Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
File: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft (raw, json)
Hash identifier: pP/UwusQCjjUCF+GG/6xCEliyUWOjiyiaamc4rqdsoY=
Subject key identifier: 9A:43:07:D0:7A:B7:FC:F3:6A:81:70:F3:6B:6F:59:E4:D5:DE:89:FF
Authority key identifier: AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
Certificate issuer: /CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Certificate serial: 019D9818598B63A17CDB7C3B2A6BF35F8D5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
Manifest number: 059E
Signing time: Thu 16 Apr 2026 21:00:25 +0000
Manifest this update: Thu 16 Apr 2026 21:00:25 +0000
Manifest next update: Fri 17 Apr 2026 21:00:25 +0000
Files and hashes: 1: SW0jIvk1wvk_Jl_m70Mc6YZkuCg.roa (hash: xgcppBoYJknCSghed+wm1HRzdAorIWKU+WyvltEZlPQ=)
2: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl (hash: YadlQdtJz9Jesqs0TgeS4yb6mgmpI43oCPge3IBup5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:59:8b:63:a1:7c:db:7c:3b:2a:6b:f3:5f:8d:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af9b2cefe389a1ae49756edc2b3293e58830cb82
Validity
Not Before: Apr 16 21:00:25 2026 GMT
Not After : Apr 17 21:00:25 2026 GMT
Subject: CN=9a4307d07ab7fcf36a8170f36b6f59e4d5de89ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:dc:7d:bc:2c:e6:6b:bb:c1:ac:ee:23:02:eb:
1d:66:d7:e2:e3:56:c6:39:91:37:50:83:b5:4b:b0:
a1:a1:2f:92:49:2e:66:94:c3:8c:25:03:e2:aa:e6:
0f:52:70:3c:a7:32:0d:d3:e4:46:07:1c:77:1f:f5:
5b:89:a6:5b:4d:0e:a9:08:8e:04:f2:f8:33:89:5f:
0b:27:a9:ad:19:d7:3b:be:87:dc:8e:1c:43:31:8c:
e0:46:03:56:cc:7f:cb:87:8f:02:78:9e:33:c0:3b:
48:ce:a7:aa:07:1b:04:36:7f:cc:82:8b:8e:d4:e6:
e9:71:b6:ad:8d:4c:f2:f2:42:c7:19:e9:ca:56:cb:
1d:be:3d:92:74:0f:e3:89:7a:4c:81:84:e9:9a:5d:
be:7f:01:00:17:be:b9:2c:f4:f3:30:26:4b:b8:d1:
92:36:36:43:bc:25:e1:ea:a6:bb:b0:a7:bc:af:1d:
9f:68:54:a0:1d:b2:31:c7:d0:2b:02:87:23:f5:47:
d9:e7:c6:b9:85:e1:8b:ee:14:5f:bc:e7:05:f5:f1:
68:01:12:07:c4:6c:6b:8e:70:16:5e:09:20:e5:ff:
3c:b4:d0:83:03:8e:7e:24:d5:1a:e3:b9:d7:8e:91:
96:79:cc:45:18:93:67:cc:8a:15:26:db:c3:d6:a0:
f4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:43:07:D0:7A:B7:FC:F3:6A:81:70:F3:6B:6F:59:E4:D5:DE:89:FF
X509v3 Authority Key Identifier:
keyid:AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:05:53:fd:98:24:8b:e0:63:50:29:84:40:72:d6:bf:24:94:
79:30:bf:06:94:ea:53:d4:14:18:b2:cf:4d:b3:4a:97:82:68:
2f:4a:95:e3:c7:34:3b:43:39:40:d1:e2:f2:b0:3d:9a:c5:2f:
60:e8:60:e5:e6:0b:f4:0e:f6:35:2a:4e:2c:9f:28:c9:de:02:
51:81:1e:1e:38:5e:13:2e:d9:4b:9e:1d:9b:10:f7:d0:c6:51:
f3:4f:79:23:fc:3f:ee:b0:2b:84:90:21:48:e1:5f:b0:d8:d8:
3a:9f:f0:16:4d:96:a1:77:7f:69:51:f7:2d:54:09:ed:81:b0:
6a:ed:8f:b7:e4:ce:dc:90:b1:ae:50:bf:c8:f6:78:bd:ba:3e:
f7:87:4e:de:71:55:95:5e:cb:05:19:61:a4:fb:48:6a:d9:fd:
b0:00:62:c5:e3:40:8f:b5:fb:e1:1c:8d:bd:1a:a7:f3:5c:0e:
a0:75:07:af:ac:6e:79:2e:d9:aa:99:9c:c3:ee:4e:59:52:7a:
cc:2f:bd:ed:59:48:b7:3e:ca:07:cb:b9:bd:cc:1b:9d:ac:37:
83:8b:72:b3:df:19:aa:95:4c:7f:9d:a2:4d:d2:fe:fc:a3:a8:
47:51:d6:fc:c3:b3:3d:3d:ed:ad:ea:6d:77:ab:4d:3d:5b:0f:
33:46:32:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:06:58 2026 by rpki-client