Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
File: 5KnudPLZhMiKs7ma5x0LfHuvgVA.mft (raw, json)
Hash identifier: KR95g5lKHKzD/CflJJU3r2ARHcuCbfrMpCOjvVeiR1I=
Subject key identifier: 2B:57:AA:75:5C:4C:58:3F:22:AA:06:8B:15:CA:69:57:FD:05:F1:90
Authority key identifier: E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
Certificate issuer: /CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Certificate serial: 019D2884D02B8CF5BA57ABDB91061998A70E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 05:01:25 +0000
Manifest this update: Thu 26 Mar 2026 05:01:25 +0000
Manifest next update: Fri 27 Mar 2026 05:01:25 +0000
Files and hashes: 1: 5KnudPLZhMiKs7ma5x0LfHuvgVA.crl (hash: VKq2zf6xQUiRm30JgUmGhnjql8wf4sOx51UznsUwvmc=)
2: thh1OM4lsFyzTf1SS98D2NKoCSE.roa (hash: oxxghEjHibaYZKGUuvnL5JvUvMs1tKy3he9xg0XR7pU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:d0:2b:8c:f5:ba:57:ab:db:91:06:19:98:a7:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Validity
Not Before: Mar 26 05:01:25 2026 GMT
Not After : Mar 27 05:01:25 2026 GMT
Subject: CN=2b57aa755c4c583f22aa068b15ca6957fd05f190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:47:87:74:a8:5a:98:03:41:f8:14:ab:75:58:
05:3c:e9:de:2c:70:e7:6d:1d:38:de:63:47:b6:23:
ad:90:29:a6:ad:f0:55:74:3b:84:a9:d1:53:74:1a:
ec:25:32:af:01:fd:85:e6:bf:60:e4:3c:77:56:81:
b0:5e:06:f3:cf:d9:61:5a:4b:0e:4b:f8:05:d5:ec:
d7:ac:ea:63:e3:d8:31:bd:48:98:33:24:9d:4f:aa:
0a:35:7b:84:dd:51:f8:22:6d:bc:bc:5b:e4:53:92:
42:ca:a7:d8:28:c3:f6:8f:e2:c7:74:8e:2f:bd:9b:
de:b1:c4:c1:5b:b6:de:27:c3:4f:cc:d1:5a:ff:41:
2c:6b:e6:ec:15:0d:67:1b:c6:32:54:0e:21:9c:82:
6e:8e:38:b5:ab:17:08:ac:02:50:13:f0:db:b7:c2:
cb:d3:11:5e:5f:65:86:be:6a:aa:ab:9f:72:e1:4b:
1d:78:52:5a:c4:c2:a1:55:2c:f2:3f:d5:83:f8:22:
0a:d1:dc:7e:42:2a:8d:fa:e1:b0:4e:6c:1b:f2:0b:
fd:87:71:35:47:32:3a:8b:a2:f2:f4:00:69:ea:05:
d1:01:ba:ba:50:db:d3:30:48:e6:b3:a9:43:07:8c:
1c:f4:ff:30:9c:cb:39:eb:bb:99:9b:88:19:62:70:
f5:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:57:AA:75:5C:4C:58:3F:22:AA:06:8B:15:CA:69:57:FD:05:F1:90
X509v3 Authority Key Identifier:
keyid:E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:3e:76:2a:55:0e:f1:ae:61:c8:06:de:c0:7b:16:36:b1:21:
5b:1b:85:0b:18:eb:ab:bd:d0:62:3a:c4:d4:0c:6b:6d:b6:9c:
65:00:e6:3d:d7:6e:e2:18:c3:05:3f:b3:f3:27:14:99:56:0e:
24:2e:3b:3f:56:c9:7c:c3:c5:e3:ec:c4:85:62:6e:b2:89:2b:
89:1a:4c:5e:8a:83:42:0e:c7:92:1c:69:a4:b4:e4:45:55:57:
c8:05:e2:8e:7f:73:f4:34:d4:d2:55:14:91:04:c9:a9:15:d2:
67:44:d4:9c:9a:2c:62:11:19:06:42:03:9e:eb:38:3e:19:d9:
37:58:82:ee:9f:47:a8:29:44:d0:9c:49:6c:84:a3:0a:61:a6:
77:fd:ef:d4:28:8a:09:92:75:36:91:c7:cc:9b:34:27:ab:1d:
55:db:91:b9:ec:5a:1d:6c:45:4f:01:15:2a:52:b2:3e:ba:45:
06:ad:59:a4:03:a3:ea:19:32:a0:a3:13:dd:eb:6c:c2:20:1b:
54:b8:dc:db:23:b0:b2:8c:d0:f5:8d:2c:24:57:71:90:f9:4a:
ee:dc:90:37:03:e0:ed:9e:93:ea:97:d2:39:5b:ca:df:1f:ca:
64:16:e1:fe:b5:7e:67:c7:7f:2d:58:3c:7b:01:f8:bf:41:57:
b0:9d:59:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:29:21 2026 by rpki-client