Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
File: 5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft (raw, json)
Hash identifier: QkzjPaf1On3l1Cw8VPqv0vD4zal6rteUAtMvkeOkKoE=
Subject key identifier: EB:AB:0E:44:B6:09:C8:72:0E:EE:72:BD:FD:1A:1B:A9:53:15:CC:33
Authority key identifier: E6:1B:9A:5D:6D:98:70:3C:38:72:A1:BB:3F:90:D1:03:68:5C:BD:04
Certificate issuer: /CN=e61b9a5d6d98703c3872a1bb3f90d103685cbd04
Certificate serial: 019E307200D39BDD1570CB9535B683009855
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
Manifest number: 190C
Signing time: Sat 16 May 2026 11:00:37 +0000
Manifest this update: Sat 16 May 2026 11:00:37 +0000
Manifest next update: Sun 17 May 2026 11:00:37 +0000
Files and hashes: 1: 5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl (hash: 6RsaenVvqYOeihHyMuPvc9fFLe1o8lt9Fw7eRCN5c2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:00:d3:9b:dd:15:70:cb:95:35:b6:83:00:98:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61b9a5d6d98703c3872a1bb3f90d103685cbd04
Validity
Not Before: May 16 11:00:37 2026 GMT
Not After : May 17 11:00:37 2026 GMT
Subject: CN=ebab0e44b609c8720eee72bdfd1a1ba95315cc33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:21:30:88:7e:c8:dd:1c:f2:db:22:14:78:b3:
81:6a:84:ed:40:29:a6:08:d2:a0:7b:77:e4:30:e3:
24:4a:92:06:7d:13:40:4a:6b:e0:c0:e8:b2:85:55:
8e:0e:49:98:b3:51:a4:e9:b4:04:02:14:2a:e1:96:
9c:51:1a:0e:e8:db:7d:52:59:bc:d9:ec:4f:fb:96:
cc:89:a7:a8:52:f2:16:69:cc:84:88:7e:3d:5d:7c:
d8:60:9c:53:70:1b:4d:4a:19:cb:0f:cf:57:24:a4:
ca:1c:5d:e3:3c:a2:4d:6c:a6:88:76:bc:3a:f6:15:
c9:63:9e:f1:84:53:a2:14:fb:28:28:a6:d1:8c:fd:
68:77:b1:ce:1c:9d:80:52:44:8a:76:fa:79:d3:15:
82:9b:7d:90:3f:c9:5b:c1:61:6c:3c:c1:63:da:d1:
9d:74:ce:59:2d:56:d1:2f:b4:31:b4:bc:ee:4f:23:
1a:68:d1:e0:96:35:1a:00:c4:1c:53:0d:32:9d:a9:
57:f1:a0:7c:d7:8a:a4:c8:33:a4:b0:80:7d:00:3b:
6d:2a:16:78:bc:75:f8:9b:37:24:7a:92:78:35:73:
6c:f5:92:80:3d:9a:74:dd:0f:8c:56:a9:b2:41:07:
b9:55:23:7c:35:bb:1e:a8:94:c7:1f:e5:bc:fe:33:
85:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:AB:0E:44:B6:09:C8:72:0E:EE:72:BD:FD:1A:1B:A9:53:15:CC:33
X509v3 Authority Key Identifier:
keyid:E6:1B:9A:5D:6D:98:70:3C:38:72:A1:BB:3F:90:D1:03:68:5C:BD:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:a9:5b:5b:26:2b:e3:be:2d:e9:7d:61:23:5b:3b:00:5b:03:
42:9b:89:93:2d:ab:66:da:db:fb:d9:a2:3e:58:fd:fb:15:72:
31:f8:ca:fe:1d:73:3c:fc:f3:48:1c:09:e7:ed:35:7d:7d:e1:
2b:43:06:6f:11:d3:99:51:ae:f8:bf:c4:ff:38:25:17:bd:f0:
45:b1:a7:df:56:75:62:c5:69:be:fa:0e:14:d1:19:40:8d:67:
cd:ea:6f:ae:0d:64:ee:5a:76:21:4c:0f:f7:95:5b:4e:ec:c4:
55:cb:e6:d1:82:48:9a:bf:91:87:2b:7e:ea:c0:62:3c:3f:c9:
d3:e8:bc:92:41:1d:46:ce:69:c3:8f:81:84:d3:99:9e:a9:1b:
a9:c3:7d:75:13:0e:4b:a4:11:61:1a:fc:95:b4:9c:31:36:c2:
9c:eb:72:d8:fc:80:b8:6c:80:bb:4c:6e:01:46:87:36:1c:da:
e4:7f:07:de:8c:9e:34:78:43:41:f9:fc:aa:78:97:72:22:39:
c5:f4:a3:eb:ac:82:7b:5c:98:d3:7f:24:ed:9c:3c:cd:c9:80:
b9:3e:09:ea:3e:e4:7f:b6:83:78:b3:d8:62:be:48:2e:ef:02:
3b:5d:e0:51:61:07:76:45:28:ed:72:38:7c:21:b5:5e:14:37:
43:75:47:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:42 2026 by rpki-client