Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
File: WzgltIs1me_6oLyBqN3bmPHYAsQ.mft (raw, json)
Hash identifier: pHViHH5WiukHSE+M1ecpfQu6qNDjlYUGI1XTZ6G4viE=
Subject key identifier: 22:45:D9:DD:B8:F7:9A:98:97:A4:34:A5:58:2B:2D:DC:4F:C2:7E:3E
Authority key identifier: 5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4
Certificate issuer: /CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4
Certificate serial: 019CAA8F8C43AA94C4ABE3D3B4734C7286B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
Manifest number: 17D7
Signing time: Sun 01 Mar 2026 18:01:00 +0000
Manifest this update: Sun 01 Mar 2026 18:01:00 +0000
Manifest next update: Mon 02 Mar 2026 18:01:00 +0000
Files and hashes: 1: UbNuRFOVHUUJwDDzscbPhmRX1j8.roa (hash: UiS0VJNajfmsH4Zi8nv03I0mVu/mkamsiis7n5jG0Oo=)
2: WzgltIs1me_6oLyBqN3bmPHYAsQ.crl (hash: NkWF5UwBwyAshKh2GH24zixMNCT2kkNOESlJZDXLhLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:8c:43:aa:94:c4:ab:e3:d3:b4:73:4c:72:86:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4
Validity
Not Before: Mar 1 18:01:00 2026 GMT
Not After : Mar 2 18:01:00 2026 GMT
Subject: CN=2245d9ddb8f79a9897a434a5582b2ddc4fc27e3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3b:14:51:8c:09:77:db:a2:c8:af:51:c7:77:
61:5c:fb:0b:92:f7:08:ae:82:f5:2f:8d:64:6a:25:
35:3d:79:59:92:84:a8:0c:eb:bd:b7:ce:00:e9:a5:
3a:cb:46:01:b1:9d:e9:51:94:ad:29:38:39:a8:d4:
c7:30:4a:3d:7e:6a:07:43:f1:43:58:28:76:9d:b9:
00:d0:be:66:16:0c:d7:36:ff:63:9f:20:69:ef:fc:
85:22:f0:c5:53:6f:99:fc:4f:73:fe:b4:a6:80:8f:
bb:64:d2:8e:12:cf:10:db:51:7a:6d:ac:33:61:bd:
36:cb:4b:88:d9:a2:e0:5c:cc:83:4d:88:97:74:90:
c4:53:44:fb:dc:71:76:a2:5a:b7:72:06:05:3f:78:
a5:43:fd:ed:94:e6:18:3e:b9:55:86:ae:3b:ab:1f:
fe:d9:0f:84:19:76:96:6a:bb:06:f3:6a:31:97:91:
97:7e:67:f6:0a:b7:e5:44:16:6e:40:ae:3e:37:37:
0c:f5:cd:5b:e5:9c:49:67:32:21:00:8f:71:1a:29:
2c:aa:11:99:c7:fb:4b:01:b5:40:1a:92:e5:de:8b:
23:12:f7:2a:32:b1:ac:61:7a:0b:2a:3b:17:58:dc:
a0:3c:a5:15:dd:c7:27:00:2d:29:11:bc:e9:4e:eb:
57:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:45:D9:DD:B8:F7:9A:98:97:A4:34:A5:58:2B:2D:DC:4F:C2:7E:3E
X509v3 Authority Key Identifier:
keyid:5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:61:0d:7d:c2:9a:8b:4f:d4:c9:70:9f:e6:4a:19:e9:54:98:
ca:ef:87:ca:35:5c:b8:9a:1c:91:78:39:c4:67:96:ee:fe:85:
49:89:df:13:0f:d1:6e:99:fc:3e:1a:f0:7b:41:cf:1a:eb:5c:
4d:83:ee:e5:1e:7c:22:c0:f3:b4:0c:c7:8b:e7:b9:c2:b2:32:
17:61:d2:6b:19:0a:25:ef:24:2a:9d:87:13:87:5c:f6:0a:25:
d8:17:81:40:03:c7:35:5b:60:f6:fb:d5:26:64:7c:0e:21:63:
56:e5:e4:ca:5e:f8:8d:fe:8f:b0:54:9b:10:65:fd:17:cd:af:
d5:c8:66:99:5c:f5:63:76:c2:54:04:30:ed:62:ba:b4:33:e7:
10:36:30:6a:2a:ea:a5:26:53:74:b8:7b:d4:c4:0b:a8:3b:0e:
7a:fd:a3:f4:99:6a:2c:b5:b1:bd:22:df:66:80:c2:58:7b:88:
5f:bc:4b:3c:64:6a:48:01:1a:de:13:d2:c4:69:05:8f:b4:1c:
d0:fb:c2:80:c6:87:89:16:89:53:0e:0d:0e:e0:eb:98:6d:48:
76:13:d8:80:77:82:71:3d:f9:ec:af:bd:49:06:90:3d:24:9c:
e1:d7:cf:7b:6b:30:2f:cd:16:35:7c:6e:30:b6:90:13:cb:92:
eb:9f:6e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:17 2026 by rpki-client