Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
File: 5e_Rhp7q_m-fA8s0GGibywxpE3A.mft (raw, json)
Hash identifier: YLNlzBl6QSfAr2MivDclsh/GqCPwfq4TvTUp98pY8tU=
Subject key identifier: DA:EB:66:96:7E:67:63:45:94:FF:AA:38:09:42:71:D8:9C:58:AE:C5
Authority key identifier: E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70
Certificate issuer: /CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370
Certificate serial: 019D28F20E36AEA3F4A4A40ED53CAE2ECE01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
Manifest number: 12A2
Signing time: Thu 26 Mar 2026 07:00:45 +0000
Manifest this update: Thu 26 Mar 2026 07:00:45 +0000
Manifest next update: Fri 27 Mar 2026 07:00:45 +0000
Files and hashes: 1: 5e_Rhp7q_m-fA8s0GGibywxpE3A.crl (hash: a2IaM/QkByVKm9xObicduL9XsJMO6g/lB15c7G3jDH4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:0e:36:ae:a3:f4:a4:a4:0e:d5:3c:ae:2e:ce:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370
Validity
Not Before: Mar 26 07:00:45 2026 GMT
Not After : Mar 27 07:00:45 2026 GMT
Subject: CN=daeb66967e67634594ffaa38094271d89c58aec5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:96:84:39:92:16:e7:b8:b6:21:2a:8b:6a:3d:
75:38:5c:31:dc:65:91:c4:14:8c:99:cc:a2:e0:7c:
93:a9:b0:c6:a5:dd:0c:7e:67:10:e8:e0:0b:5e:35:
20:a9:9a:16:df:49:c7:4a:8c:a1:d3:12:4f:6d:09:
18:0a:77:75:4e:93:09:27:c2:8c:fc:c8:71:ba:13:
0a:a9:71:b0:26:2a:be:cf:8a:a0:8c:fe:d8:68:e4:
40:02:91:0f:a1:dc:e9:cd:48:fe:c8:db:a6:46:75:
02:29:d0:e2:a7:5f:c1:f3:09:1a:69:13:dd:ef:1f:
1d:c7:c6:ba:3d:86:fa:b8:ec:57:ca:e6:5b:92:c2:
98:7d:b4:80:5e:78:db:cf:66:a4:f0:3f:e8:42:70:
48:24:49:e6:39:8d:f9:92:01:bf:0c:2c:fd:f7:8f:
d2:80:ee:a5:bd:39:c2:03:96:fc:a6:ae:1b:52:3c:
62:1f:c5:2b:5d:10:c8:02:3e:00:5b:e9:74:58:63:
89:05:11:51:ba:c0:a2:e5:b0:3a:b0:5f:7c:9d:dc:
bf:6e:84:57:df:cd:2f:ba:84:a7:75:01:66:60:78:
02:e1:60:83:fa:29:6c:b6:b1:ff:26:76:53:c4:c6:
66:ad:eb:6b:f3:92:39:00:e1:1d:b9:b4:85:28:1b:
1f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:EB:66:96:7E:67:63:45:94:FF:AA:38:09:42:71:D8:9C:58:AE:C5
X509v3 Authority Key Identifier:
keyid:E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:2d:37:cd:55:c5:de:01:ec:00:d2:44:5b:8c:1d:98:9d:c1:
a4:c5:5a:c4:22:83:e5:87:bb:17:d2:2c:e3:b4:ef:2a:6f:95:
6a:8b:f1:6e:81:76:ce:a5:d3:81:5e:93:d6:38:55:f4:5f:fc:
03:7e:3f:5d:39:4f:39:30:ae:aa:38:46:a7:e8:5e:a9:89:87:
72:85:f1:3e:68:44:01:67:db:44:e2:a5:42:dd:0a:d8:03:2e:
97:93:35:64:b0:c9:eb:b1:53:b4:f2:15:36:f5:c4:f8:73:74:
9d:5f:40:70:87:86:1f:f2:f5:4e:02:0a:33:e3:5b:d5:25:5f:
4f:6f:2a:d5:2f:81:91:50:99:f2:4a:a0:ff:4e:49:fc:b0:92:
b9:e3:c3:cc:bc:64:60:32:b9:4c:fc:b1:56:4e:dc:a5:c1:b9:
7e:77:ea:e8:c8:b3:1d:5a:70:ad:55:dd:76:62:49:6e:41:9c:
5e:99:d5:a1:bd:e7:66:f8:d2:51:14:6c:f6:51:86:da:8f:42:
6b:14:28:6d:cf:3b:41:6c:24:91:e5:28:e5:82:69:a7:f6:36:
57:1d:73:a4:49:2c:c2:64:ac:65:ed:71:8f:16:d4:6b:69:9d:
e2:a3:36:27:2f:1c:be:29:b5:7b:07:63:fe:41:b4:34:b4:41:
14:25:10:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:10:45 2026 by rpki-client