Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
File: 5XFody33TCeZnVM4leGr7c6XJjw.mft (raw, json)
Hash identifier: IOeAW/PMSRJMPcqQA5atIJR5ptVfRjcZobxRmLQlR+s=
Subject key identifier: 95:9B:5D:86:BF:F9:BB:5D:FE:33:49:4C:1B:37:C9:99:B6:30:C4:AF
Authority key identifier: E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C
Certificate issuer: /CN=e57168772df74c27999d533895e1abedce97263c
Certificate serial: 019E1D23715C06302A9B339C1A1B508B2995
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
Manifest number: 045E
Signing time: Tue 12 May 2026 17:02:02 +0000
Manifest this update: Tue 12 May 2026 17:02:02 +0000
Manifest next update: Wed 13 May 2026 17:02:02 +0000
Files and hashes: 1: 5XFody33TCeZnVM4leGr7c6XJjw.crl (hash: yR3Vc8rLm3t6Vb2D2+78C0yWE6BOS2T6iykHl2QoHqc=)
2: ERzn62B5dYEPxu7KHY3hiO-jSSA.roa (hash: bxWjkThkkMI0LG+sL2lWtHw/SuStONE33GoZCV4Bk74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:71:5c:06:30:2a:9b:33:9c:1a:1b:50:8b:29:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e57168772df74c27999d533895e1abedce97263c
Validity
Not Before: May 12 17:02:02 2026 GMT
Not After : May 13 17:02:02 2026 GMT
Subject: CN=959b5d86bff9bb5dfe33494c1b37c999b630c4af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:87:f6:c1:1d:61:66:ec:da:29:69:05:ec:f6:
b8:a9:95:26:7a:56:ed:7d:fa:c1:46:f8:76:69:53:
b4:9f:ce:a5:0c:fe:81:03:4f:b3:0f:46:04:0b:15:
54:65:e8:8f:2a:67:91:53:4a:97:fc:88:e8:44:63:
76:02:b0:97:58:cc:42:2e:7f:a6:c3:97:75:4f:0c:
09:9d:3c:95:9f:2d:49:dd:a8:46:46:3b:b5:59:5a:
92:a8:2a:5a:2b:45:fe:da:4c:eb:32:08:88:38:47:
d5:e0:fc:5c:0f:26:20:f6:ab:ca:ae:74:79:9c:58:
8e:db:a1:6d:33:a0:4c:af:63:bd:64:e2:d5:68:6e:
8d:c4:d7:a4:6a:70:a5:40:57:6a:83:60:89:0f:91:
09:b4:ae:da:8c:75:b2:84:08:b5:99:5b:71:79:a9:
97:6d:07:d3:e3:56:c0:46:5a:ac:38:76:e9:81:01:
85:b7:fb:b0:e1:ec:b2:11:b0:9f:e0:51:e6:c4:80:
4c:e7:0f:35:5a:55:e0:00:82:19:5c:af:38:8f:96:
54:d6:a9:9b:ad:1d:80:af:3e:4a:5a:73:9a:f0:28:
9f:04:53:cf:0c:d1:1d:e6:d3:f7:35:ba:9c:8b:00:
fd:7f:c5:ad:f2:5b:ae:f2:82:7c:6c:77:3f:d7:7c:
d1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:9B:5D:86:BF:F9:BB:5D:FE:33:49:4C:1B:37:C9:99:B6:30:C4:AF
X509v3 Authority Key Identifier:
keyid:E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:8f:0d:de:a2:e9:d8:85:89:75:85:04:a3:72:61:cd:bc:e3:
79:47:87:7b:18:a8:73:38:00:46:5b:c8:98:c4:97:90:9f:a9:
c8:72:35:f2:e9:a0:51:f5:f4:38:97:10:bd:4f:b2:ca:f6:12:
ee:cb:c6:8e:a7:4d:0a:dc:4e:43:6c:e0:55:45:7b:80:5b:7c:
1a:67:b3:7e:1c:89:b7:04:12:68:f4:0f:f6:25:9f:5d:c7:46:
d0:76:d3:72:71:29:a3:54:47:5c:01:52:09:92:35:75:c8:e2:
dc:a7:5d:12:67:2a:22:bd:94:a9:c7:e2:8b:bf:3b:9b:d7:0c:
e2:98:e3:5d:40:2f:f2:36:ef:a5:6d:c4:6b:d8:47:13:8c:19:
91:3e:84:8c:13:f0:0f:a6:35:3c:e8:83:9c:86:a0:c1:1b:3b:
ea:26:70:82:6c:d8:c3:6e:93:fe:4e:3a:a9:f4:dd:7b:fe:41:
9f:17:e5:cf:d6:91:c5:8e:5e:ee:dc:a7:32:f2:e7:c2:e5:79:
63:e2:46:d6:6c:f2:ec:31:5d:d5:7c:4c:d0:31:27:be:e1:d7:
f8:7a:b1:6b:b6:76:9a:b7:ab:f3:f6:7e:0b:b0:b4:a7:94:0f:
b8:96:9f:83:6d:15:49:f2:c9:29:d1:51:7a:cd:5e:75:3e:3f:
dc:8e:b3:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:30:31 2026 by rpki-client