Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
File: 5qi5LUxZf2wET3clKFSPnJEpoNM.mft (raw, json)
Hash identifier: PmFzbO4jI43wSfc7ZsQRj659eqduGbCeFQ23gZnPrz0=
Subject key identifier: 69:60:C9:74:AA:43:36:58:6C:FC:B3:D2:46:11:81:F4:01:CB:29:3E
Authority key identifier: E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
Certificate issuer: /CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Certificate serial: 019F17C2ED3BDC256DF0D86248A8DB01DA08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
Manifest number: 1665
Signing time: Tue 30 Jun 2026 09:01:18 +0000
Manifest this update: Tue 30 Jun 2026 09:01:18 +0000
Manifest next update: Wed 01 Jul 2026 09:01:18 +0000
Files and hashes: 1: 5qi5LUxZf2wET3clKFSPnJEpoNM.crl (hash: b+1CRTorlbN/ROYLYJK1YSDht/0JmjKPOgsO93LFt58=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c2:ed:3b:dc:25:6d:f0:d8:62:48:a8:db:01:da:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Validity
Not Before: Jun 30 09:01:18 2026 GMT
Not After : Jul 1 09:01:18 2026 GMT
Subject: CN=6960c974aa4336586cfcb3d2461181f401cb293e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:d4:f8:c1:10:53:2a:70:9f:0d:bb:95:d3:ff:
0e:fc:99:08:03:7e:11:65:3f:8d:69:c8:c4:ba:54:
7e:28:9d:94:be:f8:fb:b6:7b:8e:88:1d:43:d5:db:
a9:2c:97:41:b0:7e:72:f0:ba:36:8c:b8:25:40:ac:
39:16:9d:7d:5a:e5:da:b9:f6:ed:a1:7f:03:7f:a0:
16:64:22:50:84:41:e7:a2:98:aa:d4:b9:af:14:6a:
68:36:ed:b5:4b:27:70:c2:42:39:94:da:32:32:58:
6c:e8:c9:9f:f5:65:cd:63:9c:a9:8f:71:07:73:2d:
57:bc:4e:6d:8c:77:de:fb:89:2a:fb:e5:91:64:64:
1e:2c:a7:3b:92:d9:c4:7f:b4:71:29:f7:e8:80:36:
5e:c8:59:1d:eb:34:32:96:9e:ac:e1:db:e6:5b:77:
75:5c:d3:c6:f7:17:b8:2a:c2:91:08:1a:be:14:ee:
0b:ee:39:52:fb:cc:55:5f:bb:76:92:ff:fe:09:9c:
84:8c:0c:01:54:80:1c:25:37:12:9a:02:a2:6d:a6:
a6:77:51:2e:e9:58:08:6d:d1:92:28:11:21:da:0e:
04:f3:f6:cb:d8:a5:92:c9:9d:b6:9f:90:50:ed:9e:
0c:44:35:d2:84:a4:b8:2a:a8:28:da:73:b7:55:d4:
90:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:60:C9:74:AA:43:36:58:6C:FC:B3:D2:46:11:81:F4:01:CB:29:3E
X509v3 Authority Key Identifier:
keyid:E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:17:92:73:f5:9f:f7:ce:6e:34:b4:5c:1f:e7:9f:20:11:9b:
ff:d1:7a:d5:19:32:ef:3e:72:93:25:1c:89:a1:f7:95:ad:da:
2b:92:b2:d5:b8:6d:8d:6e:d9:5e:b4:34:7b:d3:76:f1:ca:32:
43:13:a4:2d:12:59:ef:e3:36:5a:1c:91:e4:b7:02:e5:3f:7d:
b0:91:64:8a:54:d6:a6:49:20:88:54:7d:f6:bd:42:9d:f6:2c:
d0:9f:e7:ae:dc:74:74:7e:19:c4:e4:e9:e8:30:4a:0f:be:c6:
0c:bf:98:20:cc:9b:13:6b:87:43:4d:10:48:fa:90:b8:22:21:
26:07:ff:3e:a1:9e:d0:c5:47:d4:99:29:51:d3:25:17:55:f8:
8f:14:d5:7d:71:29:72:6c:b3:1f:3f:ce:5c:55:00:35:9e:fe:
a9:14:e9:6e:d0:b7:6c:a6:9c:78:16:60:01:30:33:e2:2e:24:
ba:4c:9c:03:78:78:47:13:50:ef:eb:03:58:38:53:82:ad:36:
7f:01:8b:6e:19:a8:1d:c0:39:d7:6a:78:f9:3b:c0:b7:ae:e9:
7a:e2:a9:5a:41:96:fe:59:1b:11:11:ec:25:0d:1f:1a:37:46:
58:d3:8d:19:be:ab:f2:42:f4:35:12:b5:df:7e:d5:9e:ea:b6:
95:dc:04:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:33 2026 by rpki-client