Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
File: 5-aiybui7N1AdLMVN1mDXoI6uOQ.mft (raw, json)
Hash identifier: 2JwsmkQ/hw1gRBUIunAENZGXxkzqD3T/rHyMFXS3gCw=
Subject key identifier: 61:33:E2:2F:97:67:B9:0A:F1:AF:9A:17:96:EF:26:4D:F3:64:EE:28
Authority key identifier: E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4
Certificate issuer: /CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4
Certificate serial: 019D27047D211B8DA4C801DB16572975495D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
Manifest number: 0F66
Signing time: Wed 25 Mar 2026 22:01:38 +0000
Manifest this update: Wed 25 Mar 2026 22:01:38 +0000
Manifest next update: Thu 26 Mar 2026 22:01:38 +0000
Files and hashes: 1: 5-aiybui7N1AdLMVN1mDXoI6uOQ.crl (hash: pRfI9UFKAOiYeYDOY5kN4/EEqvCAmHRT+45pMXH56AU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:7d:21:1b:8d:a4:c8:01:db:16:57:29:75:49:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4
Validity
Not Before: Mar 25 22:01:38 2026 GMT
Not After : Mar 26 22:01:38 2026 GMT
Subject: CN=6133e22f9767b90af1af9a1796ef264df364ee28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:58:03:10:6d:c5:1f:00:f7:30:0d:37:78:c9:
aa:c9:38:33:35:81:ec:e4:36:2b:c9:f0:dc:2b:21:
9f:ec:32:1f:bd:36:25:b3:87:cd:21:47:6a:d9:3d:
7d:fc:04:e4:3b:9a:6a:a6:97:35:d0:e7:fc:52:1f:
d3:cb:1b:28:24:2e:66:e2:cb:b7:59:6b:e9:c0:d0:
2a:bd:7f:e2:72:45:c2:1b:19:2c:85:82:1b:6a:fe:
44:38:84:2c:44:4e:76:00:73:7f:f1:f0:0c:ed:30:
3a:b6:0a:87:57:81:b4:82:93:68:dd:99:61:bb:4b:
57:58:00:76:88:72:9b:23:a3:5e:fd:2a:4b:c6:82:
80:df:62:a4:4a:a6:75:70:22:99:95:ea:41:32:d1:
5d:7d:01:91:be:73:6a:87:d2:d1:3f:7a:8d:f9:20:
28:f0:9e:29:ba:55:66:23:0d:45:e0:8d:f6:a6:82:
09:f5:b6:46:25:f1:d9:01:d5:ae:4b:71:51:d4:a3:
c1:88:4d:35:56:16:8c:21:85:14:4e:96:eb:44:67:
07:50:c0:c3:53:11:94:c3:57:da:49:81:82:e8:e2:
31:7c:95:6f:7d:b1:6b:93:a4:2d:67:f8:4a:31:fe:
51:66:21:3a:db:7d:50:19:ba:53:d5:c4:ec:e0:f2:
10:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:33:E2:2F:97:67:B9:0A:F1:AF:9A:17:96:EF:26:4D:F3:64:EE:28
X509v3 Authority Key Identifier:
keyid:E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:48:d0:6e:fa:25:07:cb:07:ff:84:a4:12:4d:22:c4:4d:f5:
56:9b:56:5a:2f:66:22:81:cf:3b:fa:3b:e8:88:21:10:63:58:
5c:93:58:86:4e:1e:4c:67:01:27:f7:32:80:24:6d:5f:73:d1:
ca:db:ed:19:20:2f:07:3e:22:4d:c9:ce:46:38:52:bd:bb:02:
58:f8:b2:8f:b1:36:f0:1b:9d:90:4c:ca:47:1e:0e:a0:80:42:
74:be:f1:a6:1c:97:1a:75:f1:52:57:77:29:7f:6e:82:94:e8:
e0:4b:50:ff:38:b4:51:42:2d:88:00:28:cc:a9:7c:8f:09:ab:
e3:b7:18:f8:e2:2b:74:e4:9d:40:34:59:bf:53:65:34:86:f9:
6f:0e:68:1d:aa:34:56:14:c2:60:e6:75:b5:cb:a4:0a:73:bc:
40:57:82:6e:2d:a7:34:5f:33:d8:c1:eb:cb:9e:ef:4b:c4:08:
31:c8:b0:0d:77:6f:12:f6:cb:72:95:be:a6:06:9f:b3:a8:ae:
7a:84:57:55:74:a8:0c:96:e4:cd:a3:3f:42:61:6a:6c:e7:da:
2b:94:48:05:68:3d:1b:8d:dc:80:f9:8f:ba:10:ce:b4:e4:f6:
49:df:f2:97:32:cb:0d:6f:bc:13:92:d1:9d:03:10:d8:4d:12:
7c:f5:cb:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:57:01 2026 by rpki-client