Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
File: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft (raw, json)
Hash identifier: 6PvyTsuB7rp9D4oXJ7ZzZ1OYdROkFNGveNDyn2s91I4=
Subject key identifier: 4A:E6:92:A8:12:C0:C5:76:B1:CA:9D:34:1F:2B:01:C0:5E:EF:97:53
Authority key identifier: E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2
Certificate issuer: /CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
Certificate serial: 019DA30A4EC3089C175C18D6CAE2E3B6665E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
Manifest number: 1807
Signing time: Sun 19 Apr 2026 00:00:54 +0000
Manifest this update: Sun 19 Apr 2026 00:00:54 +0000
Manifest next update: Mon 20 Apr 2026 00:00:54 +0000
Files and hashes: 1: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl (hash: dD99W4c4leY/4kOu+UuF1dcilfn3DRLuY25DmoI23ZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:0a:4e:c3:08:9c:17:5c:18:d6:ca:e2:e3:b6:66:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
Validity
Not Before: Apr 19 00:00:54 2026 GMT
Not After : Apr 20 00:00:54 2026 GMT
Subject: CN=4ae692a812c0c576b1ca9d341f2b01c05eef9753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ee:eb:42:ac:54:0d:70:a0:4e:81:87:f8:2e:
41:5d:8b:9a:73:6f:8c:79:f4:ff:4c:d1:4d:ce:99:
f3:cf:5b:17:a9:35:7c:32:08:92:fa:03:0a:af:ab:
ab:e1:2d:81:ed:4b:77:d8:2d:58:f7:12:eb:52:c6:
89:12:ed:20:3e:07:a1:fd:42:e7:e7:d5:ad:6e:8a:
a8:0a:10:58:a9:69:9c:32:68:ee:f5:06:dc:98:d6:
a2:83:e5:5d:54:05:97:26:3e:de:3d:ba:d9:dd:38:
71:6e:b1:42:bd:f3:9d:5f:20:7c:90:11:45:09:1b:
47:6e:07:47:f3:52:6d:2f:08:49:70:14:a6:29:01:
19:71:90:4a:39:e8:ab:ae:db:5d:c4:40:89:5b:5c:
ff:11:a0:a8:a9:9d:23:50:57:f7:f3:06:11:a6:19:
74:08:15:bb:49:b4:e9:a9:2d:48:a1:a9:8c:8e:19:
5e:aa:af:12:49:e3:07:f6:2c:be:88:06:b0:1d:cb:
77:bf:65:d9:e4:05:74:d7:aa:1b:14:4b:b8:69:19:
64:3d:ac:a5:32:ed:49:62:b5:a8:25:08:30:52:1e:
46:99:c8:c8:e9:9b:84:53:c1:67:6f:01:f0:8b:83:
92:53:60:bc:b6:11:bc:9e:8b:5c:31:1d:ac:9a:ab:
60:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E6:92:A8:12:C0:C5:76:B1:CA:9D:34:1F:2B:01:C0:5E:EF:97:53
X509v3 Authority Key Identifier:
keyid:E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:7a:7c:aa:26:0e:04:21:70:f2:24:af:00:e8:a4:f1:22:af:
f0:1d:09:9c:92:aa:05:25:86:42:fd:f8:f0:31:64:1d:ce:42:
7c:64:60:69:e3:a5:5d:50:5f:23:53:d9:dc:fc:25:66:5b:63:
e1:4d:e7:4f:61:22:51:35:37:46:c3:05:ee:8b:04:29:6a:6a:
79:6d:b0:31:65:ba:54:aa:6e:3a:cc:39:f1:8b:a2:12:b9:3f:
f1:d9:48:69:e9:aa:f8:f8:0d:41:75:33:cf:6a:b5:00:40:13:
6b:54:ee:30:fd:ee:5a:01:13:12:d9:20:b5:9b:91:29:24:02:
f5:d9:31:ec:97:34:27:30:8f:1f:b1:fa:d0:0e:55:99:0d:8f:
02:48:87:79:aa:2b:88:6f:55:fa:db:ea:00:95:c0:95:20:cb:
6c:9a:19:48:c4:48:ba:0d:1f:b0:54:c2:d2:f2:3f:33:eb:81:
0b:f2:d5:14:91:83:24:7d:a6:05:5b:61:ac:51:54:13:20:f6:
f0:57:9c:e7:ca:a4:ca:fd:38:97:a2:f9:9d:96:ae:48:8c:77:
1c:40:74:dc:99:0b:8a:fd:58:52:97:98:a2:6b:7e:82:e1:d3:
71:9d:96:02:5e:f1:a9:de:08:99:62:65:76:84:43:f2:94:4e:
9b:df:00:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:24:33 2026 by rpki-client