Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
File: 5PFY7_xrOIKiWQweaQasoQjhjsI.mft (raw, json)
Hash identifier: wxFu/B2AayGlau71Y5Wbqkt3MGTyugAAxHbVmCrm1Ko=
Subject key identifier: B5:4B:E1:51:28:D6:3D:9F:5A:C8:F9:91:3B:EA:1E:58:9B:A5:0B:0D
Authority key identifier: E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2
Certificate issuer: /CN=e4f158effc6b3882a2590c1e6906aca108e18ec2
Certificate serial: 019D2A045297D51102A1A93B92515A26DFDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
Manifest number: 0E8F
Signing time: Thu 26 Mar 2026 12:00:19 +0000
Manifest this update: Thu 26 Mar 2026 12:00:19 +0000
Manifest next update: Fri 27 Mar 2026 12:00:19 +0000
Files and hashes: 1: 5PFY7_xrOIKiWQweaQasoQjhjsI.crl (hash: t1AbwVUhu8kUe9g4QD0m1jPPUBb8rPK/KZnsTBHVUt0=)
2: FWnshijOb2oWucJC3yydoFuicl8.roa (hash: 2lTRHLJOIG5W8kGboAw1P9Vclv6xoLbOBwTEH/U1Buo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 12:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:52:97:d5:11:02:a1:a9:3b:92:51:5a:26:df:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f158effc6b3882a2590c1e6906aca108e18ec2
Validity
Not Before: Mar 26 12:00:19 2026 GMT
Not After : Mar 27 12:00:19 2026 GMT
Subject: CN=b54be15128d63d9f5ac8f9913bea1e589ba50b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c3:c8:2a:f7:c0:23:e5:64:d9:cc:5d:88:d2:
00:11:d5:f0:e5:61:d9:19:f7:4c:5b:d7:91:9b:73:
b4:89:42:96:c1:91:94:6b:3a:26:d2:53:c9:b1:0e:
39:d2:f0:10:09:f0:ad:a5:4c:3c:7f:97:1f:36:49:
22:b7:a0:a1:44:dc:bb:4c:63:5e:19:d0:4d:10:66:
c9:69:51:b4:1d:bf:2a:0c:5a:b7:a2:c9:63:c3:07:
38:37:0a:3a:3a:f9:df:5f:c9:e8:ef:d4:85:6c:83:
de:46:2e:35:94:e7:4b:74:fb:11:f4:37:65:f8:9e:
f4:5c:a8:55:00:ef:af:c6:30:52:a0:55:ec:f4:bd:
28:e2:cd:a5:09:b4:76:f9:28:4b:e3:26:cc:19:5d:
a3:1a:72:b5:4b:49:67:a0:ac:e3:8e:02:06:aa:75:
35:03:be:39:3a:f9:c4:6a:47:3b:ed:ca:54:41:2d:
db:08:b8:e2:06:40:d8:ff:4d:0d:b9:d7:d3:03:2d:
33:04:40:e5:4f:ec:5c:87:7f:83:db:8f:1a:23:19:
0c:cd:c9:df:49:9c:8e:8e:e1:0e:40:08:45:b8:52:
d0:e3:df:4c:cd:13:3e:d2:f7:e5:28:d9:fb:da:83:
64:96:9c:2e:f5:03:b8:53:51:f3:74:85:0a:cd:45:
51:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:4B:E1:51:28:D6:3D:9F:5A:C8:F9:91:3B:EA:1E:58:9B:A5:0B:0D
X509v3 Authority Key Identifier:
keyid:E4:F1:58:EF:FC:6B:38:82:A2:59:0C:1E:69:06:AC:A1:08:E1:8E:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PFY7_xrOIKiWQweaQasoQjhjsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/83c00e-f414-489d-9470-c693249651d5/1/5PFY7_xrOIKiWQweaQasoQjhjsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:5c:af:6f:e9:eb:2b:f7:0d:f5:f1:bf:c2:77:82:6f:fa:b5:
90:bb:4f:5c:75:58:da:7e:44:8a:e2:0d:80:72:a4:e4:e5:7a:
1a:6f:8b:14:21:93:f9:35:45:69:fb:e9:aa:48:ae:57:b2:df:
0e:a5:7e:72:cf:9d:93:40:f6:4b:fc:86:31:4e:76:95:cc:f1:
1f:b6:3f:04:16:fd:3f:db:2b:48:32:1e:05:01:ed:65:e3:ce:
8d:45:52:81:3a:f2:76:d3:03:d9:06:18:cd:3f:af:a7:1c:ee:
10:35:21:1b:fe:a5:6e:2e:af:97:11:a4:87:81:d2:c0:af:d6:
d8:d6:50:3b:5e:40:f7:10:0f:ef:af:55:1d:80:77:1d:56:dd:
e6:06:03:51:1f:9a:1c:9d:79:1f:e4:94:6d:1e:6b:b8:f9:6f:
aa:26:76:b8:a2:c4:a1:1c:cf:95:91:c3:0e:d5:9b:aa:18:d6:
b7:c1:6f:d6:58:7d:51:ca:4a:c6:17:45:6c:2d:32:27:cf:df:
d6:34:ad:8c:a1:06:85:5b:5b:13:2c:b8:5f:c7:ce:e7:51:0a:
24:d3:e6:19:a7:c6:a1:36:e7:88:c5:db:2c:f1:e9:9a:8b:04:
17:3f:49:ff:db:44:b3:b8:10:bb:be:ad:e8:46:7b:ff:ac:e8:
f5:d4:2e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:45:27 2026 by rpki-client