Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: mnkPSy6p/+8hQF2tf+kLk72lreyT68oIY36C3ElzsDE=
Subject key identifier: F4:B4:47:F6:9A:76:B3:64:08:2C:6D:12:B9:3D:B6:D4:3A:A2:5F:53
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 019D9A74F714C4FAD2F3349922111E2215C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 0613
Signing time: Fri 17 Apr 2026 08:00:49 +0000
Manifest this update: Fri 17 Apr 2026 08:00:49 +0000
Manifest next update: Sat 18 Apr 2026 08:00:49 +0000
Files and hashes: 1: _3SsPoZz4ndBlE9FKTU4o6A47bQ.roa (hash: YLTYKbUjdWoX7zGu97DHQcaZdG5VUWTXRbFjuRFb06w=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: GnPGHO/x4ecnU/CPy6jyw3LVkFQDP7fPz8XOguJw6+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:f7:14:c4:fa:d2:f3:34:99:22:11:1e:22:15:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Apr 17 08:00:49 2026 GMT
Not After : Apr 18 08:00:49 2026 GMT
Subject: CN=f4b447f69a76b364082c6d12b93db6d43aa25f53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4d:13:15:a1:d4:58:26:28:cc:30:bf:90:18:
65:11:e9:5f:f7:96:c1:7a:de:09:c3:b0:ac:c8:ee:
47:05:a7:d9:ec:3e:d8:33:87:f6:6e:67:c2:99:53:
bf:80:fd:52:74:8b:b1:96:53:9e:10:e2:a7:88:85:
09:80:ca:0a:cb:1b:4d:61:01:43:6c:14:da:a8:28:
e9:cd:46:9e:64:50:39:9f:3c:73:6f:78:1c:2e:17:
49:3e:fd:be:8f:73:d0:c0:97:40:b8:52:5f:a0:fb:
83:7d:15:16:88:9e:84:1d:86:ce:55:8c:58:67:30:
cd:0d:b6:79:cf:3e:64:ff:83:9e:e2:ba:db:a4:16:
0c:28:aa:1a:2c:f5:99:95:de:b0:90:2a:99:af:1b:
f6:55:0b:ad:9b:48:11:34:36:38:09:4f:02:b2:44:
81:ec:c1:45:64:b3:0f:db:16:c3:0c:36:c7:dc:60:
92:91:35:95:47:98:64:4c:c2:7c:bf:fe:7d:e0:12:
a0:05:ec:0a:05:5e:ba:80:cf:99:ff:76:0e:b8:91:
70:c4:24:76:69:d9:c9:e6:37:2d:aa:ba:ab:55:2e:
55:6f:c2:0c:6c:8b:5a:aa:61:c7:4d:5c:77:32:db:
01:15:e7:53:17:d4:73:67:25:20:bf:7c:6e:b1:81:
9c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B4:47:F6:9A:76:B3:64:08:2C:6D:12:B9:3D:B6:D4:3A:A2:5F:53
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:a6:44:19:75:fa:d4:d6:24:d1:6b:ee:03:d6:27:d5:32:5f:
04:42:53:d8:ea:95:3e:ba:72:bb:91:e0:9d:30:37:7a:72:c8:
1a:70:40:af:95:eb:28:50:24:dd:dd:ac:1b:48:d4:78:c8:ff:
fa:01:b6:bd:ad:dd:56:41:83:2d:c8:c4:60:c7:ec:70:02:45:
76:0b:7e:64:0c:e9:68:42:c6:97:5a:59:ef:df:77:e5:76:b0:
a2:72:ac:83:e7:f9:04:73:61:7c:0d:b0:b9:db:8e:60:76:f4:
98:7b:8e:45:aa:fb:66:7c:24:1c:06:25:4c:22:05:18:a0:47:
ba:9f:f8:63:e0:97:65:33:93:02:f8:93:71:95:47:bf:5e:a9:
22:e4:ce:59:d8:60:cd:ec:21:4e:f4:62:c9:1f:ef:d7:95:4e:
58:18:fd:8d:11:af:52:10:4b:bc:24:89:c5:ca:b1:ca:22:87:
23:0f:f2:a8:a6:1f:06:7c:c8:b7:9b:cb:69:51:5d:b9:76:15:
57:08:bd:21:ed:40:d7:c1:5e:76:12:53:4d:dc:d8:f4:cf:29:
02:75:63:fe:6f:a3:0d:60:a3:d3:27:df:d9:09:31:77:56:f2:
ce:31:84:fa:4a:21:cd:1d:21:f2:ca:66:7a:97:d3:92:37:51:
7a:ef:35:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:41:30 2026 by rpki-client