Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
File: 5XB6RVkqydFxmoV2lgMXeCm0bgo.mft (raw, json)
Hash identifier: YkiRiwtQtXZ9eAyDtbBUdfLbOPF37m3DWzwLP8nF34g=
Subject key identifier: F4:19:23:69:2C:DA:7E:BE:F6:EF:FF:47:1F:D5:E2:BD:40:4B:40:71
Authority key identifier: E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A
Certificate issuer: /CN=e5707a45592ac9d1719a85769603177829b46e0a
Certificate serial: 019F178BD7DEC06F109ED221D3DCA487ABBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
Manifest number: 0F85
Signing time: Tue 30 Jun 2026 08:01:08 +0000
Manifest this update: Tue 30 Jun 2026 08:01:08 +0000
Manifest next update: Wed 01 Jul 2026 08:01:08 +0000
Files and hashes: 1: 5XB6RVkqydFxmoV2lgMXeCm0bgo.crl (hash: PN82NJGhDMSlVzD5nP988I2hLD0hxgQSswHTYechc3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 08:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:8b:d7:de:c0:6f:10:9e:d2:21:d3:dc:a4:87:ab:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5707a45592ac9d1719a85769603177829b46e0a
Validity
Not Before: Jun 30 08:01:08 2026 GMT
Not After : Jul 1 08:01:08 2026 GMT
Subject: CN=f41923692cda7ebef6efff471fd5e2bd404b4071
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7f:08:da:fc:54:18:12:4d:15:68:11:e4:cf:
31:8e:4b:4d:e1:0a:7b:65:ae:81:17:55:b1:a2:89:
a9:e8:a1:23:32:f2:ff:30:64:ac:db:14:64:6a:a6:
a0:32:54:0a:84:7c:69:67:9c:67:88:e7:6b:1a:b0:
57:fb:fe:a1:e7:33:f3:03:87:d9:c6:6e:e4:54:1a:
d7:c5:07:1a:b6:89:68:d5:0b:75:78:ca:a8:d7:e1:
17:86:38:cd:8d:34:67:e6:f7:ba:96:33:ee:b3:39:
bd:bd:43:a1:e1:9c:b2:35:38:dd:fc:0e:cf:9b:2c:
56:3d:7e:bf:dd:a4:04:40:6c:ba:29:3a:ff:73:03:
9f:cf:eb:f8:88:16:87:48:19:f1:af:78:3c:1e:6a:
79:d1:40:4a:36:38:61:42:9f:fd:28:ec:9a:c2:cc:
b5:43:5c:60:c0:f4:39:d0:e0:79:52:05:84:b3:e2:
57:57:ae:62:4e:09:90:a1:42:98:ae:22:f0:2e:c9:
b4:2d:73:4e:03:1f:f2:1a:c0:69:5e:da:4b:f2:84:
5d:db:b5:8b:3d:e6:1a:57:96:18:4b:97:fc:09:23:
c3:da:72:f5:f2:f7:1e:a4:08:93:bb:33:85:f5:28:
24:ef:53:bc:ae:a7:40:66:85:6c:92:2f:18:c8:e1:
67:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:19:23:69:2C:DA:7E:BE:F6:EF:FF:47:1F:D5:E2:BD:40:4B:40:71
X509v3 Authority Key Identifier:
keyid:E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:e5:93:2a:a2:dc:48:a0:8b:b3:31:94:f8:d5:cf:66:49:7c:
73:f7:64:3d:b0:1d:70:21:07:a6:7d:d1:55:60:29:ab:ce:4b:
9a:e4:ab:df:1e:92:07:2f:8d:44:bd:ba:b3:a9:72:39:7a:4d:
41:cc:8c:ae:68:74:12:e5:d5:3d:48:95:1e:34:1d:0b:0d:e2:
35:97:fa:c3:86:da:23:3e:ff:5c:40:41:dc:59:eb:09:d8:2c:
5f:27:47:a6:4d:02:85:3d:a7:c8:b8:9e:4f:7a:2e:2d:69:7b:
78:98:7e:fe:eb:d2:9c:99:b8:35:c9:91:84:69:07:c7:a7:c8:
51:23:24:a0:44:9e:08:7e:0c:a2:30:8e:10:84:4e:a2:43:a4:
15:2b:9e:fa:d0:3e:69:8d:e2:86:f4:4d:66:51:4d:71:db:71:
73:0f:fd:be:82:44:8e:3b:3c:f6:a9:6f:4a:d5:28:9b:f5:1c:
25:6f:61:49:b4:0a:0d:43:f8:5a:81:93:0c:2d:31:ee:46:2f:
b5:8c:a2:df:a6:27:81:8b:57:97:bd:50:33:78:f4:70:30:64:
aa:81:a7:7e:97:e4:07:a8:92:81:47:50:e1:a5:d2:1a:31:42:
56:87:93:98:bd:ba:a3:78:5c:71:c0:df:b5:d1:15:e8:e0:e9:
75:52:6b:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:19:50 2026 by rpki-client