Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
File: 5DWo9PNqSBGpLRlhc-HEmarMd9U.mft (raw, json)
Hash identifier: 1baUIHGx2E4tVHYimVUHlh3s0RobRHb9l3VQ1uBs+Rs=
Subject key identifier: 7A:F0:29:B7:5F:39:A0:4F:D0:69:70:B7:AE:79:5F:5B:CF:07:15:A1
Authority key identifier: E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
Certificate issuer: /CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Certificate serial: 019E30E00120EE95AEC8BB2A67922AB8AE20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
Manifest number: 0FED
Signing time: Sat 16 May 2026 13:00:47 +0000
Manifest this update: Sat 16 May 2026 13:00:47 +0000
Manifest next update: Sun 17 May 2026 13:00:47 +0000
Files and hashes: 1: 5DWo9PNqSBGpLRlhc-HEmarMd9U.crl (hash: Tn0YKmpay9mna0UjY9YK8tXDBXHmpY/ciCr9/AJebzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:01:20:ee:95:ae:c8:bb:2a:67:92:2a:b8:ae:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Validity
Not Before: May 16 13:00:47 2026 GMT
Not After : May 17 13:00:47 2026 GMT
Subject: CN=7af029b75f39a04fd06970b7ae795f5bcf0715a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ac:71:9e:7e:f4:67:5d:58:c6:38:88:04:a2:
5c:3d:65:57:11:b7:b5:d0:55:90:a7:d7:f3:e4:b6:
20:a4:53:7b:74:9c:57:d3:c3:5f:b4:9e:ac:9c:e5:
cc:82:f1:b1:47:99:07:a6:b1:8a:d1:26:84:24:10:
19:0d:ca:79:98:f0:63:18:47:7b:97:8d:cd:7c:46:
e5:5c:3b:2c:6c:15:60:cc:44:df:55:39:c2:f6:85:
8b:47:96:29:b1:49:2e:d2:4d:7b:3d:e5:bd:5b:f5:
04:65:3e:1d:8a:6d:21:cb:a0:14:82:4a:f7:5e:9a:
33:c3:bf:02:04:e3:b0:49:43:2c:23:b8:5d:ce:5e:
35:83:43:d4:7a:70:1f:f1:99:db:74:86:c8:08:b9:
05:c8:70:80:06:7f:35:ba:f4:f8:a2:dd:cb:b4:fd:
3e:f1:ed:4d:51:f8:6a:d7:1c:f0:8d:54:7d:c7:37:
54:ed:c6:bd:b4:70:e5:f6:b9:5d:90:4a:82:4f:5d:
5d:38:1b:b0:ba:f8:89:16:ab:1c:44:a8:61:dc:65:
f9:ab:0f:91:36:2f:75:0e:34:94:00:25:fe:8a:11:
f4:56:8c:43:ac:e9:42:68:ed:87:90:26:8c:c6:08:
82:14:d0:58:3b:93:f0:31:3f:6f:71:4e:d6:0f:b6:
46:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F0:29:B7:5F:39:A0:4F:D0:69:70:B7:AE:79:5F:5B:CF:07:15:A1
X509v3 Authority Key Identifier:
keyid:E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:d9:af:94:cc:e1:0a:ae:37:0a:a9:ec:24:df:5e:97:d1:df:
17:20:18:25:3b:47:65:f8:d9:23:84:06:e2:49:d0:0a:e5:79:
ae:86:ff:ae:92:8b:2e:4c:89:fd:10:02:b9:ee:c3:d3:bb:7e:
2c:0c:88:df:db:5b:30:98:29:7f:88:5f:81:6d:de:93:0d:99:
aa:d4:29:0b:4e:f0:c8:95:40:19:0b:21:5b:31:03:65:f9:dd:
b0:3e:9f:bd:89:5f:08:a1:5a:60:dd:9f:d9:9b:0f:0f:e3:b4:
03:25:ab:32:4b:42:ac:c5:1a:8e:5c:45:97:73:54:8e:10:de:
34:18:c5:fd:c7:2c:0b:73:49:68:fb:50:2e:a4:f1:12:43:85:
32:39:77:50:ba:08:a6:e5:1d:f4:d1:bd:7a:bb:67:5e:e6:e8:
15:00:ab:ca:2b:18:52:82:cd:5d:2e:84:a2:83:06:b3:f8:9e:
0f:21:d5:86:7a:e8:f6:52:4d:7c:be:e1:e5:52:4f:6e:e2:2c:
b4:f5:6c:6d:f7:f6:a7:67:cd:51:ca:37:1a:9c:ea:05:2e:2c:
fc:c2:fd:ed:d7:38:3f:ce:5c:08:57:f7:2e:8a:4c:c4:c9:7e:
3d:32:4a:41:4f:05:c9:e6:28:6a:2e:7f:c8:b9:66:50:46:60:
df:a3:30:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4AEg7pWuyLsqZ5IquK4gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MzVhOGY0ZjM2YTQ4MTFhOTJkMTk2MTczZTFjNDk5YWFj
Yzc3ZDUwHhcNMjYwNTE2MTMwMDQ3WhcNMjYwNTE3MTMwMDQ3WjAzMTEwLwYDVQQD
Eyg3YWYwMjliNzVmMzlhMDRmZDA2OTcwYjdhZTc5NWY1YmNmMDcxNWExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6xxnn70Z11YxjiIBKJcPWVXEbe1
0FWQp9fz5LYgpFN7dJxX08NftJ6snOXMgvGxR5kHprGK0SaEJBAZDcp5mPBjGEd7
l43NfEblXDssbBVgzETfVTnC9oWLR5YpsUku0k17PeW9W/UEZT4dim0hy6AUgkr3
Xpozw78CBOOwSUMsI7hdzl41g0PUenAf8ZnbdIbICLkFyHCABn81uvT4ot3LtP0+
8e1NUfhq1xzwjVR9xzdU7ca9tHDl9rldkEqCT11dOBuwuviJFqscRKhh3GX5qw+R
Ni91DjSUACX+ihH0VoxDrOlCaO2HkCaMxgiCFNBYO5PwMT9vcU7WD7ZGKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHrwKbdfOaBP0Glwt655X1vPBxWhMB8GA1UdIwQY
MBaAFOQ1qPTzakgRqS0ZYXPhxJmqzHfVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDkt
YjgwZTlmYTQyZGZiLzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDktYjgwZTlmYTQyZGZi
LzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADdmvlMzh
Cq43CqnsJN9el9HfFyAYJTtHZfjZI4QG4knQCuV5rob/rpKLLkyJ/RACue7D07t+
LAyI39tbMJgpf4hfgW3ekw2ZqtQpC07wyJVAGQshWzEDZfndsD6fvYlfCKFaYN2f
2ZsPD+O0AyWrMktCrMUajlxFl3NUjhDeNBjF/ccsC3NJaPtQLqTxEkOFMjl3ULoI
puUd9NG9ertnXuboFQCryisYUoLNXS6EooMGs/ieDyHVhnro9lJNfL7h5VJPbuIs
tPVsbff2p2fNUco3GpzqBS4s/ML97dc4P85cCFf3LopMxMl+PTJKQU8FyeYoai5/
yLlmUEZg36Mw2w==
-----END CERTIFICATE-----
Generated at Sat May 16 16:25:12 2026 by rpki-client