Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File: WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier: 6dBHseQ3h3w+IvX/6eot8sGGeQq+AJPJYhc0VWESh20=
Subject key identifier: C6:19:4C:76:E9:33:31:B7:C0:0D:C8:F4:60:D0:8B:9C:36:6D:96:1D
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer: /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial: 019D2E8622385BCDCBBB181C7BCB8C520594
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number: 0DD9
Signing time: Fri 27 Mar 2026 09:00:35 +0000
Manifest this update: Fri 27 Mar 2026 09:00:35 +0000
Manifest next update: Sat 28 Mar 2026 09:00:35 +0000
Files and hashes: 1: 24BGrstatddE0NyJ9qN4s0D1NFI.roa (hash: EPL27sc3ORpLwbEuXhoxlqkF4dPOLK+8gemHJMTBg/w=)
2: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: q4IeJceeyBUhCqHoiTEd16miarWxJBL/zDJNZFMn4PA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Mar 2026 09:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2e:86:22:38:5b:cd:cb:bb:18:1c:7b:cb:8c:52:05:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
Validity
Not Before: Mar 27 09:00:35 2026 GMT
Not After : Mar 28 09:00:35 2026 GMT
Subject: CN=c6194c76e93331b7c00dc8f460d08b9c366d961d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:77:9c:5d:2a:a2:5b:07:b3:1a:ba:ea:cf:0a:
5e:2e:93:a8:e1:7c:4a:0b:2e:53:13:c0:33:35:6c:
ec:f5:26:1b:10:94:a1:a1:5b:6f:49:f2:c7:bd:0a:
53:c1:96:64:da:45:96:52:90:a0:8e:43:5a:24:ad:
f4:2b:23:6a:49:dd:b2:dd:65:07:29:6f:f6:72:34:
92:fd:92:2e:10:b0:95:d5:30:52:d3:b4:00:95:5d:
15:80:29:07:7c:1c:8b:9d:83:98:e6:3c:34:22:dd:
69:5b:3d:12:f1:71:df:f2:f0:f7:84:4b:55:ed:23:
f5:30:f0:cb:eb:c0:00:3b:be:03:30:9c:7c:86:16:
04:05:43:b5:23:9d:18:3a:ff:2a:af:34:91:4b:f6:
0e:f5:46:f1:3e:0b:01:e3:89:63:52:7d:8c:75:ca:
34:d5:8b:da:be:5e:e1:1a:ed:90:33:cd:63:2b:e6:
e0:be:c6:55:28:6a:70:cd:2b:c3:af:f5:8b:fb:65:
fa:82:35:e4:55:77:bd:5f:cf:bc:63:d0:21:eb:e0:
ab:69:1f:3d:d0:bc:5c:64:59:27:bd:e2:0c:a9:e9:
96:34:45:28:cd:8d:2c:00:b1:6b:df:5f:20:b6:97:
aa:5f:0d:d0:8d:1d:2c:82:92:bc:d1:a9:1a:22:45:
c4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:19:4C:76:E9:33:31:B7:C0:0D:C8:F4:60:D0:8B:9C:36:6D:96:1D
X509v3 Authority Key Identifier:
keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:c6:0c:53:71:58:92:89:84:c1:21:53:aa:59:59:5d:b6:fc:
91:8c:c0:76:0d:e2:58:fd:28:a5:0f:e9:a6:6c:39:74:ee:68:
68:f4:fb:65:d1:f5:77:91:cf:94:85:a7:23:95:bd:13:2a:6b:
7d:6e:86:27:cc:1c:da:f5:21:a4:a7:c8:3f:ae:53:0b:1f:b8:
b6:d0:a3:7d:35:61:58:f0:37:ce:62:ae:78:dc:a0:2c:65:0b:
54:9d:39:1e:65:d2:07:9a:39:8a:d4:29:e4:14:c9:f0:f4:ef:
9c:7f:e7:6d:7c:15:bd:57:92:e0:73:a0:10:84:a3:27:4b:f3:
02:e4:8a:b2:6c:2d:21:1c:f9:c3:31:fd:f8:3b:7a:ce:90:59:
72:30:80:b6:98:f4:f0:7c:fb:f8:dd:92:f7:55:0c:70:c2:a4:
b9:13:ab:9e:eb:16:a1:8e:f0:18:8d:53:bc:c0:93:10:cc:47:
f4:9f:21:3f:64:84:78:91:7c:a1:e7:8e:83:c7:04:c1:d3:44:
f9:ec:82:39:33:2d:20:2f:05:28:aa:c3:57:97:e1:4e:a4:1d:
f3:4a:77:cf:d8:7c:7b:48:b5:1f:a3:29:d2:9a:2e:31:84:8b:
f9:50:8b:60:af:99:a2:b0:41:c5:75:6f:3f:93:ce:a3:be:84:
3e:29:6f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 16:10:18 2026 by rpki-client