Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json)
Hash identifier: nJsb7TlpxJWcB/VJltkQXFZf0SS/QRxGW0GqfNTGuC8=
Subject key identifier: 27:9F:26:90:01:37:B6:9A:F6:B4:D8:AE:05:73:13:4F:D4:5C:64:AA
Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f
Certificate serial: 019EC11189D6AC3430D95F7FA84279A9C8C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
Manifest number: 06AC
Signing time: Sat 13 Jun 2026 13:00:12 +0000
Manifest this update: Sat 13 Jun 2026 13:00:12 +0000
Manifest next update: Sun 14 Jun 2026 13:00:12 +0000
Files and hashes: 1: 9aRTzcNv5guAsQiFnGIvU6cyVjw.roa (hash: yxAswLOvy7NpNtBGcnZYbW1+LR5oOn3Rqal1sA9FoVg=)
2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: ZRgXnQblIle9Utd/WpSE2MT9UZpFUd/ZCqW96IzuGxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 13:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:11:89:d6:ac:34:30:d9:5f:7f:a8:42:79:a9:c8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f
Validity
Not Before: Jun 13 13:00:12 2026 GMT
Not After : Jun 14 13:00:12 2026 GMT
Subject: CN=279f26900137b69af6b4d8ae0573134fd45c64aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:7a:d0:5f:52:d8:51:8b:91:58:fe:dd:4a:79:
8d:db:d3:02:bb:d1:f6:61:e2:86:bb:46:a0:65:ad:
fc:34:31:10:f0:b7:11:e8:6b:cf:8b:8b:3d:69:9d:
dd:70:27:69:d6:f2:2c:3d:dc:28:71:45:6b:b5:18:
d0:27:b5:ed:eb:6c:bf:7f:c5:a0:83:72:bb:9c:9b:
43:f4:bc:9b:d7:00:62:b2:5e:6e:cf:2f:54:0b:0b:
d8:28:be:90:08:36:5d:92:d2:f9:19:72:09:fc:fd:
82:da:8a:98:bf:28:a7:36:a9:af:51:60:78:93:37:
63:15:3e:32:ef:f5:a3:74:c1:a2:35:4f:15:5b:4f:
6e:5e:11:27:2b:2c:b1:70:34:da:8b:0f:fe:68:04:
c4:b8:37:21:cb:19:1c:19:6f:c4:b6:c3:84:83:b1:
0c:8c:2e:d2:7a:4b:fe:0d:d1:b3:05:35:ad:95:07:
0f:0f:06:a3:fb:a3:29:91:f7:fd:24:01:79:83:3a:
2b:5b:79:78:f5:a9:97:3c:70:2d:03:c7:46:5a:b0:
fe:da:35:ca:48:bf:66:19:56:74:a0:aa:54:7c:88:
6b:5f:56:be:5a:99:9a:d6:e1:08:6b:e2:15:d0:2d:
f8:fa:4c:fe:ed:f3:a8:ed:ea:ee:d2:9e:6e:ef:a5:
30:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:9F:26:90:01:37:B6:9A:F6:B4:D8:AE:05:73:13:4F:D4:5C:64:AA
X509v3 Authority Key Identifier:
keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:ee:03:eb:81:9d:1d:5d:a4:0c:05:8d:a2:b1:d1:dc:06:cd:
fe:97:a7:21:f2:aa:36:72:89:dc:e1:90:9c:96:61:7c:d2:4b:
d5:6c:dd:bb:02:8d:87:e4:62:35:12:32:58:e6:12:19:e1:37:
05:64:8e:52:1f:b3:d1:c3:54:3c:48:58:c0:4a:21:23:c3:64:
d4:d9:7c:84:f9:13:74:d1:32:54:06:fc:5b:1d:51:e1:6a:ea:
d4:fa:1c:b9:fb:9f:cf:a2:ab:e7:c4:38:28:d8:28:95:29:8b:
fa:4c:19:2f:a6:ce:ee:ac:1d:7b:e9:3c:18:bd:48:20:d1:da:
c8:3a:fb:ef:16:c5:27:53:de:57:a8:63:96:34:f6:50:7b:bd:
24:69:6e:0f:2c:07:97:02:ff:28:eb:9f:b0:cb:cb:2a:53:25:
98:17:9a:f2:94:4a:7d:d7:6f:cf:a7:a4:63:b9:73:39:a3:ce:
a6:66:7c:9f:61:2a:35:85:9a:46:f9:48:3c:67:17:6e:44:3b:
56:59:86:3e:c6:8e:15:5a:e2:d0:b8:94:05:53:46:ce:5e:98:
eb:6c:db:40:be:fb:2b:28:5c:35:1a:d7:22:22:2c:88:fd:b5:
17:bd:78:e4:70:af:1c:ae:14:a8:a8:de:40:54:e9:f6:19:ab:
ed:90:8f:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:09:15 2026 by rpki-client