Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
File: 5PFY7_xrOIKiWQweaQasoQjhjsI.mft (raw, json)
Hash identifier: Mzwf5hOEu/vfO8cGQP7u0V2iFNpDXQtWp5J3WYRoy+s=
Subject key identifier: 6A:09:F6:0E:EB:5B:DE:D1:5E:FC:10:E7:C8:12:F3:2E:5B:3A:41:A6
Authority key identifier: E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2
Certificate issuer: /CN=e4f158effc6b3882a2590c1e6906aca108e18ec2
Certificate serial: 019E1D598C5418958DBFA26B25A4A0B1D6B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
Manifest number: 0F0D
Signing time: Tue 12 May 2026 18:01:08 +0000
Manifest this update: Tue 12 May 2026 18:01:08 +0000
Manifest next update: Wed 13 May 2026 18:01:08 +0000
Files and hashes: 1: 5PFY7_xrOIKiWQweaQasoQjhjsI.crl (hash: JozQPH8qWJVkhd7GZKVG98PxRjq3fkKyktXTUNaQss0=)
2: FWnshijOb2oWucJC3yydoFuicl8.roa (hash: 2lTRHLJOIG5W8kGboAw1P9Vclv6xoLbOBwTEH/U1Buo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:8c:54:18:95:8d:bf:a2:6b:25:a4:a0:b1:d6:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f158effc6b3882a2590c1e6906aca108e18ec2
Validity
Not Before: May 12 18:01:08 2026 GMT
Not After : May 13 18:01:08 2026 GMT
Subject: CN=6a09f60eeb5bded15efc10e7c812f32e5b3a41a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c8:03:57:e7:15:7d:ea:a8:00:05:aa:20:72:
dc:85:eb:d3:67:fe:b6:20:b8:13:b1:23:be:12:d6:
15:d5:53:af:f1:b2:ea:e3:72:b3:23:1d:3d:5d:15:
d8:08:5a:f9:05:5c:eb:25:ff:1f:a3:53:f9:ba:22:
a1:a9:c3:d7:32:91:7d:39:f8:a0:65:bf:61:42:47:
ca:68:d8:e4:41:00:07:ab:52:b8:85:75:f2:86:0f:
2d:e1:ae:ca:c6:9d:29:fb:87:78:54:db:94:05:98:
d0:f9:34:2e:71:74:81:7f:2d:0a:6b:91:1d:d9:ce:
55:15:b0:5d:53:59:2a:db:1b:cf:df:88:40:66:39:
d5:66:d3:f5:60:b3:ee:53:fb:06:eb:b3:e4:42:b8:
f6:62:db:eb:fc:41:3a:23:a3:d9:6a:74:a4:39:67:
71:d2:3d:b7:58:1b:ed:85:34:a6:cc:61:49:eb:58:
74:ab:c6:34:aa:55:24:2d:73:97:cf:ec:c4:72:25:
84:e5:61:ad:96:a2:66:c9:e2:ae:1b:b9:03:d8:07:
f6:74:d2:4c:a8:7f:f2:c4:ea:88:79:df:f1:48:d1:
ed:db:26:5b:12:21:22:48:a5:2f:46:62:dc:1c:45:
63:94:c3:02:cb:76:7d:33:b5:8f:99:1f:8f:26:a6:
35:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:09:F6:0E:EB:5B:DE:D1:5E:FC:10:E7:C8:12:F3:2E:5B:3A:41:A6
X509v3 Authority Key Identifier:
keyid:E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:05:c1:3f:7d:38:24:7d:d7:23:cd:4e:5b:e8:16:da:02:c3:
80:d5:35:c2:a0:7e:1a:c0:ed:09:fd:a8:91:65:cf:cd:7e:38:
df:ba:df:83:0e:a7:83:b3:b6:cf:a7:32:d3:24:e3:06:6e:35:
91:85:b3:16:09:4f:ec:4e:46:23:0d:1f:92:9f:6d:47:ae:c3:
75:30:1e:63:00:22:7e:05:c1:64:5b:62:fa:26:4a:fa:8b:e4:
e7:19:ab:63:cf:14:de:ef:2f:8a:e0:a7:d1:0c:5e:d1:c2:ee:
6b:ae:6d:f5:29:83:8e:e1:ba:81:07:1c:15:3e:f5:04:96:f3:
f5:d8:a2:9c:88:a7:ca:51:4b:f6:b6:dc:a3:d2:c1:ec:18:22:
9d:31:37:0b:f8:6f:90:d7:53:13:71:9d:80:ad:70:bb:0a:2d:
c5:f3:8a:80:22:42:58:ec:00:14:67:fe:dd:b6:86:2c:b0:46:
38:4c:6d:d0:06:b6:e7:38:44:ad:52:ae:a7:7e:a2:9b:16:23:
1a:95:f7:f4:5a:ef:3d:9a:6d:ac:c2:a6:7a:91:fd:7d:5e:5e:
c8:29:5f:26:dc:0f:83:10:cb:42:87:d7:bd:cb:d1:cc:8f:4f:
6a:46:51:d3:a1:17:bc:af:d5:ce:ce:77:2f:54:2b:7d:65:d1:
29:8c:cf:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:12:21 2026 by rpki-client