Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
File: 5zfJpEKotKTJEvEbwrbTzxAK30I.mft (raw, json)
Hash identifier: jwtZzsiXUx6Nyxv9yWWQQbzMJg1kZ0ntHtlSgwRnL2k=
Subject key identifier: F2:A8:DC:80:46:6B:8F:9C:E9:B0:73:3D:9D:A1:68:09:B4:66:C7:8D
Authority key identifier: E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
Certificate issuer: /CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Certificate serial: 019E303B2BBD1E9B36E396E29F256790125A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 10:00:44 +0000
Manifest this update: Sat 16 May 2026 10:00:44 +0000
Manifest next update: Sun 17 May 2026 10:00:44 +0000
Files and hashes: 1: 5zfJpEKotKTJEvEbwrbTzxAK30I.crl (hash: 4EvnXLWBqutExp6vFUuoZ1mZaV5dq+sP4HY58S4M6Jk=)
2: fAH5HGr0FJnwVfimBME1mjRTR6I.roa (hash: JoiS3vBcWeJyqI74VLwhU1NQ94a4ip5InVm6CERVHPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:2b:bd:1e:9b:36:e3:96:e2:9f:25:67:90:12:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Validity
Not Before: May 16 10:00:44 2026 GMT
Not After : May 17 10:00:44 2026 GMT
Subject: CN=f2a8dc80466b8f9ce9b0733d9da16809b466c78d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:97:63:d6:eb:57:56:c7:e2:52:b9:49:ba:60:
6d:29:61:87:42:14:cc:34:b4:31:cc:f5:e7:e7:f1:
b0:75:57:40:07:57:68:f0:a2:44:c0:dc:31:21:0d:
98:c4:81:a6:f4:64:93:a7:33:52:13:ff:57:df:c7:
81:dc:52:cd:80:e3:44:b4:c1:c7:7a:24:c2:b3:bc:
69:c6:69:d4:0a:d9:b4:68:c5:b9:c2:41:d8:de:3e:
8d:9d:0a:9a:1a:2e:87:96:18:05:dc:c0:c9:43:4c:
7c:55:44:ec:a3:12:60:3d:13:01:90:ba:31:a4:67:
f0:30:85:51:5a:27:78:f9:5d:4e:8b:27:49:e4:c3:
d1:ef:2b:2d:e3:52:63:a3:93:76:36:05:e4:44:80:
ec:62:93:d8:57:fa:1a:f7:6c:2a:26:12:cf:7f:ff:
2e:1d:b2:b0:84:14:6e:10:03:59:d2:21:54:a8:f3:
31:76:ec:3f:34:f9:1f:94:5c:2c:50:c7:98:12:d0:
4a:c2:df:64:9d:bb:7a:5a:82:35:7b:43:79:c1:bb:
f6:2b:8c:4d:df:22:1f:f2:8e:0b:93:b0:6d:12:f7:
ed:5e:e8:b3:b9:c4:49:36:14:49:09:ae:f8:71:4c:
24:11:c0:4d:48:d3:04:ea:9a:73:30:4b:c7:c3:32:
1d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A8:DC:80:46:6B:8F:9C:E9:B0:73:3D:9D:A1:68:09:B4:66:C7:8D
X509v3 Authority Key Identifier:
keyid:E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:30:22:45:15:2d:bd:6b:dc:f3:5a:22:87:e0:79:45:03:0e:
a7:3e:74:5f:a3:d0:14:c8:3a:87:71:ae:22:19:6e:07:f7:20:
71:2f:3a:af:f0:1b:99:cd:ee:45:ca:02:1d:1c:65:82:91:6b:
da:6c:5d:52:45:f8:61:02:99:84:da:d9:b7:94:42:ef:8c:7c:
31:24:07:78:82:b6:f5:3d:b0:6c:80:ea:a2:8b:81:e8:ff:47:
86:35:f7:61:ae:f8:d6:0b:54:2c:0f:b5:0c:c7:dd:80:78:d0:
8a:63:03:f3:15:e6:6c:36:58:38:f7:73:89:02:92:72:8c:6c:
9e:cc:80:ea:44:87:2b:ce:5b:a3:fd:52:74:90:81:ed:31:cc:
2c:73:2e:a8:aa:c2:65:e0:30:68:92:fb:83:bf:2d:88:76:c8:
89:fa:e1:d0:d7:e6:e0:5f:8a:d6:ab:97:ad:c0:23:e9:2c:d9:
be:c5:bc:c4:74:e9:a1:93:31:47:31:19:a3:7b:92:2f:b3:e1:
24:a0:d3:b9:c8:d9:28:3f:11:88:a4:5f:c9:75:80:ae:d3:3b:
96:49:3a:b4:26:d5:c5:71:42:89:7c:6c:a5:00:2f:87:7f:36:
82:c0:97:5f:68:66:8e:a6:fe:84:a8:b8:eb:2e:7d:85:02:ce:
df:4e:21:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:57:32 2026 by rpki-client