Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
File: 5H78nMPZxL0porvBVVH4LyXPEbo.mft (raw, json)
Hash identifier: 56xx0ybwVuqCw218cwYL0CV4YX0CfBgpkx/4Ae6pfoI=
Subject key identifier: 2C:CA:00:92:FA:C0:85:FC:A3:43:0D:22:02:90:BC:6D:F6:4F:7C:A6
Authority key identifier: E4:7E:FC:9C:C3:D9:C4:BD:29:A2:BB:C1:55:51:F8:2F:25:CF:11:BA
Certificate issuer: /CN=e47efc9cc3d9c4bd29a2bbc15551f82f25cf11ba
Certificate serial: 019CAEDA2AAD9ABD36E49D04ACED7F14F14E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
Manifest number: 0FFB
Signing time: Mon 02 Mar 2026 14:00:59 +0000
Manifest this update: Mon 02 Mar 2026 14:00:59 +0000
Manifest next update: Tue 03 Mar 2026 14:00:59 +0000
Files and hashes: 1: 5H78nMPZxL0porvBVVH4LyXPEbo.crl (hash: VquTalx9IVJQarPujkL6Xll7EZVtBYfSY58fOJeFtAg=)
2: vfg-SAjuqUJDpM-dI7gV1uCQ2uw.roa (hash: R/EtSB73ZGWrRnb/Gf2BJqZ0RYrtTKAiO9HiXzdMKyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:50:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:da:2a:ad:9a:bd:36:e4:9d:04:ac:ed:7f:14:f1:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47efc9cc3d9c4bd29a2bbc15551f82f25cf11ba
Validity
Not Before: Mar 2 14:00:59 2026 GMT
Not After : Mar 3 14:00:59 2026 GMT
Subject: CN=2cca0092fac085fca3430d220290bc6df64f7ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:70:2c:4b:04:86:45:25:4e:8c:7e:c9:dd:66:
89:10:cf:8b:3c:af:09:a6:25:57:5d:6f:cf:fb:0a:
62:8f:19:40:a5:1b:f9:0a:eb:9e:90:00:1d:4e:35:
a2:6d:83:23:c3:a2:28:ea:63:c6:35:83:92:70:be:
92:50:25:50:d5:5f:8a:24:17:00:01:db:5e:06:95:
94:10:9c:96:bc:7a:a6:4e:c0:4d:1b:d3:2e:5a:fa:
bc:68:f6:80:4a:50:b8:80:ff:c8:0f:b8:c9:8e:59:
d1:94:3f:bd:63:a2:e4:8a:18:91:86:37:51:23:c2:
8d:b3:23:1e:fd:5d:71:89:e3:e4:ce:8e:2b:05:c9:
e7:53:52:90:6a:9d:1e:c5:5c:63:60:be:e5:ec:7b:
4f:8a:f9:13:dd:27:8b:7e:a1:ce:1b:f3:e2:41:3b:
dc:34:94:10:3f:d1:8e:fd:a1:0e:de:46:e9:1c:fa:
43:fb:26:da:e8:68:b0:b4:5b:0b:29:28:5b:ab:c0:
09:ce:fe:8e:9c:f5:1d:80:1b:fc:67:58:f3:79:63:
da:21:1a:c5:54:8f:d2:c4:a3:44:8e:e9:ee:0a:3c:
59:a7:70:26:60:3a:a3:55:5e:1c:7a:c5:83:88:97:
a6:bf:1e:a8:a2:84:42:01:f5:ed:7a:14:75:81:4a:
ce:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CA:00:92:FA:C0:85:FC:A3:43:0D:22:02:90:BC:6D:F6:4F:7C:A6
X509v3 Authority Key Identifier:
keyid:E4:7E:FC:9C:C3:D9:C4:BD:29:A2:BB:C1:55:51:F8:2F:25:CF:11:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5H78nMPZxL0porvBVVH4LyXPEbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/248133-8670-4167-a195-6e2f588c0c7e/1/5H78nMPZxL0porvBVVH4LyXPEbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:fe:b8:ee:4f:1c:96:e5:97:34:af:e1:d0:8f:21:cf:1d:f1:
a4:05:77:18:e7:fe:ca:43:f2:c9:55:94:1d:6c:71:d2:67:55:
26:70:ef:69:39:8c:6f:81:d5:7d:88:35:7a:95:1d:c6:af:ce:
41:ad:cc:a0:e4:2f:03:e2:fe:cb:92:bc:5f:77:5b:58:33:12:
22:7b:1a:ba:95:b7:90:48:8c:a3:c8:ff:24:5c:cb:ff:8e:00:
d6:ea:35:44:94:6d:5b:fb:f9:82:f2:49:83:cc:d2:19:a3:c6:
61:68:0a:ec:d2:4d:7f:22:c3:c8:91:56:c9:7d:ec:94:b8:4e:
73:7e:b8:03:e6:2b:6f:11:17:f5:0d:c3:35:e5:af:41:d2:07:
43:b9:e5:3d:cf:45:6b:cb:d1:92:53:ee:f3:6f:df:bd:d1:d5:
6d:4b:fb:43:c5:6c:c3:84:84:f5:c2:50:9f:a7:0e:73:04:5a:
c1:39:a6:34:22:6a:01:7c:7a:47:48:7a:45:4e:8e:72:a1:25:
f8:b6:e9:f6:0b:76:0e:ae:53:59:25:f3:5c:23:74:d4:90:ca:
14:32:55:31:68:cb:45:b3:b4:6c:cb:7f:8d:89:c6:a9:cf:e3:
98:d7:a0:ec:17:31:cc:d6:97:06:f2:25:9c:54:ad:57:2f:31:
f9:22:a5:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:17:34 2026 by rpki-client