Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
File: 5gSc-H3Y8f1MgCS1psnqlPF7b70.mft (raw, json)
Hash identifier: Ebrmb41LwGUHozk2muZSsl+bf2/8nB3jUSmMJC72SjU=
Subject key identifier: 42:2F:43:4E:EC:6B:E7:A3:1E:DD:02:F5:E6:B1:7D:94:1C:F1:32:B9
Authority key identifier: E6:04:9C:F8:7D:D8:F1:FD:4C:80:24:B5:A6:C9:EA:94:F1:7B:6F:BD
Certificate issuer: /CN=e6049cf87dd8f1fd4c8024b5a6c9ea94f17b6fbd
Certificate serial: 019F11C0B8F2E21F7843BF3F2521DFBC4A28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
Manifest number: 1918
Signing time: Mon 29 Jun 2026 05:01:10 +0000
Manifest this update: Mon 29 Jun 2026 05:01:10 +0000
Manifest next update: Tue 30 Jun 2026 05:01:10 +0000
Files and hashes: 1: 5gSc-H3Y8f1MgCS1psnqlPF7b70.crl (hash: YM0XUDTJBw8HrQ4v752ueNnLP/pE8gPlVUnfibP0JMY=)
2: t2FHnnEHf_6TSghs3_z2wcfp-bA.roa (hash: 91+RIg0AqSl330cDSTT6P3HSGmorFbL8LnE7d4GsH5g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:b8:f2:e2:1f:78:43:bf:3f:25:21:df:bc:4a:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6049cf87dd8f1fd4c8024b5a6c9ea94f17b6fbd
Validity
Not Before: Jun 29 05:01:10 2026 GMT
Not After : Jun 30 05:01:10 2026 GMT
Subject: CN=422f434eec6be7a31edd02f5e6b17d941cf132b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:65:81:24:aa:31:38:58:99:8a:dc:f2:a2:80:
37:ef:c7:e5:a7:a1:ff:35:34:5f:cc:8e:17:73:fe:
bc:57:1b:69:55:f3:8d:26:12:97:bd:f1:b9:3e:46:
65:76:75:19:88:e0:1d:1e:bd:a3:ae:95:f5:b4:09:
e5:4d:a0:7e:2f:f5:5b:1c:f5:3d:b2:d0:ae:fb:8a:
de:18:5c:00:3f:29:fc:a4:a1:16:f7:8f:ed:7c:b3:
ac:9c:d0:ab:e4:13:54:c3:1c:e4:7f:59:cc:3e:ca:
02:48:d1:43:38:71:fa:48:dd:0b:ae:1c:fe:d6:5f:
11:f0:5c:97:bf:2f:d2:bc:c0:a8:ae:6d:f1:83:0b:
6a:38:65:a5:63:3a:94:7a:0e:0e:0b:61:c8:2e:ee:
a1:45:3b:4c:e5:4b:87:02:4c:ee:1c:98:6e:68:d7:
0a:37:a1:dc:e9:a0:6a:e8:a0:e0:98:33:79:75:e0:
a6:3f:0c:19:b7:61:d3:e3:8a:dc:24:1c:20:9a:93:
25:b0:a4:9a:a5:c6:c8:8c:9b:24:62:e5:e1:3d:99:
e1:7e:83:68:4a:4b:91:57:68:ca:e3:3a:59:72:51:
02:bd:ed:37:a5:4d:1e:3c:08:70:2a:7c:bb:5a:3f:
ed:54:95:f0:c2:f6:86:4e:6c:d7:81:29:f9:ac:ec:
ef:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:2F:43:4E:EC:6B:E7:A3:1E:DD:02:F5:E6:B1:7D:94:1C:F1:32:B9
X509v3 Authority Key Identifier:
keyid:E6:04:9C:F8:7D:D8:F1:FD:4C:80:24:B5:A6:C9:EA:94:F1:7B:6F:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5gSc-H3Y8f1MgCS1psnqlPF7b70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/060cea-e920-40de-90da-8d49ebcae9b3/1/5gSc-H3Y8f1MgCS1psnqlPF7b70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:ce:4c:29:09:48:09:14:f9:31:da:62:dc:2e:8d:d6:4b:0a:
cd:a3:1d:1a:46:fb:88:66:e4:cc:c6:51:53:be:85:39:00:8f:
9f:53:35:38:cf:7c:8a:35:3e:7c:69:55:82:54:0e:a5:5e:40:
a9:ae:c6:c2:d7:2c:48:ef:53:1a:12:b0:da:f2:f5:1c:2c:45:
3d:86:5b:2f:8f:1a:28:7c:8d:4c:54:df:fc:23:88:d8:68:66:
43:22:83:55:f4:aa:b3:c3:07:9e:da:8f:2b:9a:4e:60:8e:c1:
97:cc:0f:c2:34:76:24:4b:b4:08:2e:fd:58:21:f6:99:c0:dc:
ab:05:e2:67:61:67:00:5d:1e:7b:78:32:f3:b4:d7:c3:c3:24:
2e:7d:4a:09:01:1c:30:ac:00:63:50:c3:d8:e6:3a:4f:e3:05:
60:7c:43:5e:69:3f:f9:6d:26:e8:c7:4d:49:34:f6:5b:7b:37:
bb:ed:a6:d9:66:60:75:6a:15:f6:4a:2e:3e:24:ac:ff:f7:d7:
28:99:b7:35:f8:d9:7d:0a:09:2e:16:01:45:f5:35:da:ba:47:
82:fb:93:61:90:c0:6d:f8:f8:a1:1e:69:18:8d:0e:9a:5c:b1:
01:ec:2c:17:69:2a:01:a7:7e:4d:ec:2d:c8:60:be:ef:e6:25:
8f:93:be:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8RwLjy4h94Q78/JSHfvEooMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2MDQ5Y2Y4N2RkOGYxZmQ0YzgwMjRiNWE2YzllYTk0ZjE3
YjZmYmQwHhcNMjYwNjI5MDUwMTEwWhcNMjYwNjMwMDUwMTEwWjAzMTEwLwYDVQQD
Eyg0MjJmNDM0ZWVjNmJlN2EzMWVkZDAyZjVlNmIxN2Q5NDFjZjEzMmI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2WBJKoxOFiZitzyooA378flp6H/
NTRfzI4Xc/68VxtpVfONJhKXvfG5PkZldnUZiOAdHr2jrpX1tAnlTaB+L/VbHPU9
stCu+4reGFwAPyn8pKEW94/tfLOsnNCr5BNUwxzkf1nMPsoCSNFDOHH6SN0Lrhz+
1l8R8FyXvy/SvMCorm3xgwtqOGWlYzqUeg4OC2HILu6hRTtM5UuHAkzuHJhuaNcK
N6Hc6aBq6KDgmDN5deCmPwwZt2HT44rcJBwgmpMlsKSapcbIjJskYuXhPZnhfoNo
SkuRV2jK4zpZclECve03pU0ePAhwKny7Wj/tVJXwwvaGTmzXgSn5rOzvTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEIvQ07sa+ejHt0C9eaxfZQc8TK5MB8GA1UdIwQY
MBaAFOYEnPh92PH9TIAktabJ6pTxe2+9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWdTYy1IM1k4ZjFNZ0NTMXBzbnFsUEY3YjcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8wNjBjZWEtZTkyMC00MGRlLTkwZGEt
OGQ0OWViY2FlOWIzLzEvNWdTYy1IM1k4ZjFNZ0NTMXBzbnFsUEY3YjcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS8wNjBjZWEtZTkyMC00MGRlLTkwZGEtOGQ0OWViY2FlOWIz
LzEvNWdTYy1IM1k4ZjFNZ0NTMXBzbnFsUEY3YjcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO85MKQlI
CRT5Mdpi3C6N1ksKzaMdGkb7iGbkzMZRU76FOQCPn1M1OM98ijU+fGlVglQOpV5A
qa7GwtcsSO9TGhKw2vL1HCxFPYZbL48aKHyNTFTf/COI2GhmQyKDVfSqs8MHntqP
K5pOYI7Bl8wPwjR2JEu0CC79WCH2mcDcqwXiZ2FnAF0ee3gy87TXw8MkLn1KCQEc
MKwAY1DD2OY6T+MFYHxDXmk/+W0m6MdNSTT2W3s3u+2m2WZgdWoV9kouPiSs//fX
KJm3NfjZfQoJLhYBRfU12rpHgvuTYZDAbfj4oR5pGI0OmlyxAewsF2kqAad+Tewt
yGC+7+Ylj5O+Fw==
-----END CERTIFICATE-----
Generated at Mon Jun 29 11:34:14 2026 by rpki-client