Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
File: WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft (raw, json)
Hash identifier: Km12kP2Htrnk8YVQugjGCNdunw+qQSR7JZgioPB7xpU=
Subject key identifier: D0:94:87:B9:59:29:69:0A:3F:10:62:DA:A7:E7:72:E7:EF:06:E9:F6
Authority key identifier: 58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
Certificate issuer: /CN=58a763f0c467abaa701d968c3749c6dad03489b0
Certificate serial: 019F111C8233978635AA7753DAAB96EE4331
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
Manifest number: 0ED5
Signing time: Mon 29 Jun 2026 02:01:48 +0000
Manifest this update: Mon 29 Jun 2026 02:01:48 +0000
Manifest next update: Tue 30 Jun 2026 02:01:48 +0000
Files and hashes: 1: 24BGrstatddE0NyJ9qN4s0D1NFI.roa (hash: EPL27sc3ORpLwbEuXhoxlqkF4dPOLK+8gemHJMTBg/w=)
2: BDv1bnHvaLtWajfUeKcw3pIG_Ok.roa (hash: 69EUlopn2Prmu5cUFMolg4m3eko2E4egAqnT2et0qIE=)
3: WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl (hash: JTk1v4njT9alf8V+3UqMgtWpRrihxsCsOY/+AVf/8b8=)
4: iJ3WgjgFEAi8vZEcelv2BFolSMQ.roa (hash: xF5xxRJQhjYLAPfqm08FLfFdw32MCFAn76S/7dzgOl4=)
5: r_8bT90UjcZl-MvxK-5tmdznS1I.roa (hash: +kBFEQDnTe7FZB/GY9jWIpmDn/+p706IcANeKk3b/o4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:1c:82:33:97:86:35:aa:77:53:da:ab:96:ee:43:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a763f0c467abaa701d968c3749c6dad03489b0
Validity
Not Before: Jun 29 02:01:48 2026 GMT
Not After : Jun 30 02:01:48 2026 GMT
Subject: CN=d09487b95929690a3f1062daa7e772e7ef06e9f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b8:64:32:ff:56:19:44:92:42:c9:a7:c1:da:
5d:eb:e9:0d:7b:34:e3:d6:6c:fb:c8:17:3c:4b:1f:
c8:58:71:3e:c2:35:f3:63:7f:7e:08:61:50:99:37:
a1:bb:fc:61:10:99:89:38:4e:71:6e:51:d9:5a:ee:
74:38:de:7f:94:04:68:6a:ee:81:5a:8d:1b:0c:3a:
28:d8:49:0f:96:a6:c7:ab:07:fd:a1:a0:40:33:7f:
a5:41:dc:e4:30:b6:9f:69:af:85:cf:49:7e:23:e1:
31:59:7b:23:88:73:ff:45:f4:3d:ae:02:11:1c:94:
b2:30:75:34:04:f9:74:97:9b:9d:16:05:3a:97:87:
b5:2c:e3:cb:d5:9e:34:5e:89:6d:4c:93:d2:b9:9e:
62:24:71:9f:c1:b2:54:b8:2f:f6:0f:82:b2:24:35:
7c:42:f8:45:84:96:fd:e9:06:91:b8:d1:b7:71:e4:
fa:71:48:f4:0f:4b:57:55:e2:38:36:dd:89:1b:0e:
a5:06:5e:f3:d7:49:26:11:92:81:db:fe:76:97:d6:
06:93:df:6d:bb:04:cb:08:3c:09:bd:e7:81:d5:56:
ad:fe:23:3f:c7:dc:ff:a3:ea:bc:ef:bb:1b:b9:58:
e0:b7:3b:93:56:d0:17:7b:3b:54:10:8e:41:6d:94:
1d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:94:87:B9:59:29:69:0A:3F:10:62:DA:A7:E7:72:E7:EF:06:E9:F6
X509v3 Authority Key Identifier:
keyid:58:A7:63:F0:C4:67:AB:AA:70:1D:96:8C:37:49:C6:DA:D0:34:89:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKdj8MRnq6pwHZaMN0nG2tA0ibA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5d6491-08ff-494d-8433-098f7c5fd975/1/WKdj8MRnq6pwHZaMN0nG2tA0ibA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:49:59:0f:f2:18:c6:44:9e:29:1e:1a:84:5c:57:02:e5:53:
a0:80:e4:9e:b3:48:23:d8:3d:cb:1d:0a:2f:a3:4b:1f:da:d6:
ed:ca:d5:c7:8d:c9:45:77:7a:c6:c5:38:c5:f9:f1:33:2b:02:
6c:48:bc:17:21:90:fe:0f:42:f5:76:2f:bf:85:66:42:06:6b:
20:34:c1:f6:7c:0f:3b:9f:5c:45:5c:65:6c:6f:3e:9e:d1:7e:
d8:d2:86:ee:50:6a:0e:c6:1d:7f:c4:4d:ab:aa:62:2f:4b:41:
c9:9d:e6:be:98:c9:e0:60:16:85:f5:24:a5:10:08:c3:c8:ba:
56:1b:b6:4e:c2:5e:37:61:21:ac:7c:59:ba:df:d6:6e:f0:6f:
9d:be:86:bf:84:e8:51:85:c6:a3:e1:f3:16:4a:ea:64:65:13:
bd:5c:9d:95:7e:28:71:14:fb:3d:ad:8f:6b:1b:4b:58:06:7c:
52:4c:5f:49:50:4e:c4:ef:e5:fc:c2:b6:b2:34:61:78:e1:fe:
40:3d:bf:9f:69:b7:21:62:ac:10:f6:da:5b:17:ef:da:67:d3:
5b:7f:90:91:94:1f:3e:95:20:31:24:5b:ed:1b:3f:ef:f4:78:
4d:04:fe:94:c4:b5:3a:78:be:b1:9a:9a:bc:88:ab:60:58:2d:
cc:8e:04:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:43:41 2026 by rpki-client