Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft
File: 5YAuENSvnLelksYbu0sJLqw4htY.mft (raw, json)
Hash identifier: CpejSUif5LFpjfj7M0ujDSlnjf11daaDgt39bILghJw=
Subject key identifier: DD:EC:70:3A:79:E5:EC:AF:0F:29:AD:7A:12:94:F0:EE:A2:66:60:A1
Authority key identifier: E5:80:2E:10:D4:AF:9C:B7:A5:92:C6:1B:BB:4B:09:2E:AC:38:86:D6
Certificate issuer: /CN=e5802e10d4af9cb7a592c61bbb4b092eac3886d6
Certificate serial: 019D38D33CA4B1B7AAAF22A511516A1EDE75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YAuENSvnLelksYbu0sJLqw4htY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft
Manifest number: 01BD
Signing time: Sun 29 Mar 2026 09:01:00 +0000
Manifest this update: Sun 29 Mar 2026 09:01:00 +0000
Manifest next update: Mon 30 Mar 2026 09:01:00 +0000
Files and hashes: 1: 5YAuENSvnLelksYbu0sJLqw4htY.crl (hash: 2xvTfIZO5OhZ26wS5yxcOouWAig51xrZPzegpi+Y/k8=)
2: V7uoSOO7xuQ-5mC33-G196G_a8s.roa (hash: tVW62BhhbXSwkMQ25NQGkX/bauxI9OvjWozYd+KEyP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft
rsync://rpki.ripe.net/repository/DEFAULT/5YAuENSvnLelksYbu0sJLqw4htY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:3c:a4:b1:b7:aa:af:22:a5:11:51:6a:1e:de:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5802e10d4af9cb7a592c61bbb4b092eac3886d6
Validity
Not Before: Mar 29 09:01:00 2026 GMT
Not After : Mar 30 09:01:00 2026 GMT
Subject: CN=ddec703a79e5ecaf0f29ad7a1294f0eea26660a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:77:55:4f:cf:47:e8:8c:58:a7:7f:ce:b9:a8:
0e:c4:01:25:c1:13:68:7c:44:b0:bd:75:29:70:c7:
d3:5f:37:3c:61:bc:e3:62:9f:a7:54:d1:c6:66:8c:
e5:14:1c:d5:45:39:96:cb:81:76:08:68:5e:1a:96:
62:99:4c:5a:77:84:b2:1f:b2:86:34:6c:52:1f:ab:
3c:e3:99:51:f9:c6:d6:7b:ac:bf:26:35:a8:3f:d8:
5e:c0:02:3b:4b:a0:a2:68:46:da:b3:33:4a:19:ba:
fd:c6:50:59:74:a9:e7:3b:78:7b:61:e1:82:92:3e:
f0:a5:d8:8a:8b:37:79:03:1f:be:78:70:66:4f:bb:
ff:c3:1c:f0:df:26:89:9c:df:59:de:e8:24:fc:af:
b8:ac:d6:1c:db:60:57:4a:b2:4f:e6:02:62:30:85:
42:a8:c0:7e:43:06:6a:0f:82:93:68:5e:4f:da:eb:
0a:0b:84:fd:fa:3d:ea:b6:8e:52:7a:0f:c9:f5:30:
a3:96:e6:12:b7:59:ed:10:47:f2:13:fb:1d:b9:e2:
8f:43:95:fd:ab:03:6b:22:f5:fd:70:b1:20:ca:e4:
e6:1a:6a:53:d9:a5:3a:cf:a2:e7:2b:df:1f:84:54:
29:89:4a:9e:a8:7f:e1:d2:07:6f:dc:55:2e:67:00:
94:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EC:70:3A:79:E5:EC:AF:0F:29:AD:7A:12:94:F0:EE:A2:66:60:A1
X509v3 Authority Key Identifier:
keyid:E5:80:2E:10:D4:AF:9C:B7:A5:92:C6:1B:BB:4B:09:2E:AC:38:86:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YAuENSvnLelksYbu0sJLqw4htY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/cd57e2-57c7-4cc5-8714-3496c9d794bc/1/5YAuENSvnLelksYbu0sJLqw4htY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:c4:cd:4b:d7:f7:89:00:bb:b5:a5:2b:15:68:2b:c9:ba:8d:
5f:87:51:a8:bb:34:3f:94:a4:b6:a7:a6:52:29:25:d3:54:a6:
b0:e9:97:98:94:52:6d:1f:8b:73:bf:a6:f7:24:fd:9c:02:6a:
9a:a2:8a:ec:76:54:4a:b2:c2:4a:aa:cf:2b:d4:d6:54:75:e2:
6e:15:b3:3f:7d:0b:65:16:cf:87:a7:ba:75:c7:86:0a:9a:aa:
98:8c:64:78:63:9e:ce:d2:af:48:db:d3:e8:f7:6e:57:52:17:
dd:e9:03:b0:04:23:73:ea:c1:93:52:29:3e:73:eb:1d:ec:bc:
a0:d8:4e:c1:1f:6d:b8:d1:ee:0e:c4:1b:be:ad:9a:bf:70:4b:
8e:3a:bf:48:61:fe:eb:1e:15:f8:d5:de:ae:ac:20:f3:b2:4d:
33:51:1c:a5:05:d9:7d:f8:c3:09:27:71:b6:12:81:f4:1a:0b:
bb:5f:01:26:d5:5e:1f:03:b2:cd:59:ac:62:23:37:e5:20:ed:
1e:b9:9e:e7:71:bd:f1:28:7c:83:48:31:1f:48:76:8f:31:4e:
57:8e:91:63:21:8e:63:60:43:3d:e6:da:ea:df:30:0f:2b:93:
c3:24:23:99:97:a5:38:4b:a7:b5:94:c4:13:fc:ad:4f:2b:e7:
ca:7c:95:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:01:08 2026 by rpki-client