Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
File: 5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft (raw, json)
Hash identifier: 78JRFldMKYDqKui/PAzNPKew8wH/T+aWFBvFNXP5I+k=
Subject key identifier: 3B:E9:DD:9E:D1:58:BB:47:AC:13:EC:57:BE:FA:CA:D2:97:6E:79:62
Authority key identifier: E6:1B:9A:5D:6D:98:70:3C:38:72:A1:BB:3F:90:D1:03:68:5C:BD:04
Certificate issuer: /CN=e61b9a5d6d98703c3872a1bb3f90d103685cbd04
Certificate serial: 019D394198A76C8A0078BA178D4316054FBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 11:01:33 +0000
Manifest this update: Sun 29 Mar 2026 11:01:33 +0000
Manifest next update: Mon 30 Mar 2026 11:01:33 +0000
Files and hashes: 1: 5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl (hash: V0XL0u1TBzTwel3WUtdCfVCZxpQJbxFe2RTDRodXlrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:98:a7:6c:8a:00:78:ba:17:8d:43:16:05:4f:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61b9a5d6d98703c3872a1bb3f90d103685cbd04
Validity
Not Before: Mar 29 11:01:33 2026 GMT
Not After : Mar 30 11:01:33 2026 GMT
Subject: CN=3be9dd9ed158bb47ac13ec57befacad2976e7962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:93:ed:c6:12:3b:0b:c4:b4:1a:2d:92:1e:b8:
0c:f1:17:46:05:aa:33:fb:aa:4f:6c:74:bd:fa:1c:
75:9f:b4:94:d9:30:55:c2:50:d4:a5:0c:2b:80:7b:
93:f0:4e:17:50:89:d3:2a:de:51:96:d7:02:8c:b1:
0b:74:16:7a:2a:d5:34:cf:14:24:a8:bf:ef:f1:ff:
29:47:5d:6d:cf:f3:dc:8c:fe:b5:8d:f2:e6:4c:56:
ab:79:4d:45:1d:23:a8:46:cc:28:e3:39:64:dd:4c:
64:12:8f:6e:1b:f3:5e:74:a4:30:e5:e5:84:cf:2b:
89:29:56:87:34:82:87:ed:6e:d7:7b:ac:d3:ae:31:
7a:0c:4d:bc:52:a3:86:de:d4:ac:6d:41:16:49:b0:
a2:32:84:46:f7:67:f4:7b:9f:32:a9:5e:f9:e5:1c:
f4:64:c8:d6:90:7c:b9:61:76:b4:fe:67:24:53:d7:
89:cb:69:c6:43:88:9f:5b:d6:68:59:23:28:62:42:
47:b9:89:bf:88:6b:fd:4e:60:ee:b4:a8:4c:b8:67:
f2:e1:22:13:d3:9b:ec:a8:9f:20:b3:2c:0e:cd:2b:
a6:c0:70:c9:e3:52:b9:88:42:59:eb:e0:2e:98:2b:
9e:18:b9:32:8e:32:50:ed:30:f6:25:c2:dc:c0:8f:
de:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E9:DD:9E:D1:58:BB:47:AC:13:EC:57:BE:FA:CA:D2:97:6E:79:62
X509v3 Authority Key Identifier:
keyid:E6:1B:9A:5D:6D:98:70:3C:38:72:A1:BB:3F:90:D1:03:68:5C:BD:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:82:57:0b:63:5a:f7:b6:5a:26:d9:3a:ed:49:a2:2c:07:0a:
d7:44:c2:95:e8:15:53:1f:20:72:05:a1:70:82:0a:9c:f1:22:
c1:a0:91:19:d3:f1:b9:58:db:b4:53:75:fd:86:70:ae:25:35:
84:40:79:e3:c1:b6:04:3c:0b:6e:71:fc:ee:79:a0:38:7b:c3:
bc:0b:45:4d:2e:0d:aa:58:64:01:58:fc:83:0c:aa:0a:d9:99:
72:46:8e:9e:21:09:b4:ff:13:ca:bc:5f:3b:c2:5b:e3:6f:79:
e2:5c:1b:59:ba:56:86:15:4b:9a:70:50:e6:41:a8:36:7f:d7:
fb:be:6a:a9:e0:fb:77:0a:5b:05:5a:fb:11:02:ed:21:d7:b7:
46:2c:91:1a:80:16:3b:cc:54:47:70:f4:05:72:28:be:fc:42:
d0:86:fd:fc:5e:98:81:1e:88:0d:fd:c2:36:19:34:f9:eb:8c:
92:e4:1b:8e:d8:0d:8e:5f:57:76:92:26:ed:f0:17:7a:fc:4f:
dd:5e:c2:66:5c:fc:42:01:52:07:33:ae:23:f2:5f:87:6c:6e:
87:43:9e:90:b4:bc:4a:4a:4b:f3:e8:71:8e:7b:dc:88:70:01:
e5:3c:6d:4e:0c:60:58:c8:ad:68:ce:93:a7:dd:99:21:92:47:
e1:ae:cb:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:03:58 2026 by rpki-client