Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.mft
File: 5CI8HxzaGbmTW0jH_c8gVcKWICg.mft (raw, json)
Hash identifier: Hbj6YfvVpmWjzkr+XPNcOhBQf8OZUglkVBbTHTiUl+Y=
Subject key identifier: C2:D2:D3:5B:07:45:D3:1C:CB:70:E8:2E:42:89:2D:89:E1:78:66:6C
Authority key identifier: E4:22:3C:1F:1C:DA:19:B9:93:5B:48:C7:FD:CF:20:55:C2:96:20:28
Certificate issuer: /CN=e4223c1f1cda19b9935b48c7fdcf2055c2962028
Certificate serial: 019E1DC752856823A6BE3BAE397587DA10B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5CI8HxzaGbmTW0jH_c8gVcKWICg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.mft
Manifest number: 0171
Signing time: Tue 12 May 2026 20:01:02 +0000
Manifest this update: Tue 12 May 2026 20:01:02 +0000
Manifest next update: Wed 13 May 2026 20:01:02 +0000
Files and hashes: 1: 5CI8HxzaGbmTW0jH_c8gVcKWICg.crl (hash: ZIddEuFpZMkqloxYaZa/nSrbiOTp1ymmK1NK0mKmNww=)
2: xuYEpRaA_BbVvcRMwj6GF8dzFtk.roa (hash: +oo5HVPSdE5F0vnX0GJbLJAscp8MlST1lOFf6d/1Nz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.mft
rsync://rpki.ripe.net/repository/DEFAULT/5CI8HxzaGbmTW0jH_c8gVcKWICg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:52:85:68:23:a6:be:3b:ae:39:75:87:da:10:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4223c1f1cda19b9935b48c7fdcf2055c2962028
Validity
Not Before: May 12 20:01:02 2026 GMT
Not After : May 13 20:01:02 2026 GMT
Subject: CN=c2d2d35b0745d31ccb70e82e42892d89e178666c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:21:ce:aa:74:61:74:c3:a1:fd:8f:43:da:17:
04:2d:19:70:e5:e3:5e:fa:ae:90:1e:36:18:63:b9:
9a:6e:d0:cd:a7:5a:60:51:cf:4f:8d:21:e8:91:bc:
91:b9:37:d0:ad:7a:af:2d:fe:32:b9:8a:d8:c0:37:
00:29:49:fe:81:f9:38:b9:2c:c8:86:a0:e1:bb:eb:
ec:54:3b:9d:34:ff:75:16:bc:b2:5a:4c:13:05:49:
69:16:f9:f4:db:d6:18:48:63:ae:62:09:bb:05:2a:
b8:7e:66:2c:65:64:f4:dc:5c:dd:e4:15:7a:2f:c0:
8a:e7:78:a2:fa:d6:20:41:03:ed:fc:14:40:ee:31:
c1:b7:43:e7:47:26:90:d9:2c:58:e4:e5:1e:0d:23:
45:9c:de:45:ca:b2:4a:b3:b1:4b:1d:f9:e2:a6:2d:
33:ef:7d:ad:67:00:2c:51:c6:7a:ed:a1:c5:cd:3f:
29:2b:68:f9:a3:8e:89:ec:3c:74:a3:b7:7d:6f:25:
ec:e1:94:c6:16:75:25:0e:5d:99:cf:a0:90:31:fa:
03:9c:9c:dd:c2:2e:b1:09:10:88:9a:d8:6f:6c:d3:
a4:12:2f:28:69:b5:62:1e:3c:2c:be:93:0c:09:c8:
5a:e3:f0:44:a7:fd:bb:7b:6d:75:e7:0a:31:60:c9:
5a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D2:D3:5B:07:45:D3:1C:CB:70:E8:2E:42:89:2D:89:E1:78:66:6C
X509v3 Authority Key Identifier:
keyid:E4:22:3C:1F:1C:DA:19:B9:93:5B:48:C7:FD:CF:20:55:C2:96:20:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5CI8HxzaGbmTW0jH_c8gVcKWICg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6bf90c-97d5-44c6-acda-c370ad298ca3/1/5CI8HxzaGbmTW0jH_c8gVcKWICg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:0a:ee:9d:2c:ee:2e:b2:fc:df:1a:50:5b:9d:3d:08:65:e0:
85:4f:97:0a:e9:67:32:1b:21:23:66:b3:f2:45:47:20:8b:2a:
dc:a0:75:eb:a4:c9:55:3d:23:e5:47:1c:9a:78:ba:e6:a4:fc:
07:ec:77:d6:55:2c:bf:0a:8b:97:cd:99:ef:b0:0a:19:00:fd:
43:0d:ad:3b:88:76:08:39:7a:68:f6:33:c9:2b:36:b3:1c:73:
4e:e1:b2:4d:d9:45:d2:29:64:95:be:b7:19:fd:cf:10:ce:c7:
ea:bf:09:c8:16:79:3e:34:9a:26:a6:b0:cd:70:ee:36:27:97:
6d:19:14:5b:a8:7b:db:96:24:ad:ed:99:62:35:a8:18:86:f5:
77:72:1f:aa:c4:c1:c7:33:be:26:1c:8b:81:26:4a:f3:fd:ac:
47:3d:ff:a6:d9:b9:0c:f0:b6:10:28:99:f9:78:3f:0b:9a:84:
f2:ee:c3:19:e2:4f:8a:8e:b4:10:d7:cf:a0:dc:d4:ce:4f:8a:
f4:b1:65:76:cf:78:aa:c5:6e:74:93:49:63:63:94:7e:70:e6:
8f:88:05:f0:b2:24:4c:10:c4:4e:46:24:27:8a:71:b5:d6:10:
26:78:6b:7d:90:1a:ac:5a:5b:14:e9:a7:2f:69:3b:9c:9c:63:
84:75:01:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:44:12 2026 by rpki-client