Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json)
Hash identifier: y/SHAXROekxuMKCtxjaJSzri0uZ1lgiWupan7zqMHbw=
Subject key identifier: 52:2F:A5:02:B2:09:C4:29:99:78:68:6D:E4:5D:FE:96:86:E8:95:C6
Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Certificate serial: 019D37C0A1D4BF1CAAD19E2AC93E4F68AEA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
Manifest number: 16B1
Signing time: Sun 29 Mar 2026 04:01:04 +0000
Manifest this update: Sun 29 Mar 2026 04:01:04 +0000
Manifest next update: Mon 30 Mar 2026 04:01:04 +0000
Files and hashes: 1: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: Q42ovRufnU/JQ1Rr3npEgGfxd5yHFJAuBRf285Ohiz0=)
2: huM-GkqhBk0Re8XPHSnKFpnI1VQ.roa (hash: yMEbieQN4mmr0B4PHYgIfIopNkBH4Ovpl20WF2oTeLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:a1:d4:bf:1c:aa:d1:9e:2a:c9:3e:4f:68:ae:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5
Validity
Not Before: Mar 29 04:01:04 2026 GMT
Not After : Mar 30 04:01:04 2026 GMT
Subject: CN=522fa502b209c4299978686de45dfe9686e895c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:28:69:b0:ea:b2:e3:c1:e1:49:fd:99:b4:cf:
f5:13:cb:08:94:15:c6:74:31:cb:10:39:bd:19:ab:
78:5d:50:64:c9:f5:37:d3:59:01:43:bf:a2:87:87:
36:fb:3f:db:f8:66:96:0a:5a:9a:6d:a0:20:d3:c5:
53:c2:dc:dd:fc:cb:07:cf:9e:20:fc:d2:7f:8c:e2:
35:c5:4a:33:b3:2c:bd:d0:3e:49:50:85:b3:eb:da:
d5:9c:c8:5d:e9:61:cc:34:4a:dc:a8:ce:01:c4:7a:
84:17:34:f1:91:a9:9a:b6:8e:f3:c1:60:ba:a9:e1:
64:48:9f:3a:0f:09:f0:72:72:0b:42:1b:61:31:ed:
0b:69:e2:fd:b0:7a:37:5f:4a:49:a8:7e:25:db:06:
bc:44:a9:af:aa:72:d3:81:e1:77:39:c0:fc:75:d3:
0c:a8:cc:73:95:23:81:7d:ec:d9:2c:f4:22:fc:25:
1a:72:fa:d8:18:d1:29:bf:e9:66:03:ed:7a:fc:e9:
b6:43:44:6f:95:68:76:af:09:dc:fe:d9:b4:c6:6f:
30:a2:a8:fe:8f:d5:3d:a9:4d:54:6e:65:11:3b:00:
60:25:31:0a:cf:2e:24:12:b3:e9:b8:d5:1f:11:87:
c7:ff:0b:b5:83:dc:e0:4c:d6:06:f7:50:75:58:5a:
2e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:2F:A5:02:B2:09:C4:29:99:78:68:6D:E4:5D:FE:96:86:E8:95:C6
X509v3 Authority Key Identifier:
keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:1a:85:68:df:60:22:be:b9:66:4c:6b:35:d2:63:ca:05:9b:
06:60:95:40:1d:47:e7:28:95:5c:e1:c0:68:43:aa:bf:eb:1a:
45:77:03:f5:31:25:88:0a:52:b3:c3:b7:b0:1d:51:15:a0:c0:
8e:e3:b3:ef:15:f7:e3:a0:7b:57:09:eb:96:ea:b8:f3:9a:67:
ef:39:64:dd:64:44:15:51:76:87:c3:3f:d1:06:f3:bf:a7:81:
59:e3:00:04:e7:bc:bb:c4:8d:74:69:a0:24:45:1d:10:17:da:
46:b1:99:8d:e1:9b:30:16:33:e6:a8:fc:16:10:86:90:3a:11:
53:29:15:45:f2:14:30:2c:87:8a:f8:c2:2d:63:cb:f5:1c:4e:
a8:eb:59:1f:91:6f:ca:24:eb:a1:bb:04:5c:53:48:5f:a3:d9:
e7:38:ba:f6:3d:12:69:e4:7f:18:e9:10:e3:1c:d5:30:f5:4d:
e8:0d:61:82:8a:c6:c3:bd:12:1f:c8:b1:1f:20:fd:95:80:73:
6a:62:aa:25:3c:01:0b:31:18:75:b2:61:8f:12:3b:a8:50:10:
00:5a:33:3a:98:de:4b:bf:17:d6:8b:8f:bd:58:a5:c6:c2:07:
ab:9b:33:bd:9e:65:60:32:92:19:67:2d:de:6f:03:6b:6b:e4:
a4:31:39:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:44 2026 by rpki-client