Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
File: d5pKQpXGOP3nYPPNpHbYv8JxErI.mft (raw, json)
Hash identifier: wkSELapm+3s8FhHkKdUGf5L2oJN3+FMroj24fXy8llg=
Subject key identifier: A5:F2:C8:A3:2B:6C:D7:89:B7:99:F6:5A:43:E4:D3:48:73:36:66:AF
Authority key identifier: 77:9A:4A:42:95:C6:38:FD:E7:60:F3:CD:A4:76:D8:BF:C2:71:12:B2
Certificate issuer: /CN=779a4a4295c638fde760f3cda476d8bfc27112b2
Certificate serial: 019D37F6DD949D5F0EAF7C9886CE440B48B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
Manifest number: 0345
Signing time: Sun 29 Mar 2026 05:00:18 +0000
Manifest this update: Sun 29 Mar 2026 05:00:18 +0000
Manifest next update: Mon 30 Mar 2026 05:00:18 +0000
Files and hashes: 1: 1SXyN0yfhT5cSdi9C9NJ49pGu4Q.roa (hash: 9hRMwF9OzYcY4aoj5DqpON+f2xbb5moy11vfbRHpWD8=)
2: d5pKQpXGOP3nYPPNpHbYv8JxErI.crl (hash: t7R+a6RQSJ0akOdJT1JOEgq5bv+u+ywvYtaXwgCIjkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:dd:94:9d:5f:0e:af:7c:98:86:ce:44:0b:48:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779a4a4295c638fde760f3cda476d8bfc27112b2
Validity
Not Before: Mar 29 05:00:18 2026 GMT
Not After : Mar 30 05:00:18 2026 GMT
Subject: CN=a5f2c8a32b6cd789b799f65a43e4d348733666af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b1:65:01:2e:67:b7:40:d8:f1:0d:92:6d:5f:
09:f7:08:5a:17:53:ba:8e:3c:00:6f:72:32:3b:5b:
e7:50:8f:4c:fc:62:9a:1c:28:a9:83:5e:15:ff:31:
7f:45:ac:84:67:bf:1e:6b:9f:d1:3e:3a:b0:6d:f7:
51:c8:04:ff:14:22:8d:bb:4c:6f:b2:af:62:29:28:
a4:c0:c7:a3:29:a9:4c:ab:96:96:38:22:49:a1:5a:
9b:cc:44:53:c0:ee:49:1a:d1:28:95:58:1b:71:78:
26:b1:12:52:82:8f:d7:81:38:5c:3f:92:ae:54:87:
7c:24:11:09:7e:40:0e:dd:93:b5:f8:1c:a9:98:2a:
9e:23:70:24:c6:c8:a7:cb:38:9a:7d:33:59:18:41:
c3:30:37:9c:60:0a:52:1c:3d:b5:97:c6:1d:a1:10:
17:33:ee:9f:aa:08:e3:52:10:f4:0a:8a:91:79:02:
02:5f:1a:4a:22:25:50:45:33:1c:9b:97:76:5f:5f:
05:b4:8b:2e:21:2b:ad:39:10:26:a7:74:ff:1b:4f:
a1:ea:fa:c6:c8:25:1a:b1:05:be:28:62:39:76:6a:
89:60:f9:70:7a:e9:c8:36:35:30:f6:c3:90:87:ce:
7c:fe:b9:b4:c2:02:ca:a1:9b:b1:ac:56:0f:82:f7:
90:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F2:C8:A3:2B:6C:D7:89:B7:99:F6:5A:43:E4:D3:48:73:36:66:AF
X509v3 Authority Key Identifier:
keyid:77:9A:4A:42:95:C6:38:FD:E7:60:F3:CD:A4:76:D8:BF:C2:71:12:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:f0:b6:fe:e4:ce:0e:6c:07:1e:17:ff:75:0f:be:d2:9f:04:
e6:f4:25:4f:56:ca:42:f5:51:e1:e8:36:b3:61:9a:5c:01:1a:
06:d1:eb:ef:b3:b6:23:eb:7e:c3:39:d5:64:b5:57:73:b7:5e:
5a:c2:8a:6c:f9:a5:d2:95:06:90:33:8b:a5:fe:ef:00:a9:05:
68:9f:d6:cf:1c:d4:f8:93:7f:21:7d:1b:46:98:04:60:fa:a0:
36:04:6d:88:78:99:b0:ad:18:a8:aa:65:bb:b2:5f:d1:76:b2:
8f:5b:e6:18:c1:25:ff:ce:39:03:71:9a:b6:75:8c:f3:88:a4:
5d:45:b3:1c:93:ea:13:5b:f4:60:35:f9:d4:67:e1:e0:59:a8:
8b:85:7f:0e:2a:89:cc:1a:0d:fd:4e:0b:e3:dd:5e:49:e9:14:
3a:10:09:b6:dc:89:a5:be:4f:8a:86:8e:01:86:28:7f:d0:74:
83:fd:ef:bb:ab:95:49:f6:7c:bb:dd:a1:c5:5a:b2:b0:43:b0:
6d:14:bb:e0:20:a6:f2:42:84:88:b9:45:a6:72:30:b7:04:8a:
02:85:86:8c:d0:b0:33:12:cd:51:19:0f:5b:77:4f:eb:46:c7:
36:44:60:85:ff:20:3a:3c:cd:5c:26:7c:7a:6d:23:cc:86:b5:
a1:3e:c6:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:45:41 2026 by rpki-client