Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
File: mrL5l1qR5xN52hAOyEvUSgooDZs.mft (raw, json)
Hash identifier: RFJIy957Hyp9FJ1gT3GNdtRaWq6n7QA49zBeY9cKuD0=
Subject key identifier: 8F:F1:96:73:8C:9C:74:31:69:8E:10:FD:44:75:E9:D9:BA:BC:9F:9F
Authority key identifier: 9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
Certificate issuer: /CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Certificate serial: 019D38659702F2BAC30BA280F9C5230D179F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
Manifest number: 15D4
Signing time: Sun 29 Mar 2026 07:01:15 +0000
Manifest this update: Sun 29 Mar 2026 07:01:15 +0000
Manifest next update: Mon 30 Mar 2026 07:01:15 +0000
Files and hashes: 1: 24bqS1nUjEa-SWJ2ZtFx5ElbqB4.roa (hash: aZJOy0CyZGrP4yrwBkGXYusHSlYLrLzIGIdzThr5g3M=)
2: mrL5l1qR5xN52hAOyEvUSgooDZs.crl (hash: ySj/nmNBox3w1f+UCGz5JL5EiGoC2rgh6IlZ88kYPsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:97:02:f2:ba:c3:0b:a2:80:f9:c5:23:0d:17:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ab2f9975a91e71379da100ec84bd44a0a280d9b
Validity
Not Before: Mar 29 07:01:15 2026 GMT
Not After : Mar 30 07:01:15 2026 GMT
Subject: CN=8ff196738c9c7431698e10fd4475e9d9babc9f9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c2:23:6c:2b:c4:db:a9:83:e3:57:2e:de:82:
ca:21:8b:96:67:42:16:60:00:e8:17:cc:42:53:33:
e2:22:9f:3a:2b:da:0f:8d:2d:59:b2:35:fd:63:a5:
8f:4b:9b:4f:74:21:6d:66:6b:8e:55:2b:fa:d5:61:
fc:1b:cf:64:1a:4d:30:78:ca:46:cc:8f:6f:6f:e8:
07:d1:15:24:0a:ce:1b:c1:2e:0f:a7:af:f4:e9:83:
ef:87:0a:35:4f:78:02:ae:44:79:38:82:b2:51:fc:
cb:9c:3c:4f:5c:0e:28:d7:12:7b:01:02:19:59:a3:
b9:18:52:86:de:30:91:33:cd:e0:e4:f3:88:05:f5:
16:01:ad:90:c0:3b:da:30:34:82:b4:df:bf:c3:9d:
ee:6c:f1:0e:6f:39:f2:9f:a3:3d:95:46:19:9f:69:
96:79:b6:d1:f4:bc:4e:e0:17:eb:0e:c3:f3:62:c3:
f3:b6:04:b0:76:c6:ff:6e:9e:9a:2c:df:c3:65:9d:
f6:ad:85:da:5c:97:02:a5:df:0b:d2:ac:b0:4a:1e:
8f:b1:f8:96:46:fe:cc:82:0a:66:22:5f:67:b8:5e:
91:d1:d5:83:32:e3:a0:85:73:a4:fb:8c:a7:d1:71:
58:8d:53:1e:65:91:96:9d:f3:27:07:32:ba:1a:f7:
e3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F1:96:73:8C:9C:74:31:69:8E:10:FD:44:75:E9:D9:BA:BC:9F:9F
X509v3 Authority Key Identifier:
keyid:9A:B2:F9:97:5A:91:E7:13:79:DA:10:0E:C8:4B:D4:4A:0A:28:0D:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mrL5l1qR5xN52hAOyEvUSgooDZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/07a487-26cb-4b18-bb39-15fe06fff8bc/1/mrL5l1qR5xN52hAOyEvUSgooDZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:88:38:8c:15:23:06:e1:65:16:9d:91:79:9a:78:dc:dd:7e:
4c:80:55:4c:41:6c:94:70:39:87:19:72:e7:6e:dc:02:e6:cf:
13:28:77:c0:86:8f:bb:52:16:1e:db:d7:aa:51:8e:04:ab:90:
5b:a4:cc:98:e9:3c:d8:96:23:32:f0:7f:78:f8:c1:0d:bf:58:
0b:18:d2:d6:93:d4:6a:7c:13:fa:1c:83:20:54:26:f2:e1:2c:
d7:64:91:2d:a3:89:21:f8:fd:bc:22:80:d9:9a:fe:b0:89:5b:
b4:79:83:61:de:96:15:72:f6:fb:42:47:08:e4:d3:35:43:88:
93:60:14:0b:b7:a5:f2:a9:e4:cd:40:d8:1e:69:ea:33:10:90:
61:55:a4:25:47:16:d7:76:3f:73:e3:94:9d:59:aa:c2:71:31:
35:fe:c5:ee:2b:33:7e:82:5f:04:ab:b0:bc:ff:d1:e4:95:8f:
7b:ee:17:88:d0:4f:8d:32:75:c1:f2:eb:0d:c4:15:b1:4b:33:
d2:e0:ff:1e:d7:2c:6f:b8:f6:db:f1:2a:cd:24:fb:3c:77:d0:
fd:d2:75:ff:99:66:2b:66:5e:ac:b5:7b:64:fb:f8:e4:ea:b9:
a7:04:e9:6d:a6:f3:2b:e4:20:c4:8c:f3:8d:e1:0e:e3:a2:23:
d0:36:23:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:41:02 2026 by rpki-client