Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
File: 5XB6RVkqydFxmoV2lgMXeCm0bgo.mft (raw, json)
Hash identifier: +i4VGLz7rRExREu/p5Pn5KZ31oAjOyNa40ZKisjgZKo=
Subject key identifier: D5:38:CF:55:97:84:21:1D:1E:3C:43:97:5C:65:30:02:BD:EF:F7:32
Authority key identifier: E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A
Certificate issuer: /CN=e5707a45592ac9d1719a85769603177829b46e0a
Certificate serial: 019D389C119E600787AE2277EEA4C3FCEDE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
Manifest number: 0E8D
Signing time: Sun 29 Mar 2026 08:00:45 +0000
Manifest this update: Sun 29 Mar 2026 08:00:45 +0000
Manifest next update: Mon 30 Mar 2026 08:00:45 +0000
Files and hashes: 1: 5XB6RVkqydFxmoV2lgMXeCm0bgo.crl (hash: fIWrzzhzxtiIKjrPP/joJe30u6xm50qviF4TqxraIIs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:11:9e:60:07:87:ae:22:77:ee:a4:c3:fc:ed:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5707a45592ac9d1719a85769603177829b46e0a
Validity
Not Before: Mar 29 08:00:45 2026 GMT
Not After : Mar 30 08:00:45 2026 GMT
Subject: CN=d538cf559784211d1e3c43975c653002bdeff732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a0:7b:1a:18:43:e4:b3:d0:9b:58:28:34:c3:
ff:04:d4:54:8a:ba:e6:29:78:19:76:72:51:de:99:
00:86:6d:df:3a:5b:88:4d:fc:cd:dd:18:d5:1b:e3:
9d:3a:0e:7a:13:47:78:62:9e:73:b0:07:db:58:fd:
4f:fb:ae:6f:c6:ec:a8:5e:e3:8f:37:89:7a:08:ff:
09:30:49:19:fc:7c:af:21:c8:6b:ab:0a:fe:3d:f3:
13:fe:00:99:db:db:67:ed:23:53:1c:3e:32:07:0a:
d3:6b:d8:86:4b:71:d6:a1:d9:2e:83:12:6f:8c:07:
9f:50:84:a5:a9:77:60:39:29:4e:82:56:c2:d4:91:
b6:8c:98:82:86:0c:7b:b9:e8:77:d2:81:81:c0:7e:
0d:da:6e:ba:42:fd:5e:99:f3:bf:0b:95:ed:94:a3:
b7:a9:e0:0e:39:df:f3:13:79:26:9b:d4:40:2e:31:
02:f4:27:ce:4f:ba:9f:ac:65:8d:85:51:df:5d:b5:
07:15:9d:c6:bd:8a:d6:f7:75:5d:15:cb:90:ae:55:
6a:19:54:27:94:7e:c7:48:0e:92:97:09:33:36:0e:
43:73:ab:b9:04:a4:ea:fc:25:20:28:de:70:a8:46:
bd:d6:8b:56:7e:fc:94:ec:b2:45:52:1a:74:7f:55:
46:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:38:CF:55:97:84:21:1D:1E:3C:43:97:5C:65:30:02:BD:EF:F7:32
X509v3 Authority Key Identifier:
keyid:E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:e7:0f:df:06:c6:97:2e:41:16:52:1b:bb:2a:b1:8a:53:e4:
7c:59:b4:88:00:c3:10:3a:69:da:b4:f9:4a:0f:11:5d:8c:82:
de:4c:45:a9:66:38:d9:cc:c5:e1:e6:0f:22:18:99:e4:b6:36:
4a:09:8e:99:cc:a2:23:e3:1a:c0:65:49:d9:80:c0:8e:00:b3:
3a:34:4f:8e:c9:aa:57:38:67:90:0d:ba:30:b7:1c:fc:28:63:
0e:60:9b:4a:3f:7a:a6:cd:96:b8:d0:be:c8:08:0b:10:2f:5a:
82:fa:d1:35:75:c5:51:43:fd:eb:74:09:d8:08:63:1d:5c:ad:
94:83:7c:74:db:43:72:35:c4:2c:91:35:95:fc:6b:86:48:d2:
2f:bb:87:aa:6b:87:80:bb:d9:03:3b:7f:00:7d:d9:2f:94:ff:
74:13:a8:1d:a4:e5:9f:ee:02:eb:a9:75:87:f7:fd:5a:a4:05:
29:7a:3f:f2:59:0e:0a:73:c5:81:9b:4a:eb:94:f7:6f:6b:a4:
c1:4c:01:d7:78:1a:47:a4:b9:e7:30:05:5a:2a:2c:e3:e9:f5:
66:f0:1b:17:cf:4f:dd:d5:67:ed:32:12:7e:eb:b4:b6:8f:ea:
fd:c9:db:f9:8c:7d:97:c3:10:52:00:43:02:c1:f0:cb:ce:cf:
a8:5c:7c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:49:44 2026 by rpki-client