Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
File: v5gt73eibXzBlHOzpAZNzFIX5HE.mft (raw, json)
Hash identifier: i/I3DrALX4vOpctJP8ijjvcCSDet1bTwSsmvnNA4fS0=
Subject key identifier: 8F:9D:83:50:04:AE:7C:B0:C6:1F:35:AA:31:A6:27:5F:91:CD:B4:7A
Authority key identifier: BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
Certificate issuer: /CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Certificate serial: 019D3A8AF1E8359D8D33AC7D59ED47EBFE3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 17:01:17 +0000
Manifest this update: Sun 29 Mar 2026 17:01:17 +0000
Manifest next update: Mon 30 Mar 2026 17:01:17 +0000
Files and hashes: 1: MavdUwtL9hXRYTucFdVXRHkrrIo.roa (hash: yraXNEacytf4HbmMAZg6e64667WxeEaDmWzKdMpCXxk=)
2: v5gt73eibXzBlHOzpAZNzFIX5HE.crl (hash: 8ylasqRZMDMSNHJPSVDC8t4FxvTcj5EN3rPnRWwbcao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:8a:f1:e8:35:9d:8d:33:ac:7d:59:ed:47:eb:fe:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Validity
Not Before: Mar 29 17:01:17 2026 GMT
Not After : Mar 30 17:01:17 2026 GMT
Subject: CN=8f9d835004ae7cb0c61f35aa31a6275f91cdb47a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:55:44:b0:b8:c3:f1:00:7c:fd:59:2b:91:f9:
08:dd:71:6b:2c:d6:07:ca:7d:44:5b:8f:b8:03:1f:
a4:eb:56:1f:de:3f:63:f6:36:66:d2:72:3b:91:df:
de:b4:25:69:95:4a:a8:96:ad:c7:14:29:3c:d8:7e:
a7:9b:8a:6d:61:02:b9:a3:54:3f:c1:61:1b:e8:d4:
9d:3e:fa:c8:24:b1:f7:fe:89:a2:7c:cf:bb:99:78:
a0:47:21:e2:63:63:fd:10:c1:79:c8:cd:19:7d:40:
00:4e:cc:ef:4d:72:3c:4b:25:2d:8e:68:98:a5:21:
cf:33:d5:06:f4:b3:cc:6e:2a:62:dc:45:f0:51:36:
a2:fd:bc:89:d2:0f:5b:18:50:cd:67:b2:b2:8e:f7:
5b:7a:8e:54:c5:05:f2:62:6a:d4:ed:17:70:c4:44:
e1:2e:41:e1:05:01:0b:00:d2:f7:62:f0:6b:e8:84:
23:b5:6a:67:7b:e3:d3:2b:ea:c2:9d:a0:18:cb:51:
34:fa:bb:56:85:f2:6f:43:82:77:f0:35:6a:53:49:
5c:0c:fb:4a:ea:16:75:e3:76:64:4d:d9:ff:05:b8:
71:28:26:05:66:ef:8a:71:b0:82:b9:06:6e:1c:63:
cd:fe:d0:3b:9f:54:1a:e3:f5:64:71:06:fb:46:41:
fe:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:9D:83:50:04:AE:7C:B0:C6:1F:35:AA:31:A6:27:5F:91:CD:B4:7A
X509v3 Authority Key Identifier:
keyid:BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:73:ed:42:57:14:92:09:b3:b2:26:f7:d5:e5:e7:c2:c9:5a:
87:14:ff:b6:21:7f:94:4e:97:f3:b2:eb:70:a9:c0:70:2d:6e:
12:9a:41:ef:11:86:81:57:40:86:42:4a:1a:44:5d:54:1f:ed:
2f:18:ef:30:42:2a:33:08:cd:40:b2:15:a5:fe:9e:a2:11:92:
c1:82:c5:53:ad:08:6d:e2:c4:06:7a:51:2f:a7:d4:50:97:5e:
1e:f7:e0:01:1b:e6:9f:d3:7b:49:c7:db:74:4c:8a:da:98:61:
ea:7e:b1:68:90:7f:f6:0b:1f:b4:fd:c0:26:24:b8:ab:09:b3:
3a:5a:32:97:3d:5b:68:c1:77:7f:ad:eb:e9:a0:43:42:a1:7b:
60:39:31:1c:f8:59:d1:2e:2f:f4:d0:a4:47:17:a3:a0:a2:34:
1c:94:a1:46:02:0a:3d:72:56:c3:fa:ad:fe:ea:e6:93:58:76:
95:21:d2:39:65:cf:e1:6e:7d:26:b5:91:52:f0:a9:01:d9:0a:
ed:70:5f:d9:13:e0:ad:10:dd:67:4a:78:1f:7e:48:ee:8a:45:
74:3c:f0:e4:a7:04:a5:d0:10:00:cb:9b:9d:b4:33:2a:01:1c:
7f:99:e9:a1:40:84:74:ae:39:12:22:cd:b1:aa:3e:de:cc:fd:
1b:c6:04:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:00:19 2026 by rpki-client