Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
File: 5O8X9MtP6SrQU-7yXznWOuEgfdM.mft (raw, json)
Hash identifier: rYPUX3zA6p4aU5pvn8TQqcf2x4ELl7YNQuxi8jWa9ks=
Subject key identifier: 8D:38:E9:94:51:B2:EE:65:BE:94:55:2A:8D:CD:AC:71:E1:8F:71:BA
Authority key identifier: E4:EF:17:F4:CB:4F:E9:2A:D0:53:EE:F2:5F:39:D6:3A:E1:20:7D:D3
Certificate issuer: /CN=e4ef17f4cb4fe92ad053eef25f39d63ae1207dd3
Certificate serial: 019D3865B4D09EE21B06E7206057EE1AB639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
Manifest number: 04C6
Signing time: Sun 29 Mar 2026 07:01:22 +0000
Manifest this update: Sun 29 Mar 2026 07:01:22 +0000
Manifest next update: Mon 30 Mar 2026 07:01:22 +0000
Files and hashes: 1: 5O8X9MtP6SrQU-7yXznWOuEgfdM.crl (hash: NrpDAqyNMJWkPG7zrNQ2vdc0fI2vDdzm1DaBVVUACyU=)
2: cBjJxakkyJzF0q-LCtB6-kdh34o.roa (hash: HB2nmxENxIBEcrL1Kfx6L8VUwos3oCy0KZ5RcYbIeJ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:b4:d0:9e:e2:1b:06:e7:20:60:57:ee:1a:b6:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4ef17f4cb4fe92ad053eef25f39d63ae1207dd3
Validity
Not Before: Mar 29 07:01:22 2026 GMT
Not After : Mar 30 07:01:22 2026 GMT
Subject: CN=8d38e99451b2ee65be94552a8dcdac71e18f71ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:de:92:42:cd:1c:35:af:a6:0e:9f:ec:5b:9a:
6f:62:20:45:ba:81:b3:1a:8f:4d:65:f0:f4:f4:d5:
bd:a5:e5:07:8d:1d:d4:cc:3e:5b:b4:57:04:5b:bb:
bf:f4:f1:5b:ad:b1:d1:81:da:af:c1:cb:a3:db:42:
f5:4b:3d:02:5a:51:7e:f1:67:35:9f:90:3a:c6:ac:
29:c5:b3:65:d7:03:cf:7c:eb:82:52:fb:d1:e4:c8:
d3:1f:8e:da:dc:ed:a1:e9:32:7a:da:45:b1:5b:2d:
d4:6a:13:c1:2a:a1:73:0f:43:b8:10:0f:ed:7c:cd:
6f:0c:22:70:99:a9:d6:bd:38:82:1a:8d:3d:5c:c2:
f6:4f:ed:9f:ec:71:b8:3d:16:d3:e7:62:8f:bd:3a:
87:2d:64:39:62:0c:ba:35:ba:b6:09:21:92:b2:86:
37:1f:4c:e1:8d:31:35:19:9b:67:cd:2b:8e:97:d6:
15:ad:36:1b:5f:7d:07:cc:fd:b5:c6:30:6c:4b:a3:
5e:1a:28:b4:95:e2:3d:ac:db:fc:ab:1c:ee:40:cf:
99:d8:71:66:e4:6e:f6:32:ea:34:af:90:4a:ac:c4:
3a:a1:74:aa:96:3d:8a:c2:f2:da:a6:01:b0:37:f1:
2f:f6:69:ae:6e:3a:e0:27:d4:13:b5:cf:8f:8a:ee:
3a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:38:E9:94:51:B2:EE:65:BE:94:55:2A:8D:CD:AC:71:E1:8F:71:BA
X509v3 Authority Key Identifier:
keyid:E4:EF:17:F4:CB:4F:E9:2A:D0:53:EE:F2:5F:39:D6:3A:E1:20:7D:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5O8X9MtP6SrQU-7yXznWOuEgfdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/150355-c11a-4d37-a182-23762aa09717/1/5O8X9MtP6SrQU-7yXznWOuEgfdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:d7:01:ab:47:86:49:c3:3f:37:48:24:5c:1c:05:c0:86:7e:
ba:7d:51:28:76:08:02:bc:6f:96:cf:74:bd:5c:e3:f1:72:8b:
34:c3:11:9f:70:70:91:13:be:a1:78:41:d2:34:bf:56:52:5c:
1c:38:66:16:14:43:ec:2e:51:f8:45:e4:26:19:49:37:29:66:
83:54:2a:f7:73:5a:37:67:67:c1:55:42:b4:c5:53:3a:ed:ce:
1d:95:1f:8e:35:c3:f0:35:ad:5c:44:db:c6:19:a6:66:cb:0c:
b8:7a:d2:1f:45:2c:d5:ae:99:04:12:94:16:86:02:d5:28:b7:
28:03:4d:71:d4:5b:cc:06:43:fc:18:a5:0f:7b:b9:db:dc:06:
5d:cd:64:1a:9b:7b:ee:a0:d5:02:d2:b9:78:2b:18:3b:cb:a6:
4a:df:89:3b:9c:43:d6:b8:2c:8c:16:27:f7:df:a4:28:ca:02:
23:6e:9c:98:f7:5c:36:29:4b:8c:92:a0:39:67:f3:7b:89:64:
6c:43:d2:8a:03:a3:c7:3a:68:d7:30:e7:ba:3e:16:b6:96:5a:
44:3a:f1:54:2c:f3:c9:fc:a5:aa:12:d8:24:fc:25:a6:a4:f4:
05:38:d7:01:8f:c5:f8:3a:74:93:2e:10:eb:58:a7:ae:85:40:
ea:1a:b9:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:11 2026 by rpki-client