Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
File: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft (raw, json)
Hash identifier: ucmCGZukMqyfeKrAQ6U7GBS2K+zH3PAzhZrBK3yscXk=
Subject key identifier: 7B:57:E6:E0:F6:B7:A6:B7:98:B7:84:1C:B1:BB:AB:F1:87:91:DF:91
Authority key identifier: E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
Certificate issuer: /CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Certificate serial: 019E1D90DB45AE846CB7CF3ABED1AB0D735C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
Manifest number: 0DBB
Signing time: Tue 12 May 2026 19:01:32 +0000
Manifest this update: Tue 12 May 2026 19:01:32 +0000
Manifest next update: Wed 13 May 2026 19:01:32 +0000
Files and hashes: 1: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl (hash: 7hww67Ytru3RR/fxtlyAXSX7st+1vfrOvUr2AAADuSc=)
2: 5IiWlb3vHBWlCp6tIVca2yVQHto.roa (hash: STYN3zexlvKSLuiZ3ZMU8hJ7HbklvtNxc22+hhIPD74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:db:45:ae:84:6c:b7:cf:3a:be:d1:ab:0d:73:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e47406f4982b61824c8fd44b81ede0a99fc724e0
Validity
Not Before: May 12 19:01:32 2026 GMT
Not After : May 13 19:01:32 2026 GMT
Subject: CN=7b57e6e0f6b7a6b798b7841cb1bbabf18791df91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b8:28:13:0e:be:74:e1:a8:2c:0c:9f:08:19:
d5:fb:62:b3:98:87:72:5a:b7:42:67:4c:07:ff:88:
a1:6a:0d:e2:50:73:1e:26:05:a2:09:3d:c0:83:36:
41:60:fd:bb:c6:0e:3c:ff:1e:8d:9e:f0:ae:38:2d:
de:c7:a2:27:03:b7:b1:96:29:d2:3e:80:a2:c7:1a:
5b:20:16:1d:08:9b:34:41:d6:17:39:95:a1:5b:65:
0f:25:cf:7a:74:8e:30:72:38:6f:90:68:f5:a1:8c:
78:f1:fb:5b:b3:30:07:95:eb:c5:9b:8c:47:67:bb:
2c:0c:07:39:55:73:da:a2:4f:15:de:96:54:c7:1f:
00:e2:fb:eb:29:d2:e7:1e:62:01:51:0f:7a:63:6c:
2e:39:8b:37:4c:53:2e:06:f3:3b:27:3f:09:09:0f:
13:ab:22:0b:f8:e8:20:41:5f:c2:34:aa:c0:73:f6:
58:eb:81:85:4e:1d:fc:86:87:d5:d5:8f:67:9f:9f:
d9:d9:7c:a8:87:98:e2:45:39:71:73:58:b7:8f:45:
fc:91:54:c6:f8:da:a0:e1:6a:f0:3c:cd:8f:d6:fc:
cc:4c:22:96:af:32:96:cd:39:4a:83:9d:75:45:b4:
14:a3:70:18:7e:f7:e3:29:7b:10:0e:b3:6e:87:4e:
26:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:57:E6:E0:F6:B7:A6:B7:98:B7:84:1C:B1:BB:AB:F1:87:91:DF:91
X509v3 Authority Key Identifier:
keyid:E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:0f:6b:6b:27:3d:b1:0d:f6:f4:50:fb:92:eb:5c:5e:ef:d0:
b2:db:f2:cb:66:8e:50:5c:38:49:45:d5:18:a5:41:f7:a5:74:
f7:ba:e7:60:b6:fd:69:a1:0e:a8:17:04:e5:4f:43:0f:dc:b2:
bf:fd:ec:5b:9c:d9:8e:12:a5:eb:2c:1e:5a:e5:e2:eb:4e:cd:
74:b4:c8:77:f0:f3:2a:ac:c9:56:d4:47:b8:79:5a:b2:35:f9:
d7:e2:d0:a1:dc:c3:31:6e:de:d8:40:a4:41:46:6a:66:f3:8a:
eb:50:ba:cd:ea:d3:89:ff:fa:d4:d0:c8:ab:10:5c:da:00:9f:
7d:00:db:4c:68:94:aa:71:3c:39:f7:32:64:c2:2c:a1:02:4a:
8c:14:5e:22:1a:a9:80:3b:37:47:1d:8e:f1:57:79:fd:08:66:
06:ad:5b:d0:54:88:53:c5:91:7c:b9:91:67:cb:35:12:09:0e:
6f:2c:97:ad:cd:31:1f:ec:86:cd:5e:7a:e5:8c:d0:03:f4:d0:
de:57:2f:de:a3:ff:0b:a3:84:d5:bd:df:47:ab:e4:9a:e4:90:
5a:9e:85:18:6d:84:5c:b0:e7:cc:0f:01:22:58:d3:e6:c5:18:
b1:a8:49:58:c3:be:bf:50:c2:d8:e3:d0:83:59:ad:5d:78:72:
33:c7:de:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:31:49 2026 by rpki-client