Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
File: 5UGkwVK194bWI9hcQUZSmc3aM4k.mft (raw, json)
Hash identifier: 01V/ZgYuUhF9ZDTjDKx0/Nqz8MFI+0f1K88LO+Ba2yg=
Subject key identifier: 4B:72:F0:B1:F1:82:8C:13:C0:21:F5:5E:9E:AB:50:48:F8:3F:FD:ED
Authority key identifier: E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89
Certificate issuer: /CN=e541a4c152b5f786d623d85c41465299cdda3389
Certificate serial: 019E1EA2FE8BCED22DF89827195638B6CCAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 00:00:58 +0000
Manifest this update: Wed 13 May 2026 00:00:58 +0000
Manifest next update: Thu 14 May 2026 00:00:58 +0000
Files and hashes: 1: 5UGkwVK194bWI9hcQUZSmc3aM4k.crl (hash: EfbZndhzNbqDr+HAx6uYnQaA0ZrX7wcyzyOa8oYsP5Y=)
2: Y53-K6eCcM2LGOvi8Fn2PE_O8Hs.roa (hash: epaNlilaUn33+8n2mw835ikIL/eJJhBznXtCVWydLWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:fe:8b:ce:d2:2d:f8:98:27:19:56:38:b6:cc:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e541a4c152b5f786d623d85c41465299cdda3389
Validity
Not Before: May 13 00:00:58 2026 GMT
Not After : May 14 00:00:58 2026 GMT
Subject: CN=4b72f0b1f1828c13c021f55e9eab5048f83ffded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a8:b0:78:98:7f:8d:13:f3:c8:1a:99:49:0e:
77:95:c6:23:0e:37:b6:7d:a9:90:65:34:3b:34:a2:
36:c4:de:18:22:5d:23:22:47:5a:ad:85:5f:41:44:
23:d7:bb:3d:85:be:e3:bd:5e:ad:cf:9e:68:fe:65:
72:c0:cc:d2:d4:b6:70:15:c4:ad:1a:98:5e:8e:53:
21:06:55:4d:6d:b9:2c:f1:79:27:4b:06:db:68:33:
9d:68:ed:f3:63:a6:8b:f6:81:33:b8:79:ec:10:4f:
62:eb:aa:a3:00:50:b7:86:98:1d:5f:3d:79:43:0c:
94:64:cb:4a:92:d8:1c:1b:2a:d8:ab:9c:84:f5:2c:
9f:10:d0:51:64:f5:3f:5f:0d:0a:fc:65:38:89:c5:
da:24:48:3f:47:71:09:c0:8c:b6:c3:0b:c8:8c:eb:
9d:54:7b:3f:56:5c:43:ba:ea:29:2e:9d:07:27:ac:
f8:b4:33:57:ca:8c:01:5d:50:3d:67:c7:fe:1c:ac:
bf:4d:ab:52:b9:26:ed:f3:2a:80:97:2d:17:6c:29:
a5:75:9d:15:03:aa:34:0d:91:50:26:bf:e7:5b:03:
79:8e:5b:60:94:83:7e:52:a0:e9:a9:07:61:83:8c:
0d:c6:80:b8:a3:5d:d6:8e:b6:67:64:c6:06:94:d9:
67:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:72:F0:B1:F1:82:8C:13:C0:21:F5:5E:9E:AB:50:48:F8:3F:FD:ED
X509v3 Authority Key Identifier:
keyid:E5:41:A4:C1:52:B5:F7:86:D6:23:D8:5C:41:46:52:99:CD:DA:33:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5UGkwVK194bWI9hcQUZSmc3aM4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/d71269-4b56-4572-a711-d84ecb2505c4/1/5UGkwVK194bWI9hcQUZSmc3aM4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:fe:e2:e6:4d:85:f5:f6:2e:05:de:3d:f3:52:61:2e:1c:e7:
b7:96:bf:c2:31:f7:89:34:d0:1f:dc:e4:4d:8d:55:9d:86:8c:
99:53:f8:05:5b:dc:1e:8f:e3:14:01:d6:6f:77:cc:bd:f1:67:
d4:2b:a2:6c:61:38:2e:0a:05:3f:34:9b:d4:20:af:95:46:1f:
d0:d0:6a:00:30:5f:1e:da:91:55:b6:4d:6f:fd:19:ee:61:04:
9d:8d:af:bc:37:49:64:a9:56:50:34:38:a1:f6:48:e1:9f:96:
57:09:be:5b:b2:09:5a:53:f8:8b:8c:b8:40:dd:62:f4:b3:db:
a0:9c:a0:5f:ef:06:88:e7:6b:34:0e:bf:e4:6a:b0:7d:63:77:
f8:04:04:81:39:e9:36:7b:d6:93:61:60:1f:fc:c3:52:3e:8f:
26:43:96:5e:47:26:92:86:7d:dc:a6:a1:3f:6b:b7:7b:79:ee:
9f:fe:50:3f:d7:3e:9f:f7:ac:06:93:e2:ed:19:f1:79:12:64:
c7:0f:81:24:7d:95:b9:34:97:80:7f:1a:7d:fa:29:e3:b7:79:
db:97:57:a5:07:6a:ed:90:10:7e:c0:3d:49:ce:51:b1:e7:3b:
ab:e5:f0:86:cd:03:c2:7a:0f:d6:3d:69:34:27:da:15:5b:c3:
46:ca:79:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eov6LztIt+JgnGVY4tsyrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1NDFhNGMxNTJiNWY3ODZkNjIzZDg1YzQxNDY1Mjk5Y2Rk
YTMzODkwHhcNMjYwNTEzMDAwMDU4WhcNMjYwNTE0MDAwMDU4WjAzMTEwLwYDVQQD
Eyg0YjcyZjBiMWYxODI4YzEzYzAyMWY1NWU5ZWFiNTA0OGY4M2ZmZGVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6iweJh/jRPzyBqZSQ53lcYjDje2
famQZTQ7NKI2xN4YIl0jIkdarYVfQUQj17s9hb7jvV6tz55o/mVywMzS1LZwFcSt
GphejlMhBlVNbbks8XknSwbbaDOdaO3zY6aL9oEzuHnsEE9i66qjAFC3hpgdXz15
QwyUZMtKktgcGyrYq5yE9SyfENBRZPU/Xw0K/GU4icXaJEg/R3EJwIy2wwvIjOud
VHs/VlxDuuopLp0HJ6z4tDNXyowBXVA9Z8f+HKy/TatSuSbt8yqAly0XbCmldZ0V
A6o0DZFQJr/nWwN5jltglIN+UqDpqQdhg4wNxoC4o13WjrZnZMYGlNlnWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEty8LHxgowTwCH1Xp6rUEj4P/3tMB8GA1UdIwQY
MBaAFOVBpMFStfeG1iPYXEFGUpnN2jOJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9kNzEyNjktNGI1Ni00NTcyLWE3MTEt
ZDg0ZWNiMjUwNWM0LzEvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9kNzEyNjktNGI1Ni00NTcyLWE3MTEtZDg0ZWNiMjUwNWM0
LzEvNVVHa3dWSzE5NGJXSTloY1FVWlNtYzNhTTRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAev7i5k2F
9fYuBd4981JhLhznt5a/wjH3iTTQH9zkTY1VnYaMmVP4BVvcHo/jFAHWb3fMvfFn
1CuibGE4LgoFPzSb1CCvlUYf0NBqADBfHtqRVbZNb/0Z7mEEnY2vvDdJZKlWUDQ4
ofZI4Z+WVwm+W7IJWlP4i4y4QN1i9LPboJygX+8GiOdrNA6/5GqwfWN3+AQEgTnp
NnvWk2FgH/zDUj6PJkOWXkcmkoZ93KahP2u3e3nun/5QP9c+n/esBpPi7RnxeRJk
xw+BJH2VuTSXgH8affop47d525dXpQdq7ZAQfsA9Sc5Rsec7q+Xwhs0DwnoP1j1p
NCfaFVvDRsp5Gw==
-----END CERTIFICATE-----
Generated at Wed May 13 02:56:23 2026 by rpki-client