Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
File: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft (raw, json)
Hash identifier: jn9rsQC+geJttgV16zbTMtrKPDZIia86EzEvP0XMgN8=
Subject key identifier: AF:28:85:55:E2:00:F1:7B:20:6C:D3:B0:47:1D:2D:AB:CD:31:71:79
Authority key identifier: AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
Certificate issuer: /CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Certificate serial: 019D3789B47A634DDF7A16D1537B4361DDC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
Manifest number: 056C
Signing time: Sun 29 Mar 2026 03:01:04 +0000
Manifest this update: Sun 29 Mar 2026 03:01:04 +0000
Manifest next update: Mon 30 Mar 2026 03:01:04 +0000
Files and hashes: 1: SW0jIvk1wvk_Jl_m70Mc6YZkuCg.roa (hash: xgcppBoYJknCSghed+wm1HRzdAorIWKU+WyvltEZlPQ=)
2: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl (hash: SJKTE49uu2Ls+CHLU7z8OeI+4MEEZNL+FLzKXkrXi/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:b4:7a:63:4d:df:7a:16:d1:53:7b:43:61:dd:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Validity
Not Before: Mar 29 03:01:04 2026 GMT
Not After : Mar 30 03:01:04 2026 GMT
Subject: CN=af288555e200f17b206cd3b0471d2dabcd317179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:31:19:68:6b:e5:7b:f2:4b:0e:c4:a1:d0:78:
d7:50:f7:3c:ad:99:5d:78:23:c1:1f:30:43:c9:c8:
4d:ca:cc:5f:29:1a:2b:16:60:27:19:7b:c4:1c:23:
9c:80:8b:19:e8:a3:47:d2:53:b4:d2:6b:9d:56:24:
f9:57:11:dd:5a:ae:fc:e8:ea:f1:8f:d6:09:17:34:
80:8d:52:83:82:46:e8:93:b0:43:d9:cc:74:a1:ef:
45:f5:33:f5:38:bc:cb:4c:c3:29:c4:46:7d:08:35:
bb:7f:92:30:89:0b:ab:00:63:76:6b:53:c8:d1:b1:
24:a5:f7:29:98:e2:62:4c:9a:92:d8:7e:70:bb:be:
93:48:af:08:45:e6:ad:9b:6b:f8:e3:41:9f:0c:3a:
7e:70:fc:95:06:7a:5e:cb:56:0f:b5:4d:e4:17:3b:
f7:92:d5:aa:93:68:30:f4:4b:6b:6b:cc:2a:9d:52:
e2:b2:9d:77:dd:26:93:df:30:28:c4:0f:af:5a:a6:
e9:10:9a:1d:21:20:dd:b3:e2:fc:9a:83:53:60:14:
81:64:42:96:0f:69:21:46:73:26:e4:c3:df:27:68:
ad:ce:93:65:33:25:fa:33:c6:5a:48:ec:8f:b4:06:
35:24:89:b6:01:40:f7:3c:24:2e:d6:ca:01:ec:21:
a6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:28:85:55:E2:00:F1:7B:20:6C:D3:B0:47:1D:2D:AB:CD:31:71:79
X509v3 Authority Key Identifier:
keyid:AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:58:42:d0:ba:d6:4e:13:3e:16:ad:72:cf:fd:8a:9d:d0:e4:
a9:ea:59:3f:ea:10:df:6d:11:4f:70:8c:c8:6e:d6:5b:09:9d:
8a:6c:ff:18:72:4a:b7:bd:8a:ff:1e:ae:68:f7:74:e0:92:ab:
61:97:ae:a2:44:7d:f1:35:ca:d9:1a:95:16:d3:db:14:a5:0f:
de:83:59:da:21:6a:25:79:7c:42:2a:3e:cd:49:35:79:ef:0f:
89:cd:f4:88:fe:90:6c:9b:f8:37:76:77:8e:4f:93:5d:ee:c7:
63:9c:44:b5:a1:d9:68:35:ed:b0:a4:5a:5b:e2:8a:2b:66:d9:
b1:50:b3:ca:37:46:41:8d:4d:ac:dd:0f:40:37:a7:8e:95:cf:
c8:29:1a:c3:15:dc:ab:5f:48:c4:ed:ec:cb:6b:dd:f6:eb:3a:
93:0f:2a:43:29:a9:1c:bd:02:b6:e4:6c:99:29:28:e0:e0:47:
32:a8:45:06:0e:ff:26:28:2b:7e:81:14:ca:d2:ed:9c:06:6b:
cc:ce:c0:42:8a:fa:69:92:87:85:89:50:c1:99:16:a8:89:14:
14:00:97:dd:bb:fb:ca:b6:3d:df:67:f2:ad:1e:37:a3:15:76:
88:48:df:97:32:f6:5f:c7:7d:1f:63:20:96:c1:3e:ae:33:62:
54:cf:fd:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:01 2026 by rpki-client