Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
File: 5qi5LUxZf2wET3clKFSPnJEpoNM.mft (raw, json)
Hash identifier: Z5s3Xgetu94W5NAQoEDdeDYrqt4YLWqYZ9HY7lSS8MA=
Subject key identifier: 7B:8A:02:D4:C6:8A:0F:F6:7C:C5:6F:FA:77:BC:68:90:B7:6D:72:25
Authority key identifier: E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
Certificate issuer: /CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Certificate serial: 019D38D3BCBD812817C4E3D1BC1CB40034BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
Manifest number: 156D
Signing time: Sun 29 Mar 2026 09:01:33 +0000
Manifest this update: Sun 29 Mar 2026 09:01:33 +0000
Manifest next update: Mon 30 Mar 2026 09:01:33 +0000
Files and hashes: 1: 5qi5LUxZf2wET3clKFSPnJEpoNM.crl (hash: WXXOo4Obp96LsgA7DVH/wUIMvV/h6Pu7DY7APMx1B0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:bc:bd:81:28:17:c4:e3:d1:bc:1c:b4:00:34:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Validity
Not Before: Mar 29 09:01:33 2026 GMT
Not After : Mar 30 09:01:33 2026 GMT
Subject: CN=7b8a02d4c68a0ff67cc56ffa77bc6890b76d7225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5f:fa:f4:aa:0f:30:71:89:f7:69:ca:52:33:
34:82:95:1c:10:24:7e:87:9b:1d:55:2d:4d:84:43:
9e:7b:22:49:75:bc:79:99:fb:e3:89:28:41:ab:86:
62:3d:f0:2c:d4:12:59:f8:a1:31:8d:b7:64:07:74:
b8:70:39:ab:36:e9:42:ec:8c:8a:ea:e6:3e:ec:ad:
eb:09:7c:ee:46:45:53:e8:2d:85:e4:f1:6c:60:06:
dc:27:ab:46:48:38:24:2d:1a:33:00:86:50:7a:a5:
7a:3d:64:16:d8:c8:1e:f0:53:9e:e3:59:5e:37:69:
1e:a5:61:63:91:c2:cc:2d:f8:2d:2a:57:f2:97:1d:
a4:94:43:7e:53:26:80:c9:71:68:fa:c0:5a:55:a1:
db:3a:af:a8:d9:55:6b:13:e3:ce:24:d8:24:80:87:
8e:a4:0f:12:71:01:42:10:71:02:cd:7f:0d:fb:7a:
4d:b8:d4:ce:01:e7:ef:a8:95:eb:47:67:7f:18:79:
67:e0:fa:67:ff:80:ce:57:02:40:82:68:d9:29:b8:
d3:e5:59:e1:df:a5:46:b9:0b:c4:54:a0:01:87:b6:
a5:b7:9a:6d:f6:aa:db:fb:62:2a:7a:31:4d:8f:5e:
3a:1f:05:ed:2f:40:21:45:ca:fe:83:d1:69:e3:20:
27:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:8A:02:D4:C6:8A:0F:F6:7C:C5:6F:FA:77:BC:68:90:B7:6D:72:25
X509v3 Authority Key Identifier:
keyid:E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:03:61:d6:3c:68:50:cb:29:10:41:fe:fa:e0:3d:09:ee:9c:
66:de:d1:97:84:74:30:54:2b:9d:e6:f8:7b:69:b7:76:a2:27:
90:6c:f7:13:88:4e:6d:35:50:b9:87:25:9b:ff:0c:a8:fa:bd:
e8:6d:17:8c:29:af:07:06:ff:c7:89:c9:30:90:65:79:ba:ca:
a5:72:5d:1b:1a:53:e4:46:f0:7a:d5:19:6d:92:75:4e:0c:15:
48:75:c7:7f:60:04:1d:a7:fe:ea:cb:ae:62:6a:a3:5b:c8:d2:
87:65:db:07:13:5f:eb:3f:72:ce:e6:77:f5:f0:3c:93:ce:98:
dc:b2:f8:1a:87:38:3c:c3:c7:d5:76:11:e4:21:92:6d:8d:1d:
ce:3b:03:5f:11:d5:f2:6a:0d:0a:fa:98:80:60:0b:ff:94:32:
71:3b:75:22:64:7c:25:67:73:0c:e5:df:b9:4a:4c:7b:d2:6f:
bc:08:51:aa:5e:e3:4f:89:4e:e3:5f:86:7e:88:a5:c8:03:e9:
f7:eb:fb:3d:fc:99:c4:5c:17:0d:fb:f6:fd:ff:fa:8e:f2:48:
07:19:6e:3d:a1:a4:64:91:2f:39:48:ff:e5:e3:fb:f1:4d:49:
81:2f:2e:20:3e:a6:df:fe:4a:32:d1:61:05:b2:de:c9:0c:40:
09:56:61:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:11 2026 by rpki-client