Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
File: WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft (raw, json)
Hash identifier: YX0odAYyr5hBE8wIPMI3ATvBswFyNM+JvsMNO33ZLME=
Subject key identifier: 8B:20:44:78:E1:75:90:63:70:01:E7:2C:F2:08:2B:63:84:C3:B3:A1
Authority key identifier: 58:B2:B2:F6:11:3B:A4:30:F7:2E:55:44:5B:5C:78:49:DC:7C:FA:ED
Certificate issuer: /CN=58b2b2f6113ba430f72e55445b5c7849dc7cfaed
Certificate serial: 019CAAFD2E27F6648C29C79B7325E32EAAB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
Manifest number: 04DF
Signing time: Sun 01 Mar 2026 20:00:44 +0000
Manifest this update: Sun 01 Mar 2026 20:00:44 +0000
Manifest next update: Mon 02 Mar 2026 20:00:44 +0000
Files and hashes: 1: SRYxzczEXmhncJE8vjovYVerhU0.roa (hash: f3BIypX5l7UFnGCWgZnN4C06Az0MJBR1k/+NKCJisp4=)
2: WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl (hash: syNrgJ6/loZB//iD7LGyWBGOlvYBa/8zSW/glGMzd+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:2e:27:f6:64:8c:29:c7:9b:73:25:e3:2e:aa:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58b2b2f6113ba430f72e55445b5c7849dc7cfaed
Validity
Not Before: Mar 1 20:00:44 2026 GMT
Not After : Mar 2 20:00:44 2026 GMT
Subject: CN=8b204478e17590637001e72cf2082b6384c3b3a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5d:77:fa:0c:73:9b:4a:43:3a:b3:9b:69:b4:
58:de:51:73:e6:d1:2e:77:51:86:df:cd:a6:b3:b5:
97:7f:e9:33:6e:d1:0f:06:7f:5c:5d:bc:30:90:83:
c2:a8:b6:8e:31:70:08:f3:68:e0:32:95:c5:23:3d:
94:c8:67:99:33:f3:91:31:24:61:08:9a:e1:f3:8e:
73:4b:7b:80:2a:dc:86:cb:ee:4b:54:8f:d6:14:44:
7d:dd:16:30:eb:92:13:c1:20:b2:19:c4:5f:16:b4:
3e:58:fa:c0:35:94:a3:fc:83:d7:83:e1:55:1c:eb:
36:b3:56:fd:ca:5c:e0:2b:a3:5b:77:5f:0a:8b:86:
c7:e7:1a:eb:57:4a:5e:33:ce:81:cc:3c:69:f2:69:
d3:45:b7:14:7e:17:ed:bc:76:00:2c:05:86:01:9b:
18:14:7b:c1:02:30:65:b9:66:83:da:c6:ff:17:f5:
c1:20:04:88:b1:f1:29:03:06:7d:31:b5:99:0f:2a:
04:21:1b:a5:b4:d2:9f:86:4a:80:dc:86:c0:69:3a:
14:db:7a:63:f7:d8:51:9e:21:bf:68:86:8b:a8:88:
0b:6c:8f:5a:5d:25:31:27:c7:a8:64:0b:72:9e:5f:
eb:1c:ae:65:dd:95:9b:f6:ba:8c:d9:b4:03:f5:08:
d4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:20:44:78:E1:75:90:63:70:01:E7:2C:F2:08:2B:63:84:C3:B3:A1
X509v3 Authority Key Identifier:
keyid:58:B2:B2:F6:11:3B:A4:30:F7:2E:55:44:5B:5C:78:49:DC:7C:FA:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:6d:7e:c1:3b:12:6e:02:19:1b:03:96:7b:e5:8b:82:8a:6b:
34:1c:2b:91:f1:b3:af:0b:66:bf:e6:6c:90:d8:d8:0c:32:70:
eb:42:d5:d3:2e:a2:bb:c5:45:f6:c7:b2:e0:1f:22:10:9b:d2:
55:40:a9:7f:0d:e6:b0:de:f5:25:32:a9:81:e2:21:9c:8c:57:
5c:9b:e1:9c:c0:94:59:b5:9e:76:c7:c0:02:e9:eb:1c:3d:5e:
d3:60:c4:0f:4e:49:3d:9d:c8:01:77:bb:ea:0d:3d:9b:da:de:
ff:9f:58:2e:21:4a:66:9d:44:3c:cc:7e:1b:8a:ed:1b:15:28:
9f:a0:7a:ab:34:32:4f:ba:54:c0:a1:50:79:e8:2b:e4:88:13:
3e:2c:f2:7c:2e:79:3c:d5:e2:36:65:3e:ee:70:66:75:f0:28:
6c:32:50:84:03:64:b3:f2:75:ba:5e:99:9e:67:da:9d:b3:d6:
f8:14:e8:cc:64:a6:93:4f:8d:ed:44:98:9b:fb:83:93:a7:7c:
4e:74:bb:4a:2c:7a:7a:ed:08:35:a7:ee:00:34:a8:36:62:e7:
b9:a3:e3:bc:4c:a2:bd:18:61:d5:7b:eb:13:29:84:dd:11:51:
ce:d9:7d:85:8e:22:d5:72:5a:b0:c2:8c:04:c5:f0:f1:36:82:
a2:6a:b9:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:58:39 2026 by rpki-client