Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
File: 5zfJpEKotKTJEvEbwrbTzxAK30I.mft (raw, json)
Hash identifier: Halbyfo89ohQBb1vDSILL7PxpEzybAimkgN6UrT4zR4=
Subject key identifier: 3D:89:8D:27:8A:F5:33:10:A7:DB:DF:9E:9C:E7:81:4E:7B:AC:80:42
Authority key identifier: E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
Certificate issuer: /CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Certificate serial: 019D3909A8AE0E44762CAE44DA6124BA4549
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 10:00:27 +0000
Manifest this update: Sun 29 Mar 2026 10:00:27 +0000
Manifest next update: Mon 30 Mar 2026 10:00:27 +0000
Files and hashes: 1: 5zfJpEKotKTJEvEbwrbTzxAK30I.crl (hash: 1n+2fe/lEv7j5cdiERTVa1uK6LvaZxF2asBa+sk1Qf8=)
2: fAH5HGr0FJnwVfimBME1mjRTR6I.roa (hash: JoiS3vBcWeJyqI74VLwhU1NQ94a4ip5InVm6CERVHPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:a8:ae:0e:44:76:2c:ae:44:da:61:24:ba:45:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42
Validity
Not Before: Mar 29 10:00:27 2026 GMT
Not After : Mar 30 10:00:27 2026 GMT
Subject: CN=3d898d278af53310a7dbdf9e9ce7814e7bac8042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8d:60:53:81:c0:1f:c5:13:ee:c7:d7:86:8c:
a1:f1:91:be:77:4e:aa:33:22:fc:04:0a:d9:e0:b9:
df:12:bc:e8:b3:6d:c4:b4:ef:9f:07:65:1f:57:25:
85:bb:ee:e7:e6:74:58:7d:c3:3f:32:a2:34:c0:1d:
2d:1a:84:6d:c8:db:8c:22:5c:21:cf:da:19:5e:4d:
c0:d7:2a:88:b8:72:86:77:5d:4e:c8:ab:cc:a9:24:
75:ea:94:2c:d6:9f:4f:e7:75:f2:b7:bd:36:74:9e:
86:42:3a:08:cd:1b:48:c1:e6:fb:5f:fa:d6:82:8e:
62:73:d0:7b:29:e0:18:8e:a5:6e:c1:de:ca:8c:6a:
4c:b6:dd:36:13:b7:b7:98:73:4e:8b:0d:3c:8b:c7:
b9:6e:eb:bc:07:a5:2a:3f:79:93:e8:ad:0f:ea:f2:
fc:2f:cf:fa:cf:a5:e2:32:ef:69:2f:63:a7:85:8e:
62:0a:ba:e8:5a:fa:71:39:8f:05:c4:d6:e4:0a:b8:
7f:6f:79:63:ae:20:7b:b3:b0:a1:81:64:28:f9:c3:
d6:e3:60:a5:f2:be:1e:fb:37:4e:eb:e9:dc:49:62:
86:5c:4f:fb:ee:95:a2:5b:bf:c4:16:a7:ca:d2:14:
b3:49:c4:28:f7:05:b7:a3:80:e3:3a:69:3c:91:85:
d7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:89:8D:27:8A:F5:33:10:A7:DB:DF:9E:9C:E7:81:4E:7B:AC:80:42
X509v3 Authority Key Identifier:
keyid:E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:06:bd:8f:9b:71:1f:44:9d:0f:88:f9:4c:5a:d3:36:f4:d3:
e2:c6:67:a3:ef:3b:55:1e:c3:ff:63:48:1d:a6:50:97:1c:c4:
a7:e4:81:c3:52:2c:97:5d:a8:43:1a:98:09:42:eb:f3:6c:e5:
b4:e9:44:a6:f0:b5:6f:32:75:c3:ab:1d:17:43:73:5f:dd:94:
71:82:0e:b9:f4:a2:68:05:86:0e:0a:41:d0:f4:51:88:0d:61:
74:8c:88:a8:43:86:fb:c5:bd:d4:35:d7:68:02:ed:c8:bb:20:
a3:09:bf:db:ad:50:44:dd:27:ff:0a:92:0a:d0:16:c8:db:78:
ca:da:4b:44:6a:1d:ae:47:ae:6f:f6:a8:43:09:6f:06:05:81:
ae:d4:ec:72:82:54:d4:f1:1e:ed:1d:60:4d:03:83:c9:f7:58:
60:59:92:10:5d:ff:b4:76:8a:d7:36:f0:77:ea:6e:89:02:34:
42:2a:c8:15:6d:a2:97:84:69:60:36:da:44:e6:fc:d2:40:94:
6c:15:a6:cf:9c:3b:5e:c3:d8:de:05:ba:8f:67:c9:4e:a0:b6:
3a:25:be:d1:13:81:43:45:5b:5b:57:b2:61:2c:06:aa:bf:9c:
78:a3:da:8a:58:1b:f1:d4:a0:f4:9f:3a:03:ff:9d:12:8e:98:
8c:96:71:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:13:21 2026 by rpki-client