Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
File: 5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json)
Hash identifier: mD6FkN1wjcq0HgAv+vtQKuLXfyNY40Lj4VYjHtN1XH0=
Subject key identifier: 58:12:5B:B5:B3:25:FA:56:EF:F8:4C:24:F6:72:A0:CF:1E:0E:DB:AD
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Certificate issuer: /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial: 019D3AF85683C4DB1CA50BB16193D7A7CE6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
Manifest number: 1820
Signing time: Sun 29 Mar 2026 19:00:46 +0000
Manifest this update: Sun 29 Mar 2026 19:00:46 +0000
Manifest next update: Mon 30 Mar 2026 19:00:46 +0000
Files and hashes: 1: 1-Q3xDZfzQc6tV29ExEVxZMLhErU.roa (hash: RiGnAtuoBY0MDLXEEdvsOwo9zTH9zl0+GNo+JIs/bog=)
2: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: PR5vqq4c7HyE/+OfZYIkNSqkvbkRE41CRbTAR3yGYuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:f8:56:83:c4:db:1c:a5:0b:b1:61:93:d7:a7:ce:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Validity
Not Before: Mar 29 19:00:46 2026 GMT
Not After : Mar 30 19:00:46 2026 GMT
Subject: CN=58125bb5b325fa56eff84c24f672a0cf1e0edbad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:43:f8:37:e4:4d:ba:0d:21:c7:f0:55:94:77:
c5:0b:ac:34:22:e8:63:3c:1b:43:29:46:93:4e:19:
cf:17:2e:af:80:2a:82:cc:8b:c8:fa:1f:38:1a:e8:
74:a1:fa:2d:cb:5a:4b:b2:02:46:25:33:cc:50:ea:
83:f5:34:c6:c0:c2:6f:45:84:08:e9:93:df:b9:6a:
3b:53:4a:2f:2f:f3:05:4c:eb:01:8d:18:66:d1:71:
df:98:8c:6c:88:8e:ff:06:cf:ce:c7:38:9d:30:7d:
99:32:14:7d:36:28:cb:5b:89:76:30:9c:d4:a6:b9:
70:45:cb:44:f7:f2:25:d5:f3:52:59:fb:9c:3e:7c:
2d:8c:9f:99:e0:a3:a1:a1:eb:fd:65:da:97:7a:e5:
5a:46:72:84:5d:4c:ab:e3:42:0f:06:c3:35:e0:25:
3b:0f:f9:99:b1:af:2b:ec:2f:c9:61:1b:d4:78:d8:
54:4d:e0:c0:ac:ed:93:7b:83:2c:03:29:de:37:48:
90:47:14:21:b9:2a:61:c3:0c:5b:3c:8e:50:2c:16:
86:02:1a:a0:86:c3:8d:09:6b:1e:e8:a4:dd:19:c4:
a6:5a:a2:4a:c5:07:e6:1a:43:5e:7b:29:82:32:4e:
43:51:1c:9a:fb:98:e8:6f:4b:06:20:90:28:5a:a8:
71:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:12:5B:B5:B3:25:FA:56:EF:F8:4C:24:F6:72:A0:CF:1E:0E:DB:AD
X509v3 Authority Key Identifier:
keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:bc:3f:3d:24:52:9e:65:89:e5:fd:c6:ef:06:f0:63:dc:5c:
62:0e:39:27:92:52:5b:a3:b1:bb:d3:d9:a9:f9:06:10:04:99:
ab:84:d4:33:8c:c6:1f:85:7d:5b:32:fb:40:e7:3b:56:24:9e:
07:94:49:0a:90:dc:b7:06:3b:be:94:51:68:48:42:ba:bd:17:
af:74:3d:56:c4:bc:10:9e:f2:bf:17:5b:25:58:df:d0:6b:0f:
8f:d2:e6:1d:6f:0c:ff:71:7a:75:77:ec:13:ed:a9:69:00:22:
b7:32:ea:b6:3a:20:89:82:ee:e6:7d:eb:5e:4c:1d:07:2d:b6:
d6:34:1c:51:a7:97:fa:bb:04:47:27:72:be:73:b2:c5:6a:fe:
91:b4:c4:42:51:46:13:1d:f2:16:2b:59:e2:c6:39:13:1c:26:
93:0a:e8:34:98:18:b4:a0:57:05:c9:df:7b:14:66:cf:7a:86:
af:53:f2:b0:83:f5:da:d5:19:8d:6b:35:c0:6e:66:34:7f:8d:
51:bd:7d:7f:2d:3f:d1:e0:dd:12:77:eb:84:c4:f1:60:d8:a2:
1f:c2:62:4e:94:44:cd:1e:55:20:32:53:7c:f7:a1:6d:ef:05:
5b:98:b3:82:b1:ed:e1:5b:58:5f:30:e7:31:61:02:69:85:5b:
f2:d0:4b:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:22:17 2026 by rpki-client