Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft
File: 5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft (raw, json)
Hash identifier: 0vLG93OT9yoEcc4yygi1OeFmTnk6Mjx2OUWwAD7XAjs=
Subject key identifier: 9D:A3:F3:78:2A:8F:20:A9:6A:AE:AD:E2:05:E0:E0:51:7F:6B:E7:E2
Authority key identifier: E6:7C:0D:47:1D:C3:E4:79:04:C9:35:7D:40:F9:77:A3:E0:81:B4:BD
Certificate issuer: /CN=e67c0d471dc3e47904c9357d40f977a3e081b4bd
Certificate serial: 019D9D3F5AAA730C7E0B3CA49C86A3019ECE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5nwNRx3D5HkEyTV9QPl3o-CBtL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft
Manifest number: 0A87
Signing time: Fri 17 Apr 2026 21:01:08 +0000
Manifest this update: Fri 17 Apr 2026 21:01:08 +0000
Manifest next update: Sat 18 Apr 2026 21:01:08 +0000
Files and hashes: 1: 5nwNRx3D5HkEyTV9QPl3o-CBtL0.crl (hash: wf5k+Bu9fo7D/alPjv0ypfluGvaJuuS96i7ty25urc0=)
2: nwkylzsl9GQOKn32orn5yakjbK0.roa (hash: /75YPo5s/Ms0uyukdFXeyU5GUYakwPsjdM3EpdWBr4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5nwNRx3D5HkEyTV9QPl3o-CBtL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:3f:5a:aa:73:0c:7e:0b:3c:a4:9c:86:a3:01:9e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e67c0d471dc3e47904c9357d40f977a3e081b4bd
Validity
Not Before: Apr 17 21:01:08 2026 GMT
Not After : Apr 18 21:01:08 2026 GMT
Subject: CN=9da3f3782a8f20a96aaeade205e0e0517f6be7e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:61:50:30:50:b2:39:58:27:62:c7:95:42:b4:
b8:4e:5e:bd:e8:b4:d6:94:c8:69:87:44:f3:db:ff:
92:1f:d6:bf:ae:6d:9e:95:55:96:a3:c7:9d:db:c2:
4b:fe:1a:e8:d6:2a:93:6f:0f:25:86:8f:5f:da:a2:
ad:7d:b3:20:4c:ad:35:14:32:a2:e2:4b:85:f8:4f:
af:c0:e8:36:9a:09:6e:0b:0c:27:3c:34:d1:6a:88:
82:23:94:de:0a:aa:67:99:71:d0:2d:fe:56:fc:32:
44:f2:9a:c4:23:12:f5:99:c9:98:02:58:57:55:ef:
80:64:27:73:7f:53:d6:0c:46:a3:31:e0:9d:86:71:
ee:98:77:91:ed:f5:21:1a:3b:10:84:5d:73:7f:eb:
36:04:21:df:40:28:71:49:16:e9:c0:65:6f:2c:a3:
cd:a0:00:0e:a5:12:c8:7b:80:e9:b2:c5:fd:fe:61:
b8:6b:de:3e:26:0c:70:6e:00:05:19:c3:d1:4f:38:
35:3b:a9:6c:25:5b:83:42:5b:08:32:08:68:39:9c:
bd:05:f5:91:17:02:e1:bf:96:54:85:cd:47:4b:e1:
e9:65:ac:32:62:de:99:f4:3e:93:17:66:fe:a3:84:
24:5b:0c:55:13:2a:85:78:8c:4a:17:40:29:12:b8:
24:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A3:F3:78:2A:8F:20:A9:6A:AE:AD:E2:05:E0:E0:51:7F:6B:E7:E2
X509v3 Authority Key Identifier:
keyid:E6:7C:0D:47:1D:C3:E4:79:04:C9:35:7D:40:F9:77:A3:E0:81:B4:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5nwNRx3D5HkEyTV9QPl3o-CBtL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:0b:5d:ab:1b:b7:28:e0:e4:ba:a0:f1:a0:cf:a7:26:e8:a2:
63:42:b9:8a:85:d6:a0:4d:d1:68:15:e1:68:c2:66:08:c3:1e:
64:8b:44:1e:71:43:ee:2a:a6:63:3a:2f:2f:37:eb:d8:38:ea:
a5:97:c6:63:84:49:dc:36:b1:0d:d3:32:4b:d2:c7:51:3a:6e:
27:59:e5:f4:50:4e:43:fc:a6:f0:e0:00:00:5b:57:36:b1:e7:
f0:4e:be:db:fa:27:fd:e6:93:79:b7:0e:7f:21:27:23:c3:5c:
4d:bc:8a:07:f0:63:3a:41:0a:78:ac:02:51:4c:b3:82:1e:6f:
33:3b:a4:b2:61:03:0f:f0:e8:8b:35:12:86:3a:cb:b0:ff:12:
99:c5:ee:f8:2e:1c:9d:a9:22:79:23:37:65:68:b7:14:47:2a:
57:d7:b3:b4:d1:a4:c7:a9:aa:07:6f:ee:59:a8:99:ca:31:d3:
81:7d:b3:bf:6c:9f:13:72:b9:bf:3d:e9:19:d6:40:24:d5:e9:
95:41:ad:28:3b:9a:be:67:04:e5:09:21:25:0c:41:90:02:0b:
9d:bb:ac:18:f3:4f:d3:34:cc:0c:4e:0c:7c:d0:af:1a:da:79:
7b:b7:3c:2f:ad:4a:2e:3c:62:43:02:e3:b1:bc:8e:72:82:c2:
1f:49:21:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 04:42:46 2026 by rpki-client