Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
File: 5hbHsgGVYH8nsT2I-Svx0Os45g8.mft (raw, json)
Hash identifier: NpuTKiXhTmYSxD1DQt+Ghj3l0ZX3qumhebBjTVZ7e78=
Subject key identifier: 09:65:40:EA:3B:8A:10:01:F3:6F:CF:5E:D9:C1:01:89:BC:1C:CE:82
Authority key identifier: E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F
Certificate issuer: /CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f
Certificate serial: 019DCFE2FE6C6811B32C00034E84991A18A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
Manifest number: 0392
Signing time: Mon 27 Apr 2026 17:00:53 +0000
Manifest this update: Mon 27 Apr 2026 17:00:53 +0000
Manifest next update: Tue 28 Apr 2026 17:00:53 +0000
Files and hashes: 1: 5hbHsgGVYH8nsT2I-Svx0Os45g8.crl (hash: wM+OXVvVgk5N4b3CjEaP+8sTp5/70FUn1PiwGFtTGgs=)
2: 72Y0w9pV82pI3wLwx96KwjAs5oU.roa (hash: c5hQXuvcKRBmbu9AlA38sraM6CQffUtGwob8NZ7WzZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:e2:fe:6c:68:11:b3:2c:00:03:4e:84:99:1a:18:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f
Validity
Not Before: Apr 27 17:00:53 2026 GMT
Not After : Apr 28 17:00:53 2026 GMT
Subject: CN=096540ea3b8a1001f36fcf5ed9c10189bc1cce82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9d:b5:aa:8d:09:98:d1:f5:00:bc:ae:58:4e:
5d:6c:0f:c7:88:bc:0a:6c:2f:fa:17:0c:64:48:d6:
ca:10:6f:db:25:03:8a:53:7d:e5:52:93:99:1c:72:
60:47:96:02:d8:60:df:f0:69:bc:b3:97:da:cd:5d:
33:9e:58:2e:07:57:80:d6:0a:9f:7b:10:89:f4:a1:
13:b4:ad:26:05:20:33:4b:d1:b0:1e:5d:64:94:66:
e1:2d:f8:db:df:d3:05:4a:b1:5c:f8:c4:e7:bd:1c:
09:12:66:f1:c2:9c:1d:48:a9:8e:8b:b2:04:7f:d2:
bc:a4:6f:eb:e7:2b:e5:80:be:af:42:07:14:8e:88:
f2:3e:8a:a7:3a:13:e7:ab:f6:0e:80:c1:5c:2b:7c:
ad:88:07:94:16:84:27:fd:ee:2d:d4:7b:41:ae:e4:
49:ff:27:4c:30:3b:87:94:40:d8:3f:92:3b:5d:e1:
94:14:50:36:a5:97:4a:4c:35:87:0d:1d:c1:de:9e:
50:21:ef:b5:90:c1:44:04:56:38:dc:e7:a6:c7:2f:
7f:a8:98:7e:31:cd:7d:60:09:09:2e:d9:bc:00:93:
46:73:54:79:3a:f5:e9:f0:13:db:6b:c5:6e:21:4a:
dc:3f:38:1f:b5:4e:a1:03:5e:61:b6:a6:1b:8f:46:
f8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:65:40:EA:3B:8A:10:01:F3:6F:CF:5E:D9:C1:01:89:BC:1C:CE:82
X509v3 Authority Key Identifier:
keyid:E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:5d:bb:0b:15:f3:dd:34:4e:6d:a3:cc:03:c8:fd:b7:c2:0f:
d1:57:81:28:ed:1e:5f:99:b3:c1:77:a3:ec:f4:7b:ee:3d:39:
74:fd:37:84:5d:57:44:5a:f4:7c:c8:d6:7c:7e:6a:43:64:c3:
5d:49:fc:89:3e:ea:1b:69:a9:da:9c:3f:40:db:65:c3:76:7a:
a8:b4:d7:28:b9:8a:5c:27:ca:6e:0f:8f:53:9a:8f:c3:6a:aa:
ac:0d:d0:79:14:ee:74:7c:27:2f:57:32:46:c2:6b:5c:93:56:
16:2e:96:76:49:70:d1:90:af:48:a1:ef:cb:9e:74:ec:6c:7d:
76:10:ca:ca:c2:55:fd:af:93:95:2b:27:70:6a:a8:9f:6b:9b:
83:90:96:03:21:3c:5f:40:2a:3c:11:26:92:ed:ac:41:1d:d9:
21:8a:16:f1:3f:66:d9:8b:39:63:61:02:2f:01:34:56:e1:95:
2d:cf:73:bb:6c:09:b9:34:e2:ea:d9:7a:80:c9:d1:07:aa:3f:
9b:d8:73:a7:9b:df:04:db:54:e5:2c:f5:3b:ba:f5:6d:ca:57:
c7:d7:8f:0d:b7:2f:3d:f6:a5:fb:cd:ec:e2:a4:ea:3e:6d:3d:
a5:33:ab:96:fd:dd:26:95:99:c4:4a:5d:58:e9:f1:ed:5f:a2:
93:15:98:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:07:26 2026 by rpki-client