Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft
File: 5kdeNHqvK1nU7oU6ilS05L03R-s.mft (raw, json)
Hash identifier: C6tJeaitcw0NfH0jgbSBmdWOo4XPIMNAL25esVFL2i8=
Subject key identifier: 7D:73:48:F7:01:9B:D7:E8:8D:E1:81:4F:AB:42:1E:FD:6C:B9:44:E2
Authority key identifier: E6:47:5E:34:7A:AF:2B:59:D4:EE:85:3A:8A:54:B4:E4:BD:37:47:EB
Certificate issuer: /CN=e6475e347aaf2b59d4ee853a8a54b4e4bd3747eb
Certificate serial: 019D389C288CD7843EB7B0316193E01A3017
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5kdeNHqvK1nU7oU6ilS05L03R-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft
Manifest number: 03D9
Signing time: Sun 29 Mar 2026 08:00:51 +0000
Manifest this update: Sun 29 Mar 2026 08:00:51 +0000
Manifest next update: Mon 30 Mar 2026 08:00:51 +0000
Files and hashes: 1: 5kdeNHqvK1nU7oU6ilS05L03R-s.crl (hash: ozVhGL1rg1SeaN8w1FO1Tju0iRCBt7d6k7ywkZpxRIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft
rsync://rpki.ripe.net/repository/DEFAULT/5kdeNHqvK1nU7oU6ilS05L03R-s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:28:8c:d7:84:3e:b7:b0:31:61:93:e0:1a:30:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6475e347aaf2b59d4ee853a8a54b4e4bd3747eb
Validity
Not Before: Mar 29 08:00:51 2026 GMT
Not After : Mar 30 08:00:51 2026 GMT
Subject: CN=7d7348f7019bd7e88de1814fab421efd6cb944e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:80:51:c2:7e:dd:8c:52:79:31:a9:11:9d:98:
d9:18:af:44:d4:ae:43:dd:26:2c:ba:a6:15:d9:54:
ae:db:0e:0d:0d:5d:1f:83:02:56:25:64:f8:32:64:
00:2d:a4:37:d9:42:a8:11:45:4d:25:2f:0b:78:eb:
03:bb:d5:e4:16:8f:fe:7a:23:37:11:11:85:07:a7:
85:fc:76:f6:b9:68:04:c6:7c:03:96:bd:32:02:8b:
55:c2:0d:d7:63:3f:f0:ab:65:86:d4:e1:ac:c3:ab:
b7:7f:20:28:8e:1d:02:ed:e1:11:30:07:8d:12:07:
74:02:be:12:03:84:ba:39:57:d1:f6:31:ed:04:98:
7f:5c:da:ac:89:b9:aa:8d:7d:ab:7d:67:27:0c:38:
b7:d4:a0:00:97:95:bf:c5:32:8d:8a:ea:14:a7:58:
b6:b8:37:19:f0:f2:7f:69:17:9a:65:c0:c3:61:a4:
7c:9b:b7:91:65:3d:10:16:e5:44:d9:ec:6d:2b:c0:
f1:54:93:aa:bf:2d:f8:da:bd:70:24:79:0d:97:c0:
37:9d:d8:d3:d2:15:d8:a2:5a:fb:7b:cb:45:b4:b8:
42:4f:49:32:fc:c0:5b:4d:62:7e:ea:f4:a7:3f:ef:
aa:d3:68:cd:8b:79:9e:c8:c5:85:76:7d:a5:c7:86:
9a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:73:48:F7:01:9B:D7:E8:8D:E1:81:4F:AB:42:1E:FD:6C:B9:44:E2
X509v3 Authority Key Identifier:
keyid:E6:47:5E:34:7A:AF:2B:59:D4:EE:85:3A:8A:54:B4:E4:BD:37:47:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5kdeNHqvK1nU7oU6ilS05L03R-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/a3a299-ce28-4c35-ac64-c8c20f25de88/1/5kdeNHqvK1nU7oU6ilS05L03R-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:43:6a:ea:ca:b3:96:11:eb:f2:9b:16:7d:70:44:60:cd:02:
13:fb:55:8d:7b:b8:49:41:02:8a:98:e9:e6:e1:3c:5d:a3:2e:
a3:73:50:be:81:24:9d:63:05:8b:f4:d6:da:e3:d0:3d:9a:2e:
4e:92:9d:3d:5b:13:bf:14:6c:6f:0d:4b:1e:d2:05:d1:3d:18:
56:a4:6a:fc:02:44:88:cc:25:ef:3d:23:2b:60:c1:d3:e8:c7:
46:d4:6e:02:dd:45:1e:13:85:73:9e:17:ea:0c:2d:e7:80:de:
47:77:2f:28:91:24:27:56:30:58:22:f8:17:46:db:87:37:e3:
6d:b8:4a:89:d3:79:a2:67:0e:06:ca:7b:24:90:a4:8b:1c:48:
ec:23:42:51:9e:6f:d0:65:63:76:67:65:40:1f:53:f7:5c:23:
2f:7f:f3:a9:db:1e:23:4b:ee:26:8b:2e:c1:a2:8d:18:63:44:
c5:8a:63:fb:ad:eb:b8:4b:0c:67:db:96:2c:77:ae:bf:89:20:
f9:9c:d5:2e:3e:4c:4b:ec:b9:37:dd:ae:30:fe:af:18:e8:1a:
53:56:db:71:36:f6:36:f8:25:f6:b3:e3:a4:78:79:99:56:1c:
58:1e:99:ab:e7:84:d3:e3:c5:57:11:ce:e7:5e:5c:87:5c:52:
dc:96:72:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04nCiM14Q+t7AxYZPgGjAXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2NDc1ZTM0N2FhZjJiNTlkNGVlODUzYThhNTRiNGU0YmQz
NzQ3ZWIwHhcNMjYwMzI5MDgwMDUxWhcNMjYwMzMwMDgwMDUxWjAzMTEwLwYDVQQD
Eyg3ZDczNDhmNzAxOWJkN2U4OGRlMTgxNGZhYjQyMWVmZDZjYjk0NGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YBRwn7djFJ5MakRnZjZGK9E1K5D
3SYsuqYV2VSu2w4NDV0fgwJWJWT4MmQALaQ32UKoEUVNJS8LeOsDu9XkFo/+eiM3
ERGFB6eF/Hb2uWgExnwDlr0yAotVwg3XYz/wq2WG1OGsw6u3fyAojh0C7eERMAeN
Egd0Ar4SA4S6OVfR9jHtBJh/XNqsibmqjX2rfWcnDDi31KAAl5W/xTKNiuoUp1i2
uDcZ8PJ/aReaZcDDYaR8m7eRZT0QFuVE2extK8DxVJOqvy342r1wJHkNl8A3ndjT
0hXYolr7e8tFtLhCT0ky/MBbTWJ+6vSnP++q02jNi3meyMWFdn2lx4aa3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH1zSPcBm9fojeGBT6tCHv1suUTiMB8GA1UdIwQY
MBaAFOZHXjR6rytZ1O6FOopUtOS9N0frMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWtkZU5IcXZLMW5VN29VNmlsUzA1TDAzUi1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9hM2EyOTktY2UyOC00YzM1LWFjNjQt
YzhjMjBmMjVkZTg4LzEvNWtkZU5IcXZLMW5VN29VNmlsUzA1TDAzUi1zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS9hM2EyOTktY2UyOC00YzM1LWFjNjQtYzhjMjBmMjVkZTg4
LzEvNWtkZU5IcXZLMW5VN29VNmlsUzA1TDAzUi1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtUNq6sqz
lhHr8psWfXBEYM0CE/tVjXu4SUECipjp5uE8XaMuo3NQvoEknWMFi/TW2uPQPZou
TpKdPVsTvxRsbw1LHtIF0T0YVqRq/AJEiMwl7z0jK2DB0+jHRtRuAt1FHhOFc54X
6gwt54DeR3cvKJEkJ1YwWCL4F0bbhzfjbbhKidN5omcOBsp7JJCkixxI7CNCUZ5v
0GVjdmdlQB9T91wjL3/zqdseI0vuJosuwaKNGGNExYpj+63ruEsMZ9uWLHeuv4kg
+ZzVLj5MS+y5N92uMP6vGOgaU1bbcTb2Nvgl9rPjpHh5mVYcWB6Zq+eE0+PFVxHO
515ch1xS3JZyqQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 16:58:53 2026 by rpki-client