Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
File: WzgltIs1me_6oLyBqN3bmPHYAsQ.mft (raw, json)
Hash identifier: bIPBNH1oaPB3+edoOLToTjrRb9XLDYlhv8I5seP9ko0=
Subject key identifier: 19:C3:B3:5D:83:AC:22:A3:5D:52:23:C0:A9:06:E1:50:63:72:93:CF
Authority key identifier: 5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4
Certificate issuer: /CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4
Certificate serial: 019DA3AEE56EFD81F14D85E15DC2500A4A4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
Manifest number: 1858
Signing time: Sun 19 Apr 2026 03:00:41 +0000
Manifest this update: Sun 19 Apr 2026 03:00:41 +0000
Manifest next update: Mon 20 Apr 2026 03:00:41 +0000
Files and hashes: 1: UbNuRFOVHUUJwDDzscbPhmRX1j8.roa (hash: UiS0VJNajfmsH4Zi8nv03I0mVu/mkamsiis7n5jG0Oo=)
2: WzgltIs1me_6oLyBqN3bmPHYAsQ.crl (hash: hj2fXsA+eCgjb5IVjtqfdQ8kI+jzEVBC8hl7GWxHge0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:ae:e5:6e:fd:81:f1:4d:85:e1:5d:c2:50:0a:4a:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b3825b48b3599effaa0bc81a8dddb98f1d802c4
Validity
Not Before: Apr 19 03:00:41 2026 GMT
Not After : Apr 20 03:00:41 2026 GMT
Subject: CN=19c3b35d83ac22a35d5223c0a906e150637293cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:09:f7:3a:e1:24:50:c8:af:e0:5d:43:ae:ad:
c0:49:f7:7f:f8:64:5b:57:eb:33:bd:f3:53:32:91:
88:9e:b5:cd:99:be:53:8e:89:0e:dc:e6:66:8c:c1:
8a:2f:5a:ab:f0:78:00:f6:7b:2d:e4:f1:70:d5:29:
bf:85:89:d2:bf:64:60:09:f6:be:1a:f7:cb:6b:66:
78:cd:47:e4:18:82:84:00:8d:01:9a:b1:1d:05:6b:
3e:05:f7:46:d4:e0:91:c5:09:39:fa:34:b3:46:34:
34:99:b2:29:a8:5a:f4:51:f0:c9:fb:3b:8e:89:12:
9b:c9:56:1b:11:48:26:e5:c9:67:43:fb:c4:dc:fc:
e1:20:47:7c:73:b4:dd:f0:3a:7a:91:3c:12:d5:b1:
43:7a:a0:81:76:e4:8c:d4:47:55:06:cd:a6:ba:41:
51:a8:b9:f1:04:ee:6e:be:be:86:e1:33:96:b2:67:
4c:c7:32:cf:8c:f7:05:58:29:7e:37:06:f1:95:39:
53:1f:88:40:98:e9:e1:13:d6:b6:4d:4d:2c:f4:e7:
0a:7f:33:05:c5:fe:43:ff:9e:80:27:36:c8:53:92:
fd:c1:64:53:6d:23:32:61:dc:94:b7:27:bd:bd:db:
40:a9:98:a2:a2:2d:fd:2a:01:8f:86:b0:60:16:c0:
aa:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:C3:B3:5D:83:AC:22:A3:5D:52:23:C0:A9:06:E1:50:63:72:93:CF
X509v3 Authority Key Identifier:
keyid:5B:38:25:B4:8B:35:99:EF:FA:A0:BC:81:A8:DD:DB:98:F1:D8:02:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WzgltIs1me_6oLyBqN3bmPHYAsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e0559d-abe6-443b-a978-5e7ded1421da/1/WzgltIs1me_6oLyBqN3bmPHYAsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:0e:3b:df:3a:56:a1:cb:56:16:12:eb:28:b7:c0:c8:10:fc:
8b:f5:d9:1c:7f:f9:61:6b:6f:b2:d9:25:a4:57:18:ee:71:4b:
de:14:51:fd:b2:4f:27:0b:0d:4a:51:0b:d2:62:0d:b7:35:0e:
3e:0f:63:c1:44:eb:27:22:11:e3:e3:18:44:74:18:cc:9e:68:
22:8b:bb:20:2d:a9:c8:a3:c0:57:f2:88:e6:f5:40:7f:91:ff:
72:54:67:56:86:6b:32:6e:69:4b:4b:68:ba:bb:92:12:ab:ca:
46:c8:1d:ec:47:00:93:59:bd:04:df:6d:bf:95:64:04:12:0e:
4f:12:4a:88:d2:52:4a:83:ab:cb:bb:1e:6b:af:c2:b4:55:7c:
c8:ab:55:de:a0:59:1c:2a:68:1b:78:e7:02:60:2a:c5:80:e0:
e1:85:27:28:05:c8:d5:cc:db:d3:a1:78:88:71:e9:2e:8f:df:
73:2a:2f:ef:33:0f:8e:0f:39:ed:77:af:55:d5:ff:e6:57:b0:
a2:59:ca:25:ee:61:d7:69:aa:66:43:99:1a:2f:ac:fa:df:20:
00:38:0d:ab:4c:8d:d1:67:19:06:a3:9f:5b:04:f5:3a:41:b4:
c2:c7:82:32:5b:cd:0a:39:75:53:db:7d:54:b7:33:ef:70:32:
69:1e:6d:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:45:44 2026 by rpki-client