15:
54:58:08:a6:fe:5c:5e:bc:d5:3e:80:7f:a6:02:a1:ff:36:c4:
3d:95:47:2a:96:01:53:fe:bf:a2:57:54:1a:7a:8f:71:3e:17:
71:f8:63:87:5b:e0:db:3c:e2:fc:4d:1a:ff:cc:cf:4f:a0:f6:
06:52:7c:68:fb:b1:ba:81:30:af:ef:b9:ec:b1:bc:38:eb:b5:
6c:cc:a4:c6:a5:75:cb:f1:4c:2c:19:58:04:42:d8:9f:d5:57:
ce:98:1b:27:0a:9d:e2:38:5b:96:78:3d:a2:55:c3:9e:11:91:
b6:bc:02:35:30:0c:25:6b:a0:e0:f8:f8:c6:7b:b2:9c:a6:fc:
3a:b0:cb:68:e1:eb:71:bb:d8:10:98:4d:ba:0f:e0:eb:36:81:
ee:4c:78:d3:6e:7d:13:a2:c1:0b:00:15:0e:4f:ba:1b:cf:e8:
04:0f:50:ac:93:14:06:ac:be:8d:53:32:7c:1a:dd:3c:7a:4a:
eb:7e:f5:22:37:0f:09:af:e8:4d:5a:a9:6d:47:98:c4:54:0c:
0d:b1:ba:a7:24:03:06:cb:ed:29:24:97:62:37:7d:4f:87:ef:
b5:89:d5:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rrCdHVyOgbVrZWFy9vg6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YTg2YTZjNzFmYjczNGM3MDViNWU2NmU3NGFjMWM1NmJi
OTYwNWUwHhcNMjYwMzI5MTMwMDQyWhcNMjYwMzMwMTMwMDQyWjAzMTEwLwYDVQQD
EyhlMzk3ODBmY2Q1NWNmYzUyY2U3NjU3YWYxNDkzZmZiZjIwODlhYzQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu4I4PL0dxfjkCbMEMnS5mL5C3D6n
w2LlGd+fVPAms4ddue+sy7DkU88bM9ZhlS3ibKfMNGWxd80mXccqxQihC7R+ukR2
fU+848HfeEs5iBjRt9e7HOH26gqnlYS0LLq3qUSYGAbRXeXswrjysaunr3zja3Gy
2VDtJQD8zsXIMjtBYaCDh6FkMHZgEA68kk13LAb4xobGkU7/ueUTM/mBmfwMAxx+
i+m06iS8dQvAcpbLZgq+6COpRGsWw1YApFTHYiqUcuLWFTP3VK+DkOWyzuZOBgWP
6tQ7Eg0JNcHdsWF2l+DC5TMtWNvqy3X33vTl11qgX0ZYt4cEwCHNfu7abQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOOXgPzVXPxSznZXrxST/78giaxDMB8GA1UdIwQY
MBaAFFioamxx+3NMcFteZudKwcVruWBeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0tocWJISDdjMHh3VzE1bTUwckJ4V3U1WUY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS85YzQzNjUtYTk4Zi00M2ZlLTk5NTAt
YTliMTNjMjgwMGFmLzEvV0tocWJISDdjMHh3VzE1bTUwckJ4V3U1WUY0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS85YzQzNjUtYTk4Zi00M2ZlLTk5NTAtYTliMTNjMjgwMGFm
LzEvV0tocWJISDdjMHh3VzE1bTUwckJ4V3U1WUY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb2iYFJ7t
y3cB7iIL4jEUCOX2woVwVVVx8F0h8Y9E7SAdDiMVVFgIpv5cXrzVPoB/pgKh/zbE
PZVHKpYBU/6/oldUGnqPcT4Xcfhjh1vg2zzi/E0a/8zPT6D2BlJ8aPuxuoEwr++5
7LG8OOu1bMykxqV1y/FMLBlYBELYn9VXzpgbJwqd4jhblng9olXDnhGRtrwCNTAM
JWug4Pj4xnuynKb8OrDLaOHrcbvYEJhNug/g6zaB7kx40259E6LBCwAVDk+6G8/o
BA9QrJMUBqy+jVMyfBrdPHpK6371IjcPCa/oTVqpbUeYxFQMDbG6pyQDBsvtKSSX
Yjd9T4fvtYnVbg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:28:01 2026 by rpki-client