Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
File: d5KQMR5unPpeUX-rsNlvqaccPaE.mft (raw, json)
Hash identifier: 5Rrvi4tPmXQIElXOeX/cVBSqkSKcAJPbdLIFbWQ/7bQ=
Subject key identifier: 5D:E8:4A:5F:BD:1E:66:A5:92:60:AD:B2:EC:5E:B7:E8:64:84:8F:C9
Authority key identifier: 77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1
Certificate issuer: /CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1
Certificate serial: 019D38D3B6E4AA955136600B108A1D524769
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 09:01:32 +0000
Manifest this update: Sun 29 Mar 2026 09:01:32 +0000
Manifest next update: Mon 30 Mar 2026 09:01:32 +0000
Files and hashes: 1: 566D1EdYs19-3V9MiVbPg5q4klA.roa (hash: qyY7COVkvk1w1sXrRK7aY7nXKVOnf0oYO2ACeWMsGEE=)
2: d5KQMR5unPpeUX-rsNlvqaccPaE.crl (hash: KfzjbiuKcw887ec2fkcNJ4t/a4vFdPSdjfNc0taber4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:b6:e4:aa:95:51:36:60:0b:10:8a:1d:52:47:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1
Validity
Not Before: Mar 29 09:01:32 2026 GMT
Not After : Mar 30 09:01:32 2026 GMT
Subject: CN=5de84a5fbd1e66a59260adb2ec5eb7e864848fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3a:80:93:34:3a:ac:ec:79:d4:48:2c:a8:06:
97:4a:a5:26:07:e1:a7:24:a2:d7:18:69:38:06:0c:
e9:88:eb:b5:f3:3e:ab:92:06:ea:41:7b:dd:31:f7:
a1:58:6e:a0:ab:0c:18:87:10:7e:74:df:25:44:d9:
0b:32:f1:60:30:14:57:28:bc:93:7b:96:f6:08:c0:
a4:10:ca:ec:3a:64:77:d4:c8:a5:07:46:18:86:ce:
8d:86:a1:26:3f:fd:30:e3:c2:14:54:01:56:e1:da:
e1:4c:64:b7:24:1e:bf:b8:7d:7f:b8:ea:c7:4c:14:
68:8b:36:f9:bd:71:dd:5f:a7:2b:a6:4e:cf:b0:90:
69:16:dc:74:ff:a2:bc:5f:49:0f:2e:f3:a3:9f:87:
2c:a6:6e:33:dc:ea:ad:5d:c1:7d:23:20:d0:73:3b:
35:26:7e:ec:15:50:f1:fa:2d:51:b3:0e:06:9e:c7:
d1:f3:28:7f:cb:0b:3e:50:ab:78:d3:cb:54:25:b7:
cb:4e:22:58:05:73:69:c1:43:a2:d0:53:fc:76:59:
b7:68:8c:43:73:70:5d:08:93:07:62:01:5e:3d:df:
c2:b5:67:e5:9f:ab:ca:a7:8d:bd:71:50:01:af:8f:
7a:e0:4c:25:36:98:d4:1b:f6:d2:09:5a:30:99:86:
07:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:E8:4A:5F:BD:1E:66:A5:92:60:AD:B2:EC:5E:B7:E8:64:84:8F:C9
X509v3 Authority Key Identifier:
keyid:77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:6e:04:9c:d6:99:ae:5d:b2:55:e1:83:f1:98:83:3d:38:a9:
a9:3a:ab:15:0c:ac:93:34:a6:88:6f:5a:0e:67:95:70:67:9b:
ee:f5:84:b4:3d:85:9d:97:24:2e:ef:0e:bd:96:a6:fd:a1:6e:
4b:9a:93:40:10:59:2f:9a:aa:6d:9d:1f:dd:ac:01:c2:91:a7:
3b:ea:c7:70:31:68:4d:f1:f3:18:27:45:5f:ad:28:5f:20:c2:
4c:90:03:13:23:da:42:54:8d:43:fa:e0:ba:20:74:36:04:7b:
8a:ea:f4:8b:5d:f0:12:4c:aa:d0:32:09:d7:80:e8:5d:19:9f:
42:3b:c3:f3:f1:fb:c6:2f:60:5f:98:06:5a:1e:09:e4:cd:85:
2d:34:44:0d:da:de:fd:8a:f7:00:03:78:5a:85:3e:53:90:16:
f7:3e:2b:98:82:9b:9f:f5:2c:41:9e:d5:c3:c5:74:7b:66:99:
96:02:8c:3a:25:7a:05:e4:82:1e:ba:1d:59:05:e8:cf:9d:00:
48:da:b7:46:70:37:ba:82:f9:44:33:ab:5f:e2:fd:3c:b7:7f:
4f:7f:c7:e9:db:6a:a6:f0:79:37:90:2b:e5:d5:38:9f:85:53:
2f:05:e6:3e:ca:a8:8a:70:a6:4f:d8:fd:75:a0:a7:76:a6:8f:
a6:89:4d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:46 2026 by rpki-client