Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
File: WrJabDkrjmejrSH2D9MxHWt_Hlw.mft (raw, json)
Hash identifier: 3krwUBFcjZzJgz1dzFUgzTGK/wTSVndhv28MIF8Y9Kc=
Subject key identifier: 11:8C:F6:30:E7:8C:FA:6D:BD:0A:17:9E:E9:BA:A7:80:1C:8D:B6:67
Authority key identifier: 5A:B2:5A:6C:39:2B:8E:67:A3:AD:21:F6:0F:D3:31:1D:6B:7F:1E:5C
Certificate issuer: /CN=5ab25a6c392b8e67a3ad21f60fd3311d6b7f1e5c
Certificate serial: 019D9AE38B62AC3FC8E125FC2C7D01318153
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WrJabDkrjmejrSH2D9MxHWt_Hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
Manifest number: 115D
Signing time: Fri 17 Apr 2026 10:01:36 +0000
Manifest this update: Fri 17 Apr 2026 10:01:36 +0000
Manifest next update: Sat 18 Apr 2026 10:01:36 +0000
Files and hashes: 1: WrJabDkrjmejrSH2D9MxHWt_Hlw.crl (hash: pLXSOouvrX/NtuWMEYFWAqtpMbweAuTmruMmQZNDA/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/WrJabDkrjmejrSH2D9MxHWt_Hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:8b:62:ac:3f:c8:e1:25:fc:2c:7d:01:31:81:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ab25a6c392b8e67a3ad21f60fd3311d6b7f1e5c
Validity
Not Before: Apr 17 10:01:36 2026 GMT
Not After : Apr 18 10:01:36 2026 GMT
Subject: CN=118cf630e78cfa6dbd0a179ee9baa7801c8db667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f4:90:49:0c:3a:df:a3:5b:11:99:55:f2:84:
8a:71:d1:62:c7:32:2b:47:e8:04:12:78:f8:07:d3:
b3:38:7a:67:d8:b3:72:c2:cb:8a:6a:13:4b:19:e9:
9a:91:34:b2:fb:35:02:00:af:44:39:99:c1:92:99:
60:99:6b:7b:23:33:47:7b:1c:0f:ef:7b:16:21:a0:
15:eb:da:27:4b:d4:e8:7a:17:96:f7:98:92:74:6f:
d7:2f:6a:d6:81:53:09:06:af:c4:50:cd:db:fc:83:
56:cd:7c:6b:ad:a2:ce:f1:f7:d3:0c:b3:25:ef:8e:
54:09:16:b7:60:b5:24:31:cb:6f:8c:ce:69:fe:7b:
1b:9d:07:4b:18:8e:62:f4:9c:cb:1e:e8:fc:4d:a3:
bb:84:67:6a:d7:b7:7b:a7:da:1b:82:42:db:4e:15:
2f:08:50:99:17:9a:ed:65:33:e7:b9:f7:5f:9b:7c:
70:57:cf:99:46:e1:03:56:b2:42:17:58:d4:e5:f4:
52:e5:89:6d:d0:1f:cf:fc:d4:04:7f:ed:0b:a4:2d:
32:d9:80:10:68:b6:e2:62:7b:6e:83:15:7c:b5:15:
dd:d1:35:dc:ae:82:0c:b1:ba:87:05:04:58:96:6f:
47:51:40:d6:17:06:6d:6b:2a:9b:00:bc:9d:25:34:
c2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8C:F6:30:E7:8C:FA:6D:BD:0A:17:9E:E9:BA:A7:80:1C:8D:B6:67
X509v3 Authority Key Identifier:
keyid:5A:B2:5A:6C:39:2B:8E:67:A3:AD:21:F6:0F:D3:31:1D:6B:7F:1E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WrJabDkrjmejrSH2D9MxHWt_Hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/81f76f-d878-44a1-82c7-2ccb5f0c5f6b/1/WrJabDkrjmejrSH2D9MxHWt_Hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:3b:d9:7b:15:7e:40:65:5e:0a:6b:4d:6d:8e:c8:0e:1e:37:
10:14:8a:71:3f:33:6b:27:36:ab:10:44:5c:28:fb:e7:6c:30:
2b:2b:1b:89:c0:55:e3:73:f3:ea:8c:77:e1:fa:5b:08:98:a3:
68:a2:ac:20:07:59:0c:1c:c3:74:23:58:9a:27:bc:ad:8b:ac:
ba:d0:30:5f:4a:37:2f:a2:8a:33:c7:77:3d:20:98:a9:7a:01:
26:b0:02:1a:a5:60:cd:40:47:a5:f0:02:41:98:ab:eb:15:46:
69:f5:b5:99:f7:c9:a2:e5:7d:d6:ee:72:3d:06:d0:91:9b:d2:
af:ee:6f:de:43:4c:66:75:f0:8b:a6:c8:eb:f7:bb:9f:f5:e2:
fa:65:59:ca:00:fe:d5:1e:9e:05:9d:9a:b5:be:d5:59:a4:1b:
7d:42:6a:b2:38:e3:8a:32:2c:d4:33:82:cd:13:68:f3:15:9e:
ed:3f:67:00:7b:68:7d:59:7a:28:c0:f1:93:77:d6:1e:75:16:
cd:0c:f0:30:df:95:1a:d1:2f:6d:cf:b9:1f:85:1e:3e:fe:a9:
d9:4a:44:20:d7:f0:27:72:07:ef:7d:c8:a7:87:aa:71:0a:8f:
f0:d8:10:e2:10:d2:a8:6a:ef:51:63:78:3b:52:19:85:0c:b8:
4a:87:6e:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a44tirD/I4SX8LH0BMYFTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhYjI1YTZjMzkyYjhlNjdhM2FkMjFmNjBmZDMzMTFkNmI3
ZjFlNWMwHhcNMjYwNDE3MTAwMTM2WhcNMjYwNDE4MTAwMTM2WjAzMTEwLwYDVQQD
EygxMThjZjYzMGU3OGNmYTZkYmQwYTE3OWVlOWJhYTc4MDFjOGRiNjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPSQSQw636NbEZlV8oSKcdFixzIr
R+gEEnj4B9OzOHpn2LNywsuKahNLGemakTSy+zUCAK9EOZnBkplgmWt7IzNHexwP
73sWIaAV69onS9ToeheW95iSdG/XL2rWgVMJBq/EUM3b/INWzXxrraLO8ffTDLMl
745UCRa3YLUkMctvjM5p/nsbnQdLGI5i9JzLHuj8TaO7hGdq17d7p9obgkLbThUv
CFCZF5rtZTPnufdfm3xwV8+ZRuEDVrJCF1jU5fRS5Ylt0B/P/NQEf+0LpC0y2YAQ
aLbiYntugxV8tRXd0TXcroIMsbqHBQRYlm9HUUDWFwZtayqbALydJTTCHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBGM9jDnjPptvQoXnum6p4AcjbZnMB8GA1UdIwQY
MBaAFFqyWmw5K45no60h9g/TMR1rfx5cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3JKYWJEa3JqbWVqclNIMkQ5TXhIV3RfSGx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS84MWY3NmYtZDg3OC00NGExLTgyYzct
MmNjYjVmMGM1ZjZiLzEvV3JKYWJEa3JqbWVqclNIMkQ5TXhIV3RfSGx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS84MWY3NmYtZDg3OC00NGExLTgyYzctMmNjYjVmMGM1ZjZi
LzEvV3JKYWJEa3JqbWVqclNIMkQ5TXhIV3RfSGx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABTvZexV+
QGVeCmtNbY7IDh43EBSKcT8zayc2qxBEXCj752wwKysbicBV43Pz6ox34fpbCJij
aKKsIAdZDBzDdCNYmie8rYusutAwX0o3L6KKM8d3PSCYqXoBJrACGqVgzUBHpfAC
QZir6xVGafW1mffJouV91u5yPQbQkZvSr+5v3kNMZnXwi6bI6/e7n/Xi+mVZygD+
1R6eBZ2atb7VWaQbfUJqsjjjijIs1DOCzRNo8xWe7T9nAHtofVl6KMDxk3fWHnUW
zQzwMN+VGtEvbc+5H4UePv6p2UpEINfwJ3IH733Ip4eqcQqP8NgQ4hDSqGrvUWN4
O1IZhQy4SoduAQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 15:36:03 2026 by rpki-client