Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
File: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft (raw, json)
Hash identifier: rrOswSXNsZtMqz81XVRBtX8IlAISgzeRTqT/ouaCFTE=
Subject key identifier: 7B:E4:D6:60:C2:21:F0:BF:B6:74:5C:F7:FE:66:52:BC:52:58:01:42
Authority key identifier: A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
Certificate issuer: /CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Certificate serial: 019D29CE3F7936FFBF63AA8D42AE3AF06085
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
Manifest number: 158F
Signing time: Thu 26 Mar 2026 11:01:15 +0000
Manifest this update: Thu 26 Mar 2026 11:01:15 +0000
Manifest next update: Fri 27 Mar 2026 11:01:15 +0000
Files and hashes: 1: OawgqQGPtlwEMOxGkAtl6L82H4Q.roa (hash: K2gpWslD9/HiQy1xYHGfxNVNM4NYrBOnVdVEvGdhuWM=)
2: p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl (hash: ZxPuzef4PK3euPQbY34fCMt1rdRLQanrhgfAWEoDWqM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 11:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:3f:79:36:ff:bf:63:aa:8d:42:ae:3a:f0:60:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7967d76c2d46720d4cfac0459fa3c3d22005044
Validity
Not Before: Mar 26 11:01:15 2026 GMT
Not After : Mar 27 11:01:15 2026 GMT
Subject: CN=7be4d660c221f0bfb6745cf7fe6652bc52580142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:68:b3:14:0e:ad:36:2a:f0:0a:6b:59:ed:5e:
0c:2f:f0:f5:01:0b:52:01:ca:d1:aa:04:fa:55:cf:
da:2c:4c:ac:e0:92:39:93:e4:5b:01:bc:75:bc:6d:
3f:e4:87:b8:77:6c:f9:a5:3b:4a:e5:9b:c0:c0:7c:
93:0a:ec:b6:e6:8c:ce:5c:89:fd:79:11:a8:95:96:
51:57:3d:e2:e0:1d:21:97:b2:56:9b:ab:01:c5:7f:
2e:80:b3:7c:2e:db:78:e8:f4:fb:19:e4:e1:b8:ae:
19:62:e9:00:4e:39:92:43:73:df:01:86:b5:44:1c:
39:5d:fb:3b:42:3c:3f:1f:6c:2e:a7:d5:d8:5d:a8:
1f:1d:8c:11:70:07:78:14:d4:e9:33:8b:ce:52:8f:
ea:86:d4:e0:03:d2:d1:86:70:ac:17:62:e6:3b:12:
0a:2f:f5:8b:cc:7b:eb:7a:f6:13:9f:af:23:d6:49:
7a:f9:ba:f0:46:a9:59:c7:49:2f:97:45:3a:d1:97:
55:a5:06:db:00:41:d6:1e:79:bb:ee:4d:d0:e0:91:
ba:1e:b3:84:1d:1e:15:df:fa:8f:6a:cc:3a:8c:18:
6e:ff:9e:da:65:6f:b1:65:18:5c:d1:cf:29:f4:91:
a4:bd:2c:e0:67:25:85:01:4e:77:5f:43:5d:6e:f5:
ab:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:E4:D6:60:C2:21:F0:BF:B6:74:5C:F7:FE:66:52:BC:52:58:01:42
X509v3 Authority Key Identifier:
keyid:A7:96:7D:76:C2:D4:67:20:D4:CF:AC:04:59:FA:3C:3D:22:00:50:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/87b768-1545-494a-84f9-1cf50a536026/1/p5Z9dsLUZyDUz6wEWfo8PSIAUEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:3d:db:07:ff:8e:9d:ae:f3:b9:83:ec:8f:37:2f:8a:d8:af:
0e:94:24:73:4d:a6:14:ec:3b:37:84:09:9e:13:fb:ec:e8:5d:
5f:ea:38:ee:c1:5d:ef:10:0f:c1:1e:17:fb:c5:f9:6b:96:d9:
1c:ec:3c:5b:5d:1e:68:56:23:c0:59:a7:6c:60:c2:ac:e6:e0:
ca:dc:6a:26:e7:40:f2:76:80:75:7a:a0:fe:7f:84:ef:61:c2:
e2:7b:34:5d:1f:83:40:e2:cb:b0:1a:52:c3:48:00:a2:b6:df:
b9:31:eb:91:34:54:d8:cb:d0:c2:97:ef:8f:39:95:cb:4a:c0:
b4:68:92:d7:ef:7c:78:01:14:6d:bf:1e:42:fa:f1:32:63:0e:
93:c8:76:a8:86:60:2b:ee:f3:9a:0f:20:b3:8d:7c:cc:ea:5b:
0d:61:70:da:2a:1e:d0:66:c0:a6:91:e0:7f:b3:92:1a:8f:40:
79:59:42:03:34:ca:0d:32:78:92:f3:5f:29:e8:9b:97:bb:49:
2a:82:2e:dd:e5:26:67:6a:90:54:0d:05:05:0c:78:6a:a9:f4:
15:67:e8:76:00:6b:73:58:c5:e2:a3:8b:95:b8:fb:59:d5:07:
04:a5:1b:f3:dc:0a:8e:2e:40:36:9f:a8:e8:62:cf:82:2d:17:
1f:82:eb:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:44:03 2026 by rpki-client