Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
File: 5KnudPLZhMiKs7ma5x0LfHuvgVA.mft (raw, json)
Hash identifier: KApBB9/HUCY5rz5Aa+Xl/GMrpPANNsqRh4VLMQKAjRs=
Subject key identifier: 8F:38:A7:E0:79:8A:37:E3:A3:ED:45:7E:1A:02:91:28:16:A6:17:E9
Authority key identifier: E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
Certificate issuer: /CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Certificate serial: 019E1DC79B7AA7D2560E87A2DFBFC08E78E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
Manifest number: 1908
Signing time: Tue 12 May 2026 20:01:21 +0000
Manifest this update: Tue 12 May 2026 20:01:21 +0000
Manifest next update: Wed 13 May 2026 20:01:21 +0000
Files and hashes: 1: 5KnudPLZhMiKs7ma5x0LfHuvgVA.crl (hash: qDnpA0LH8CGG3VxWY8sIKJyK4iDr5w1wBStqFxPIM/k=)
2: thh1OM4lsFyzTf1SS98D2NKoCSE.roa (hash: oxxghEjHibaYZKGUuvnL5JvUvMs1tKy3he9xg0XR7pU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:9b:7a:a7:d2:56:0e:87:a2:df:bf:c0:8e:78:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9ee74f2d984c88ab3b99ae71d0b7c7baf8150
Validity
Not Before: May 12 20:01:21 2026 GMT
Not After : May 13 20:01:21 2026 GMT
Subject: CN=8f38a7e0798a37e3a3ed457e1a02912816a617e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cc:0b:c3:d8:d8:4e:6d:7f:5e:18:8b:72:c5:
68:8d:6b:d4:11:37:94:06:86:ff:68:ff:ee:51:a3:
8e:c6:34:6e:d6:3c:af:d8:f4:ad:e8:fb:8d:22:74:
34:fa:79:a3:f0:05:dd:7a:8d:c3:0d:d0:7d:4e:80:
3e:ba:8e:ee:33:72:26:58:ce:3f:10:3b:87:4c:ea:
1b:45:0c:39:73:22:2e:26:3e:14:8e:8c:49:0f:23:
ea:04:d9:cd:e2:03:2d:62:cb:1d:da:eb:af:b3:fc:
42:df:25:94:ca:9a:2c:61:2e:ff:70:31:97:d7:43:
ed:03:57:d5:7d:b2:93:07:c0:57:f6:1e:21:2f:31:
2e:68:d1:d6:60:7b:9a:81:dd:16:3e:0d:1d:85:cf:
3b:c5:41:ab:be:03:47:e8:6e:99:9a:db:21:ee:7f:
c5:60:b7:c3:ab:cb:6d:74:4e:bb:85:e2:07:10:88:
a6:38:48:d8:35:67:93:b9:06:87:9e:55:26:74:73:
e1:f0:72:52:04:33:71:ff:3e:31:b1:1e:0b:be:af:
16:77:12:8b:7e:34:c8:33:4f:7b:0a:0e:68:d8:61:
c9:2a:c5:09:bd:1e:bf:d4:d9:a3:58:f6:3a:70:16:
b6:a5:98:06:1e:d5:b5:09:0a:ea:ce:85:0c:47:30:
e6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:38:A7:E0:79:8A:37:E3:A3:ED:45:7E:1A:02:91:28:16:A6:17:E9
X509v3 Authority Key Identifier:
keyid:E4:A9:EE:74:F2:D9:84:C8:8A:B3:B9:9A:E7:1D:0B:7C:7B:AF:81:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5KnudPLZhMiKs7ma5x0LfHuvgVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/eadc95-daaf-4776-9be8-d2c0be448561/1/5KnudPLZhMiKs7ma5x0LfHuvgVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:28:89:cf:48:0c:29:a8:50:8a:28:8b:1e:b1:b5:3e:47:44:
e3:ac:81:10:db:47:a8:06:ee:2c:9f:76:9c:98:6c:a7:79:a2:
b8:6e:75:bd:a2:d2:4e:c7:f4:19:c9:22:d7:07:52:9c:d9:5c:
e7:81:36:86:81:c1:08:2a:62:24:d2:46:33:2c:c1:2e:df:36:
4c:a0:c8:c8:a2:ad:0d:9c:1c:fc:c4:f5:97:75:5f:8e:80:e4:
16:21:42:f2:7c:92:8e:b4:41:8e:33:f2:df:07:e0:51:ae:a5:
a3:90:f1:7d:7e:bb:3e:b7:a2:d1:7e:b8:24:28:c9:f2:d5:67:
8f:5f:b5:96:81:1a:f9:09:35:08:85:8b:47:2f:d2:55:6d:b4:
22:9e:e8:b5:65:c4:7a:87:cd:9f:e2:d1:70:ba:4d:8b:60:94:
37:d7:e3:6a:84:3e:7d:36:0e:e0:1f:e6:12:e5:0c:10:30:c6:
a5:9d:d2:86:ec:18:47:c4:c6:01:dd:9f:a7:8c:49:9c:2e:8f:
02:6b:1e:fb:1b:d7:95:9b:d6:d7:96:f0:2e:25:4f:f4:b1:55:
39:2e:b3:8a:d9:3e:c0:89:05:8c:00:0c:cc:1a:0e:55:a6:6c:
15:0f:4c:ae:6e:6d:fd:58:7b:22:2e:87:ae:13:b8:c3:45:cc:
9a:3a:b8:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:15:56 2026 by rpki-client