Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
File: 5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft (raw, json)
Hash identifier: wYgSe/p5F2B5zN08TDe3nDPa30XMKsyEszvyQ7O0+N4=
Subject key identifier: 07:BA:BA:EB:F3:B1:F5:06:1C:50:23:CD:28:8C:AD:B6:E1:14:73:0C
Authority key identifier: E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9
Certificate issuer: /CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
Certificate serial: 019DA48AB887FB21C25F2C37CA441C4FF492
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
Manifest number: 06AB
Signing time: Sun 19 Apr 2026 07:00:47 +0000
Manifest this update: Sun 19 Apr 2026 07:00:47 +0000
Manifest next update: Mon 20 Apr 2026 07:00:47 +0000
Files and hashes: 1: 5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl (hash: m+G5Tnb3fi8sfqhiDnKTxcseAI0DvRnYjdhUZQ77Uhk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:8a:b8:87:fb:21:c2:5f:2c:37:ca:44:1c:4f:f4:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
Validity
Not Before: Apr 19 07:00:47 2026 GMT
Not After : Apr 20 07:00:47 2026 GMT
Subject: CN=07babaebf3b1f5061c5023cd288cadb6e114730c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3a:e3:04:2d:19:93:c7:f5:5e:11:ba:93:c6:
40:6c:56:7a:87:f7:71:25:3f:b3:56:ce:48:c3:c9:
04:61:07:59:68:0a:87:a8:32:2c:e3:9a:d0:f0:0f:
24:da:e5:68:1c:78:e8:16:d3:84:d0:f6:3a:d5:0e:
3a:df:3d:7c:3c:43:70:40:38:93:f7:c1:93:0b:41:
22:70:43:42:fc:d6:d1:3b:38:33:56:37:45:56:e2:
c8:61:85:34:60:ad:45:1c:bb:94:84:b4:bc:f1:03:
b4:b2:a3:71:1e:89:c2:1c:8b:7b:3c:cc:3e:c1:a5:
0b:06:53:de:07:4a:13:ab:97:9b:ac:70:08:26:7c:
53:33:1f:6f:17:d7:dd:1a:b9:2a:f2:47:c4:06:07:
fd:01:e7:54:71:52:41:b4:20:24:60:23:4d:95:91:
a9:67:4c:af:f1:32:56:ca:91:b2:1d:5d:77:bd:56:
00:5d:f8:d9:65:72:6e:b7:fa:38:52:41:b3:c3:79:
1e:6e:58:e2:57:54:31:2c:54:db:fd:d2:8d:a4:eb:
59:80:3f:7f:8f:b8:f2:13:f1:d3:8e:bc:0f:80:9d:
6b:3e:47:42:b9:49:07:71:16:5b:11:79:90:c2:50:
74:d6:08:e2:7b:41:65:54:d2:fc:be:5f:a8:d0:cd:
13:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:BA:BA:EB:F3:B1:F5:06:1C:50:23:CD:28:8C:AD:B6:E1:14:73:0C
X509v3 Authority Key Identifier:
keyid:E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:4c:65:db:d9:dd:7a:c6:aa:6f:82:57:25:c3:b8:99:2a:fb:
fb:ed:f1:df:88:12:d6:34:6b:09:67:64:af:1b:59:50:76:bd:
ae:ab:20:3e:cf:97:bc:c5:1a:ce:d2:3b:f4:76:28:0f:e0:21:
8c:a2:7c:f3:b0:c7:f5:0e:5e:56:de:ef:4b:75:af:9f:13:93:
f9:1b:23:7a:7f:4d:25:d9:9d:44:f1:6e:59:92:4d:4a:33:79:
ae:77:05:21:24:2e:c4:f4:46:eb:8f:9f:4a:0d:e0:d4:b9:b1:
63:23:0a:d9:01:b8:2b:d1:9c:57:87:19:a9:ab:02:55:de:18:
5e:da:0f:cf:71:48:31:0a:c0:42:1d:d4:2e:b5:ad:c6:fe:39:
ff:3a:99:11:38:87:33:d7:3a:09:e6:94:2f:f7:a6:1f:fd:d8:
6c:01:ae:0b:69:52:6a:24:48:96:c5:ce:30:1c:4a:4e:2d:ff:
ad:32:c6:8e:2c:df:8f:8d:35:82:8c:73:31:d1:40:f7:75:52:
3d:23:57:66:ae:d6:b6:2f:89:22:98:81:e9:6c:0c:2c:9f:ce:
57:d8:4c:6e:9c:dd:cf:e6:0b:03:93:2e:7f:77:62:e4:e9:80:
54:d8:4d:8f:c5:01:b7:84:a4:bf:0a:52:56:db:a7:19:ba:9a:
ad:25:ff:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2kiriH+yHCXyw3ykQcT/SSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MThjZGRjMzlkMzQ3NTYzYzZkYzFlNWVjNWU1OTYyMWU0
MGU0ZDkwHhcNMjYwNDE5MDcwMDQ3WhcNMjYwNDIwMDcwMDQ3WjAzMTEwLwYDVQQD
EygwN2JhYmFlYmYzYjFmNTA2MWM1MDIzY2QyODhjYWRiNmUxMTQ3MzBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTrjBC0Zk8f1XhG6k8ZAbFZ6h/dx
JT+zVs5Iw8kEYQdZaAqHqDIs45rQ8A8k2uVoHHjoFtOE0PY61Q463z18PENwQDiT
98GTC0EicENC/NbROzgzVjdFVuLIYYU0YK1FHLuUhLS88QO0sqNxHonCHIt7PMw+
waULBlPeB0oTq5ebrHAIJnxTMx9vF9fdGrkq8kfEBgf9AedUcVJBtCAkYCNNlZGp
Z0yv8TJWypGyHV13vVYAXfjZZXJut/o4UkGzw3kebljiV1QxLFTb/dKNpOtZgD9/
j7jyE/HTjrwPgJ1rPkdCuUkHcRZbEXmQwlB01gjie0FlVNL8vl+o0M0T/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAe6uuvzsfUGHFAjzSiMrbbhFHMMMB8GA1UdIwQY
MBaAFOQYzdw500dWPG3B5exeWWIeQOTZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUJqTjNEblRSMVk4YmNIbDdGNVpZaDVBNU5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8zZWVkMjgtMjMwYy00YjlmLTkwNGMt
Nzc3ZTZjYTRlZmY2LzEvNUJqTjNEblRSMVk4YmNIbDdGNVpZaDVBNU5rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8zZWVkMjgtMjMwYy00YjlmLTkwNGMtNzc3ZTZjYTRlZmY2
LzEvNUJqTjNEblRSMVk4YmNIbDdGNVpZaDVBNU5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATUxl29nd
esaqb4JXJcO4mSr7++3x34gS1jRrCWdkrxtZUHa9rqsgPs+XvMUaztI79HYoD+Ah
jKJ887DH9Q5eVt7vS3WvnxOT+Rsjen9NJdmdRPFuWZJNSjN5rncFISQuxPRG64+f
Sg3g1LmxYyMK2QG4K9GcV4cZqasCVd4YXtoPz3FIMQrAQh3ULrWtxv45/zqZETiH
M9c6CeaUL/emH/3YbAGuC2lSaiRIlsXOMBxKTi3/rTLGjizfj401goxzMdFA93VS
PSNXZq7Wti+JIpiB6WwMLJ/OV9hMbpzdz+YLA5Muf3di5OmAVNhNj8UBt4SkvwpS
VtunGbqarSX/TA==
-----END CERTIFICATE-----
Generated at Sun Apr 19 10:22:31 2026 by rpki-client