Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft
File: 5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft (raw, json)
Hash identifier: Yt1Nx0iIrs63ZrYjVTddzYffOcQq2rOE4y50JiBcUQg=
Subject key identifier: 4C:35:45:52:44:65:8A:55:27:DD:70:39:22:3C:21:6B:BC:B4:D4:15
Authority key identifier: E6:7C:0D:47:1D:C3:E4:79:04:C9:35:7D:40:F9:77:A3:E0:81:B4:BD
Certificate issuer: /CN=e67c0d471dc3e47904c9357d40f977a3e081b4bd
Certificate serial: 019CADC74F5F714CA8AD4FD2F6305A1EC8C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5nwNRx3D5HkEyTV9QPl3o-CBtL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft
Manifest number: 0A0B
Signing time: Mon 02 Mar 2026 09:00:46 +0000
Manifest this update: Mon 02 Mar 2026 09:00:46 +0000
Manifest next update: Tue 03 Mar 2026 09:00:46 +0000
Files and hashes: 1: 5nwNRx3D5HkEyTV9QPl3o-CBtL0.crl (hash: LiMyYuFIwwU5weZvOUVXQWrP3AYt2nbwP5uOdNPgyFw=)
2: nwkylzsl9GQOKn32orn5yakjbK0.roa (hash: /75YPo5s/Ms0uyukdFXeyU5GUYakwPsjdM3EpdWBr4I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5nwNRx3D5HkEyTV9QPl3o-CBtL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:4f:5f:71:4c:a8:ad:4f:d2:f6:30:5a:1e:c8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e67c0d471dc3e47904c9357d40f977a3e081b4bd
Validity
Not Before: Mar 2 09:00:46 2026 GMT
Not After : Mar 3 09:00:46 2026 GMT
Subject: CN=4c35455244658a5527dd7039223c216bbcb4d415
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:82:72:53:7b:50:28:20:02:58:a2:57:33:11:
e7:c4:9d:3c:79:4d:1d:e7:24:c2:60:d6:dd:a8:a4:
a0:a7:f8:5b:23:3f:19:a1:55:c5:80:6e:7e:01:7b:
c0:25:4e:78:21:fc:45:b5:b0:57:25:e7:8d:d4:a3:
f2:a0:69:71:92:44:f2:be:30:f1:52:5a:93:fa:e1:
60:9f:0c:6e:41:20:b2:10:29:7c:7c:9c:90:e7:e0:
18:f5:72:1f:47:66:f2:65:3c:74:f9:22:04:33:fd:
80:3b:8e:26:e0:90:ed:93:27:3d:8a:d6:ca:ca:1b:
2d:46:87:a0:75:fb:45:5c:38:36:f8:bd:b9:a5:2b:
21:1d:1e:8f:b2:c9:d8:2e:fc:3d:91:e0:d1:0d:fb:
45:e9:c1:8f:1b:2e:ab:9f:52:37:3d:ad:f9:40:7e:
e4:42:cb:bc:8c:c9:9e:68:12:73:d6:4a:38:81:74:
69:b7:82:bc:24:b4:85:d7:a6:9d:5b:17:10:b8:5f:
ed:35:cd:e6:bd:d2:4f:4b:3e:5f:86:4e:b2:bc:b5:
dc:6c:56:ed:55:7e:bf:2d:59:c7:8d:6c:a7:73:87:
9d:f7:56:47:d5:3d:be:29:51:9c:27:24:63:c2:63:
b6:7a:7a:81:a0:c9:07:8a:ad:14:af:1a:30:98:3b:
b4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:35:45:52:44:65:8A:55:27:DD:70:39:22:3C:21:6B:BC:B4:D4:15
X509v3 Authority Key Identifier:
keyid:E6:7C:0D:47:1D:C3:E4:79:04:C9:35:7D:40:F9:77:A3:E0:81:B4:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5nwNRx3D5HkEyTV9QPl3o-CBtL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/5a5638-455a-4250-94f0-0561bde0bfa8/1/5nwNRx3D5HkEyTV9QPl3o-CBtL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:b3:41:fd:b6:a4:f5:df:4b:5d:bd:16:95:ad:22:d1:2c:64:
88:b3:c5:eb:a4:06:42:3a:42:92:a6:f8:f4:4a:bc:15:5e:61:
a9:82:d5:b0:5a:a1:47:0d:94:46:7b:98:be:3e:6e:5a:aa:44:
e5:c2:3f:fa:9e:5a:30:e9:d4:a5:cb:6c:01:c2:28:85:bc:f4:
44:b1:93:2b:eb:21:5e:64:9b:0c:01:49:79:6a:61:2c:2b:e9:
2a:34:cd:ef:e0:88:1f:67:71:2f:cb:98:6a:90:35:96:c1:3a:
37:40:5c:57:5b:19:77:82:ac:a5:e0:6e:13:a7:cc:ab:79:2b:
d0:37:0c:89:08:7d:a0:c5:d9:09:df:94:ba:1f:8d:1c:d0:82:
80:b1:a7:3c:d2:76:e0:22:8d:7f:51:57:d4:09:94:96:06:16:
c7:1a:62:3e:a3:c5:6a:39:59:1b:74:01:9e:2e:27:34:4e:b0:
b6:6b:55:9f:b9:bf:68:30:20:2c:21:c9:3c:82:81:15:2d:40:
b4:5a:6d:48:4c:04:0a:83:0a:f8:91:c0:5a:12:42:b4:21:4c:
36:38:b8:08:52:20:1d:e0:34:f5:cf:ed:c0:ef:01:6e:83:8d:
b0:1c:e6:48:d7:41:fe:87:67:73:9d:51:31:da:36:88:e0:15:
cc:30:5a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:10:37 2026 by rpki-client