Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
File: 5aiGWRTezNyYByQf1wtrsIOkRLM.mft (raw, json)
Hash identifier: VYnv+886xMbqXKwOWnda71HRUrZyjSdpiBW6mtOUHtw=
Subject key identifier: 68:18:D7:8B:4A:8F:1A:12:A7:F7:A7:93:1B:AE:03:E5:25:75:3C:E2
Authority key identifier: E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3
Certificate issuer: /CN=e5a8865914deccdc9807241fd70b6bb083a444b3
Certificate serial: 019E311748D3AB1906B99AF54D79F3025985
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
Manifest number: 128C
Signing time: Sat 16 May 2026 14:01:09 +0000
Manifest this update: Sat 16 May 2026 14:01:09 +0000
Manifest next update: Sun 17 May 2026 14:01:09 +0000
Files and hashes: 1: 5aiGWRTezNyYByQf1wtrsIOkRLM.crl (hash: tcdmHNQxxIcz0tXgAodjYNTMVmYhi6S8qHPEbbXfUws=)
2: wnKKZs8CL5sITpd1bsL8mCN_whw.roa (hash: x/oWyELUEfox1cdM+OjmJcPeW5wZ59veRKaEMseu1OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:48:d3:ab:19:06:b9:9a:f5:4d:79:f3:02:59:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a8865914deccdc9807241fd70b6bb083a444b3
Validity
Not Before: May 16 14:01:09 2026 GMT
Not After : May 17 14:01:09 2026 GMT
Subject: CN=6818d78b4a8f1a12a7f7a7931bae03e525753ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:21:79:d0:7d:0d:52:6f:c9:e6:1a:6f:f2:70:
d8:6b:70:29:51:6a:c2:b5:80:cf:67:ef:f8:a7:7f:
b1:75:69:8a:cd:c6:f8:c5:25:27:f6:02:7d:0d:ef:
17:18:5b:d5:fd:a4:d2:da:be:48:63:e4:f8:9c:cf:
01:d7:63:25:3d:45:29:68:8e:9d:e5:fe:bb:68:62:
39:14:86:39:2a:37:af:9d:4c:6b:36:e1:63:5b:36:
dc:cf:2d:4c:92:b7:b3:4c:64:ba:2a:a4:5a:6d:42:
4c:11:93:74:b1:0c:e0:ed:44:2c:32:73:2e:f5:68:
f0:37:88:b5:0b:ae:b0:9b:37:a5:1a:3e:7b:d4:21:
cb:e9:69:1a:d3:ad:48:dd:1b:e1:7d:5d:a2:99:28:
80:20:80:3d:cb:c4:dc:0c:cf:84:36:ae:d4:d2:69:
82:4b:38:19:66:0e:58:10:e0:00:3e:a1:e2:36:ce:
1c:00:4e:ad:b5:ab:27:d3:aa:65:8e:6d:6b:6e:50:
ef:5f:44:ce:72:5a:c1:29:e0:a4:6c:44:e8:42:ca:
21:97:8b:94:a6:0d:6d:8a:8a:bb:5c:89:da:5c:9d:
af:85:5d:7a:64:b2:b5:c6:ca:51:52:82:6f:07:c5:
e7:7c:8d:f3:12:3d:25:21:5f:5f:95:d3:50:66:48:
06:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:18:D7:8B:4A:8F:1A:12:A7:F7:A7:93:1B:AE:03:E5:25:75:3C:E2
X509v3 Authority Key Identifier:
keyid:E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:65:5e:2f:e9:8f:3e:0f:8a:97:44:a0:16:b7:83:c9:02:85:
c6:7d:c5:3a:29:ff:b8:6b:d7:4e:4e:10:df:f0:a1:fa:bd:7d:
27:32:59:bf:ee:6b:2f:7a:41:2b:11:cc:30:03:63:8b:aa:d8:
d7:fa:41:bd:92:68:1c:a3:f0:ba:dc:95:81:a6:ad:2f:bb:45:
31:f1:86:71:73:ca:17:21:9a:85:a3:51:7b:d0:37:38:01:b0:
69:89:0c:4d:3f:14:af:2b:81:ef:b3:2e:11:ab:7a:02:69:74:
d7:2a:7e:9d:87:a5:4e:8c:a4:93:f3:5e:3e:2e:e3:38:3d:65:
cc:90:4e:de:e5:df:cb:13:ab:ee:c9:85:4c:62:fb:f4:b3:4d:
ac:b2:99:4c:c4:1e:cd:d3:61:2f:71:3e:10:7a:02:ae:7b:8b:
66:1c:f6:46:90:50:78:09:4c:4c:a0:0f:ee:4d:8a:79:fd:77:
dc:6f:23:c7:03:62:d3:55:54:3b:30:11:be:b5:bb:cc:6e:e5:
0b:0c:e5:91:58:82:05:0e:f8:c0:b8:15:d6:e0:10:b2:15:74:
42:5a:50:ed:9f:e3:dc:32:8a:48:c3:ed:2d:bb:1c:3d:a1:13:
dc:fd:de:d2:c3:29:97:ee:ee:fd:ef:c3:fc:38:9f:16:3f:fa:
04:57:07:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 16:23:55 2026 by rpki-client