Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
File: 5XFody33TCeZnVM4leGr7c6XJjw.mft (raw, json)
Hash identifier: ryLKbKW6fvUPEJyTy34OerUImKj/n7uDaUKfl3jSrmA=
Subject key identifier: DD:4D:FE:F8:A0:D0:A8:04:B9:F3:F5:45:64:84:C0:93:38:88:52:0F
Authority key identifier: E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C
Certificate issuer: /CN=e57168772df74c27999d533895e1abedce97263c
Certificate serial: 019D25F217D6863A3CC8F516FC32EC618FB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
Manifest number: 03DE
Signing time: Wed 25 Mar 2026 17:01:55 +0000
Manifest this update: Wed 25 Mar 2026 17:01:55 +0000
Manifest next update: Thu 26 Mar 2026 17:01:55 +0000
Files and hashes: 1: 5XFody33TCeZnVM4leGr7c6XJjw.crl (hash: z9ElmVsiMTUEBxZODzNDaogFqO/UkAqaK/0YuJ7CbbM=)
2: ERzn62B5dYEPxu7KHY3hiO-jSSA.roa (hash: bxWjkThkkMI0LG+sL2lWtHw/SuStONE33GoZCV4Bk74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f2:17:d6:86:3a:3c:c8:f5:16:fc:32:ec:61:8f:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e57168772df74c27999d533895e1abedce97263c
Validity
Not Before: Mar 25 17:01:55 2026 GMT
Not After : Mar 26 17:01:55 2026 GMT
Subject: CN=dd4dfef8a0d0a804b9f3f5456484c0933888520f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7a:a9:a3:bf:6d:8d:b0:f4:a8:27:f5:06:16:
2c:d0:87:9b:e1:5c:ba:84:91:19:3d:f9:5e:32:95:
37:90:5c:8a:b9:9c:39:c6:d7:f9:84:f2:28:10:d7:
83:94:25:20:87:bb:49:39:46:33:76:80:e8:ed:9c:
5d:90:1a:62:74:a4:89:db:63:5a:e1:05:da:f3:94:
d3:cc:53:7b:d1:6a:10:f2:3a:f5:80:03:41:6b:c0:
86:b7:9d:6d:c1:c6:e2:a5:bb:72:2c:4d:5b:3e:92:
99:9f:00:ec:47:78:4c:9a:a9:dd:a9:a1:1b:bd:e5:
4a:a8:0c:bc:ec:05:2f:2b:21:62:5a:ff:3b:37:8f:
ee:32:51:e0:80:9b:f0:88:82:79:98:49:1b:4d:94:
c9:7d:98:8c:ce:dd:01:84:98:84:52:7c:49:65:ef:
cf:8a:58:c7:02:05:9f:71:54:97:4b:2a:de:f9:5a:
98:97:f9:a9:cf:98:65:f5:e5:36:ba:e7:d8:c0:a4:
7f:b7:cd:14:dc:29:fb:a6:1b:dd:c2:2e:8d:74:bd:
47:0b:8a:1c:6d:64:9c:f7:e9:b2:7f:cf:83:48:0f:
36:b6:66:b9:f5:12:0e:72:f0:a2:1b:7d:44:d2:ed:
cf:d3:06:75:6c:27:c8:17:a6:f2:bd:9c:00:ad:26:
f9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:4D:FE:F8:A0:D0:A8:04:B9:F3:F5:45:64:84:C0:93:38:88:52:0F
X509v3 Authority Key Identifier:
keyid:E5:71:68:77:2D:F7:4C:27:99:9D:53:38:95:E1:AB:ED:CE:97:26:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5XFody33TCeZnVM4leGr7c6XJjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/67c087-8b73-4bc8-bfeb-b3dff3a91102/1/5XFody33TCeZnVM4leGr7c6XJjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:45:3b:c6:fb:60:13:24:84:15:8f:3b:a2:91:fd:a0:f5:3a:
86:16:07:45:fc:e6:38:c6:fd:84:f1:d4:85:bd:03:d5:a0:06:
74:d1:c4:11:77:de:58:cd:89:15:5c:99:b0:12:09:9e:53:95:
d8:97:e5:b3:03:31:bd:ff:ce:39:8f:3c:e5:7e:df:77:7b:a9:
1e:54:d3:80:7b:14:db:be:04:f9:26:a9:8d:e5:b1:db:9a:61:
6b:3d:cd:df:c6:0a:13:2c:3a:db:18:d0:ef:42:65:71:04:00:
b2:18:da:5f:33:34:cf:e0:ac:fa:1b:4e:84:a1:d6:00:5c:a8:
80:d8:df:9b:a8:79:30:05:9f:66:4a:54:08:14:86:63:87:63:
64:fc:96:6b:2e:ab:f5:3b:d3:7c:9a:16:c7:7a:36:39:8f:8f:
06:70:9c:0a:3f:24:96:8d:40:3e:19:28:92:56:36:31:d2:6b:
59:2c:4d:ca:d7:ad:7c:0f:8b:3d:73:1f:4e:1b:5a:7b:ef:43:
e8:d3:71:62:92:b6:0c:8f:6f:f5:cc:c0:d4:4c:17:3f:e5:1b:
12:04:f7:f3:da:2e:b4:48:5a:c5:bb:ab:a2:4c:43:b6:58:46:
57:d3:13:ee:9b:8a:3d:50:55:04:fe:67:1b:f1:9d:ed:7f:10:
24:52:74:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:30:14 2026 by rpki-client