Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/f0b6ad-8597-48b2-81a5-1d55cbd3f22c/1/1aDMnmpdW5fb6pZmTdlKw-QifPQ.mft
File: 1aDMnmpdW5fb6pZmTdlKw-QifPQ.mft (raw, json)
Hash identifier: vdZnSVTvm3xRtboJFf37nXKkVcBcxWDUHJpEX7moybg=
Subject key identifier: 16:43:D2:D1:BE:E8:C1:AA:17:6A:E7:61:1D:75:36:2D:3E:F0:1A:B0
Authority key identifier: D5:A0:CC:9E:6A:5D:5B:97:DB:EA:96:66:4D:D9:4A:C3:E4:22:7C:F4
Certificate issuer: /CN=d5a0cc9e6a5d5b97dbea96664dd94ac3e4227cf4
Certificate serial: 019D389C2B1AC134AA37D79D0B3B2BEE8158
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aDMnmpdW5fb6pZmTdlKw-QifPQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/f0b6ad-8597-48b2-81a5-1d55cbd3f22c/1/1aDMnmpdW5fb6pZmTdlKw-QifPQ.mft
Manifest number: 5A
Signing time: Sun 29 Mar 2026 08:00:51 +0000
Manifest this update: Sun 29 Mar 2026 08:00:51 +0000
Manifest next update: Mon 30 Mar 2026 08:00:51 +0000
Files and hashes: 1: 1aDMnmpdW5fb6pZmTdlKw-QifPQ.crl (hash: +EAJ/uvMnLrd5gvaoYhES6oMZLamhcZc5lBE/hx9r04=)
2: o0b3FLGT6_KTAMziRPFBDuoxIFs.roa (hash: HuGKkmAJlpIF3je5dBAlXM+W0Ozh9HwD67fbKdy/D8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/f0b6ad-8597-48b2-81a5-1d55cbd3f22c/1/1aDMnmpdW5fb6pZmTdlKw-QifPQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/f0b6ad-8597-48b2-81a5-1d55cbd3f22c/1/1aDMnmpdW5fb6pZmTdlKw-QifPQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1aDMnmpdW5fb6pZmTdlKw-QifPQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:2b:1a:c1:34:aa:37:d7:9d:0b:3b:2b:ee:81:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a0cc9e6a5d5b97dbea96664dd94ac3e4227cf4
Validity
Not Before: Mar 29 08:00:51 2026 GMT
Not After : Mar 30 08:00:51 2026 GMT
Subject: CN=1643d2d1bee8c1aa176ae7611d75362d3ef01ab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:be:39:6b:b0:56:00:72:2f:f0:20:56:aa:b4:
65:a2:75:95:63:37:26:03:46:13:f9:c9:fe:e3:76:
b9:c5:a6:f8:c4:f6:c3:30:c1:b3:97:ee:c3:b7:99:
cc:c5:7d:b1:86:b2:d2:d4:20:b3:f2:4a:ba:b4:14:
f4:e3:9d:bc:56:09:b4:4a:ac:2e:bc:fa:f2:50:76:
f0:9e:c9:7e:d9:a8:ac:cd:12:f7:57:a7:09:1f:55:
25:b6:71:7c:7b:69:85:75:44:73:b2:95:93:ed:15:
18:96:a9:ee:2e:4b:ab:22:19:90:fd:c0:23:89:25:
90:1b:ec:eb:14:f8:43:ce:02:0d:61:fc:2b:de:0d:
64:e9:47:37:64:cb:93:82:7f:f6:ad:7d:9a:ee:5c:
e7:21:51:2c:c6:25:bb:5f:f7:81:5f:3e:17:de:55:
91:5a:8e:ee:32:c7:48:8d:fa:c0:04:e5:6e:6e:4c:
74:c9:84:b8:a4:ff:63:33:1f:30:21:8b:b2:e3:13:
81:4d:40:cf:33:59:9c:64:26:5a:d0:0a:51:4c:e2:
38:90:4c:a5:75:a2:b8:17:f2:24:31:a8:a1:4c:96:
f8:32:91:c1:b0:b6:10:64:40:c6:c2:05:c9:1a:eb:
2d:7b:7f:9e:d5:16:35:e1:bc:f4:97:54:e3:4e:46:
4a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:43:D2:D1:BE:E8:C1:AA:17:6A:E7:61:1D:75:36:2D:3E:F0:1A:B0
X509v3 Authority Key Identifier:
keyid:D5:A0:CC:9E:6A:5D:5B:97:DB:EA:96:66:4D:D9:4A:C3:E4:22:7C:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aDMnmpdW5fb6pZmTdlKw-QifPQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f0b6ad-8597-48b2-81a5-1d55cbd3f22c/1/1aDMnmpdW5fb6pZmTdlKw-QifPQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/f0b6ad-8597-48b2-81a5-1d55cbd3f22c/1/1aDMnmpdW5fb6pZmTdlKw-QifPQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:d7:0c:89:d1:ab:a1:36:21:c6:76:31:ae:de:e4:d6:12:99:
75:d0:27:46:21:66:fc:8b:47:82:c8:cf:cc:b5:63:26:71:97:
98:66:14:0b:f4:dc:e5:31:10:a4:76:dd:76:f4:d5:e8:8c:32:
36:25:99:55:f2:54:65:2d:21:44:a1:11:80:ed:d9:f5:7f:44:
18:1a:53:43:4b:0f:e8:70:a4:1e:27:a7:ba:09:d1:d1:31:06:
de:7e:4e:ea:01:a9:7e:55:65:11:c3:3b:30:ef:b4:17:ba:9b:
29:bc:e1:ca:62:b8:db:c9:50:65:ca:1a:86:f3:c4:5f:f1:3f:
e3:be:cb:ca:ca:b5:36:26:69:dc:4a:cc:3b:81:fa:e3:51:fd:
e7:6c:4d:ca:05:09:99:da:8f:e5:bc:7f:a6:ec:36:ef:04:07:
5e:13:31:b7:ee:5a:ac:a4:43:69:62:c6:4f:72:8f:7f:b6:1a:
f5:6a:dc:f8:70:44:ac:bc:9e:3a:94:6d:25:0a:90:7b:f5:5e:
a1:77:75:36:5f:87:bf:dd:91:ec:23:03:79:73:d1:bd:b0:dd:
df:d2:2d:7f:90:1c:c5:af:0e:a1:b4:d8:8a:f8:94:8a:02:5a:
fe:d6:7a:e7:ae:a8:e3:60:42:ec:05:47:2f:44:71:c3:0a:56:
ac:73:93:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:14:29 2026 by rpki-client