Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.mft
File: 5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.mft (raw, json)
Hash identifier: xqwJqb8GWCu07ypvm5KfUxTQrYdbMrtcdBDhI+qkFBQ=
Subject key identifier: 64:D9:00:BF:C5:CB:05:0D:49:87:90:0A:F2:62:10:13:E4:F5:C4:D7
Authority key identifier: E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
Certificate issuer: /CN=e4a9308742e7eb66506219d829d86185899a1e34
Certificate serial: 019D2AE145E08B65665B4881FA89B23EA806
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.mft
Manifest number: 1909
Signing time: Thu 26 Mar 2026 16:01:39 +0000
Manifest this update: Thu 26 Mar 2026 16:01:39 +0000
Manifest next update: Fri 27 Mar 2026 16:01:39 +0000
Files and hashes: 1: 0xg0LHFmIAhRMpdSsXPI-Ie_PsI.roa (hash: WHzwzDrG+iQh9uqHG4tV1Yh6NKaFw5D08VOYk/ojXTc=)
2: 5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl (hash: zWXAtj8tbN2e2ix71DheFHLe7r9SUrFgNS8Xs8uiVxI=)
3: ZKaBJyBRkzDPUmFlAS458DLw7HU.roa (hash: HCAX8ouKnSaIKqPaeTAJ+7k13PatJ7PBSc3QmeHyguM=)
4: azXt4JSrhCkbBDLougb_ea1t6os.roa (hash: zCtBx08/hOTifYY1efRidpEdm3U/OsYy+2PnGFcIFuE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e1:45:e0:8b:65:66:5b:48:81:fa:89:b2:3e:a8:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4a9308742e7eb66506219d829d86185899a1e34
Validity
Not Before: Mar 26 16:01:39 2026 GMT
Not After : Mar 27 16:01:39 2026 GMT
Subject: CN=64d900bfc5cb050d4987900af2621013e4f5c4d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ed:bc:98:e8:53:8b:d4:df:9d:73:1e:18:4d:
e5:16:f7:1e:35:ff:2a:0c:c2:a2:15:c2:ae:96:97:
32:ae:a1:6f:b1:84:96:6b:30:15:7d:47:c7:0a:fd:
99:d6:4d:74:86:4b:d9:e4:8b:e3:81:cf:ec:59:4d:
24:6c:1e:cc:29:3e:34:73:3b:87:bc:1d:9e:c5:23:
ff:6f:8c:b6:08:7a:f4:7b:dc:65:35:5a:43:10:a5:
8f:c7:33:0b:d6:a1:40:a1:25:64:5f:ee:f7:3a:0c:
f3:8c:47:2b:87:4a:43:13:ae:a9:d6:2e:00:b2:38:
53:91:65:8d:8f:08:bf:68:be:26:08:1a:97:57:b2:
c5:5f:43:54:1d:05:75:1a:02:d8:8a:22:e1:45:8a:
ff:d9:b4:40:b2:70:8b:a1:14:16:ce:49:09:7e:85:
2f:84:a2:8c:3f:4b:1c:93:5f:0f:11:ea:2e:9d:6d:
24:59:9d:10:c8:b1:ab:37:f0:51:a8:0f:c9:13:0a:
27:1c:87:60:f5:4b:20:5b:25:f7:be:64:3b:cd:f7:
75:cb:03:b6:6c:0e:b3:68:a9:05:51:e4:2f:70:44:
ae:77:83:6c:35:4b:92:57:f3:2f:86:b8:df:fe:7d:
26:48:8f:4d:74:ee:f2:38:15:2d:26:d3:78:ac:e1:
c4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:D9:00:BF:C5:CB:05:0D:49:87:90:0A:F2:62:10:13:E4:F5:C4:D7
X509v3 Authority Key Identifier:
keyid:E4:A9:30:87:42:E7:EB:66:50:62:19:D8:29:D8:61:85:89:9A:1E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/1c9dbb-052c-4eea-ade6-ec5b88d0138a/1/5Kkwh0Ln62ZQYhnYKdhhhYmaHjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:f1:d0:54:2d:d9:1c:36:f6:6d:0f:8a:9c:2b:3f:e9:14:c1:
b0:24:1d:3e:a8:e3:07:19:90:98:a7:54:48:37:9d:0c:57:a5:
af:41:3a:89:ae:c3:07:b6:e3:7b:ec:20:30:c2:63:4a:b6:9a:
18:19:df:c7:28:c3:66:c2:d2:02:80:c2:04:96:df:fa:70:48:
2c:39:76:c0:87:92:95:20:2a:89:6d:c1:7c:99:88:a6:37:4f:
bd:eb:fe:7e:ab:63:a0:f3:2b:f1:30:e3:b1:58:b0:80:c7:39:
ed:bb:b3:34:20:2d:a2:82:6c:10:cd:0c:e9:d0:94:e3:e9:84:
41:9f:61:98:4c:3e:01:43:ee:19:04:ed:db:b4:8c:b9:dc:04:
df:37:20:42:cc:70:ef:6f:4a:25:14:19:ba:a9:68:09:75:33:
15:76:9f:37:a9:81:b0:48:9d:7d:9a:d3:43:b6:b4:6a:e7:34:
1b:af:01:9c:5f:95:71:e0:0b:ab:ed:79:ba:40:1e:02:63:45:
59:57:6c:32:94:22:6f:c7:05:4a:ba:97:1c:97:2b:13:a3:25:
79:4c:f0:95:b7:c2:fc:71:97:bb:a1:6e:5c:ad:39:a3:f1:03:
f2:9e:46:5c:07:12:9c:47:9e:6c:72:87:7a:d8:ff:65:30:d4:
72:9d:eb:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:47:15 2026 by rpki-client