Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
File: 5rtLno321mTvy3e0EEFcg0phd4I.mft (raw, json)
Hash identifier: eBTfx2FYsa9V7OhbqolTAOIeGcc9PpaaABjZ/VBt4Bk=
Subject key identifier: 34:C7:94:56:00:62:5E:91:D9:02:CD:02:8C:04:7C:A3:23:B6:AE:48
Authority key identifier: E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82
Certificate issuer: /CN=e6bb4b9e8df6d664efcb77b410415c834a617782
Certificate serial: 019D2961B8FF0247DEB8F2F6BB856F37D2EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
Manifest number: 0672
Signing time: Thu 26 Mar 2026 09:02:43 +0000
Manifest this update: Thu 26 Mar 2026 09:02:43 +0000
Manifest next update: Fri 27 Mar 2026 09:02:43 +0000
Files and hashes: 1: 5rtLno321mTvy3e0EEFcg0phd4I.crl (hash: /vCkEKsNFZY3rcWJgdV+QUbbNcKkkgIM9J+AW3HzMKE=)
2: Q92n5As_StLfCEOsCZRxLPjQigk.roa (hash: m0A5cImf1wfkQyI07Q9zPZS2LIiSLajm2W221r5jirk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:b8:ff:02:47:de:b8:f2:f6:bb:85:6f:37:d2:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6bb4b9e8df6d664efcb77b410415c834a617782
Validity
Not Before: Mar 26 09:02:43 2026 GMT
Not After : Mar 27 09:02:43 2026 GMT
Subject: CN=34c7945600625e91d902cd028c047ca323b6ae48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cb:ab:3c:5a:8a:f7:9e:22:a4:ab:62:8b:d1:
c8:36:e9:49:f2:d2:c0:d4:c9:fe:e4:8c:5c:55:d8:
df:d9:a5:f4:a2:a7:af:6f:9e:8a:25:57:4b:b8:ae:
74:d1:d1:b0:fb:f0:7d:25:f1:81:54:14:c4:74:47:
7e:7c:cc:a8:bc:85:c6:59:6b:7e:68:3e:e5:b3:76:
5d:05:51:93:52:d8:10:e8:71:d1:d9:35:86:ee:a0:
87:10:dd:85:58:cd:73:84:89:8a:23:81:e5:bc:12:
ce:cf:66:34:d5:53:38:2f:3f:23:a9:37:61:f7:be:
ab:ab:cd:b5:6b:91:36:ec:ef:1b:c0:06:af:b3:ed:
ce:fb:07:f8:ed:02:3e:03:3d:32:d7:71:79:48:dc:
aa:3b:01:33:68:99:01:2b:fc:e7:fc:67:8b:32:51:
a9:11:b8:ae:1c:b6:00:fb:60:79:ae:fa:68:9f:94:
40:fc:b4:fa:b2:ad:32:cf:16:d3:bf:62:48:a0:76:
eb:9e:f8:e0:7f:98:42:ae:d0:85:e6:96:19:b9:fa:
e7:97:ed:6d:b8:41:90:83:1c:d9:76:d1:d8:94:23:
0c:6d:71:33:2d:27:5f:33:e6:41:0c:7b:c1:3b:a1:
42:0d:47:6b:1e:b2:2f:d5:6e:2f:40:dd:c5:15:58:
77:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C7:94:56:00:62:5E:91:D9:02:CD:02:8C:04:7C:A3:23:B6:AE:48
X509v3 Authority Key Identifier:
keyid:E6:BB:4B:9E:8D:F6:D6:64:EF:CB:77:B4:10:41:5C:83:4A:61:77:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5rtLno321mTvy3e0EEFcg0phd4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5ca07a-b242-4144-a264-7d547ec84114/1/5rtLno321mTvy3e0EEFcg0phd4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:b4:e8:06:af:34:51:f4:2a:c3:37:55:da:bb:9d:b9:e8:1c:
90:c3:f1:d5:8d:5c:0a:57:b8:1a:94:5f:62:5d:d5:fd:7b:f4:
6f:91:ba:d8:bc:8f:e7:44:f9:ea:29:78:8c:a2:7f:96:e6:4f:
10:90:27:87:17:e2:c9:1d:eb:de:83:20:f8:88:11:f9:92:55:
81:68:19:35:64:7d:39:1b:46:74:c0:48:fb:7f:ed:5c:ec:e8:
72:aa:dc:e5:af:1e:30:16:41:e9:57:05:ea:69:f8:6b:b6:7d:
90:b2:cd:8c:a4:eb:f2:04:41:31:85:7a:82:08:d7:bc:c9:04:
e5:61:ab:a0:f0:cf:96:f1:0b:e8:a2:1e:b5:69:d2:b8:aa:9b:
43:5c:a1:56:69:75:fd:35:67:01:76:61:51:b9:1f:01:3e:05:
4f:3f:78:98:fc:d3:b6:1f:af:84:b3:35:eb:ed:44:0b:1e:84:
20:2f:af:3b:64:12:66:20:cf:12:63:c5:37:f2:21:1a:c2:e1:
eb:de:49:b7:9c:9c:d0:ff:25:8d:54:7c:60:82:2b:aa:8a:1c:
03:67:ed:05:1d:7c:0e:64:f0:d5:5d:28:08:16:cf:16:fd:17:
de:c0:5d:c5:25:60:2c:bd:e9:a3:06:ac:37:eb:59:20:82:44:
00:b9:3f:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pYbj/AkfeuPL2u4VvN9LvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2YmI0YjllOGRmNmQ2NjRlZmNiNzdiNDEwNDE1YzgzNGE2
MTc3ODIwHhcNMjYwMzI2MDkwMjQzWhcNMjYwMzI3MDkwMjQzWjAzMTEwLwYDVQQD
EygzNGM3OTQ1NjAwNjI1ZTkxZDkwMmNkMDI4YzA0N2NhMzIzYjZhZTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycurPFqK954ipKtii9HINulJ8tLA
1Mn+5IxcVdjf2aX0oqevb56KJVdLuK500dGw+/B9JfGBVBTEdEd+fMyovIXGWWt+
aD7ls3ZdBVGTUtgQ6HHR2TWG7qCHEN2FWM1zhImKI4HlvBLOz2Y01VM4Lz8jqTdh
976rq821a5E27O8bwAavs+3O+wf47QI+Az0y13F5SNyqOwEzaJkBK/zn/GeLMlGp
EbiuHLYA+2B5rvpon5RA/LT6sq0yzxbTv2JIoHbrnvjgf5hCrtCF5pYZufrnl+1t
uEGQgxzZdtHYlCMMbXEzLSdfM+ZBDHvBO6FCDUdrHrIv1W4vQN3FFVh3MwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDTHlFYAYl6R2QLNAowEfKMjtq5IMB8GA1UdIwQY
MBaAFOa7S56N9tZk78t3tBBBXINKYXeCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXJ0TG5vMzIxbVR2eTNlMEVFRmNnMHBoZDRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC81Y2EwN2EtYjI0Mi00MTQ0LWEyNjQt
N2Q1NDdlYzg0MTE0LzEvNXJ0TG5vMzIxbVR2eTNlMEVFRmNnMHBoZDRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC81Y2EwN2EtYjI0Mi00MTQ0LWEyNjQtN2Q1NDdlYzg0MTE0
LzEvNXJ0TG5vMzIxbVR2eTNlMEVFRmNnMHBoZDRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUbToBq80
UfQqwzdV2ruduegckMPx1Y1cCle4GpRfYl3V/Xv0b5G62LyP50T56il4jKJ/luZP
EJAnhxfiyR3r3oMg+IgR+ZJVgWgZNWR9ORtGdMBI+3/tXOzocqrc5a8eMBZB6VcF
6mn4a7Z9kLLNjKTr8gRBMYV6ggjXvMkE5WGroPDPlvEL6KIetWnSuKqbQ1yhVml1
/TVnAXZhUbkfAT4FTz94mPzTth+vhLM16+1ECx6EIC+vO2QSZiDPEmPFN/IhGsLh
695Jt5yc0P8ljVR8YIIrqoocA2ftBR18DmTw1V0oCBbPFv0X3sBdxSVgLL3powas
N+tZIIJEALk/wA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 17:20:04 2026 by rpki-client