Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
File: dr5GHrn3AE8poX_d3-8uLqBeua8.mft (raw, json)
Hash identifier: o30uZAldoNptCfYy06i3xgYDpAqBIe5haSdlv9OSfho=
Subject key identifier: FC:56:70:C6:A3:E9:C2:23:8B:9B:06:E3:0E:E6:E1:5A:B7:93:8E:40
Authority key identifier: 76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
Certificate issuer: /CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Certificate serial: 019E1CB49D2309071811BD6DEE4B974B4882
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
Manifest number: 189A
Signing time: Tue 12 May 2026 15:00:59 +0000
Manifest this update: Tue 12 May 2026 15:00:59 +0000
Manifest next update: Wed 13 May 2026 15:00:59 +0000
Files and hashes: 1: adYAw1QARYUATfxCFb6i8Q_fm-o.roa (hash: QPoF7S4xS1/LhTKBOqbjrxIWUWpnI5hm5nl1XAjSOeg=)
2: dr5GHrn3AE8poX_d3-8uLqBeua8.crl (hash: sxDIaqWGNEsLOATUsHFnwpVkrU2YPWFuOk32tXn0d+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:9d:23:09:07:18:11:bd:6d:ee:4b:97:4b:48:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76be461eb9f7004f29a17fdddfef2e2ea05eb9af
Validity
Not Before: May 12 15:00:59 2026 GMT
Not After : May 13 15:00:59 2026 GMT
Subject: CN=fc5670c6a3e9c2238b9b06e30ee6e15ab7938e40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:da:ee:de:f4:fb:84:fe:93:3d:39:c1:ac:f2:
f6:54:98:ee:35:63:ce:2a:8e:1d:0e:4c:6f:03:c3:
f6:20:33:6c:41:9b:bd:7e:dc:62:04:82:70:32:3c:
c8:6a:c7:45:1f:36:4c:53:88:a0:ff:2c:ae:44:93:
db:60:f5:63:79:a7:32:cf:60:12:1d:93:fe:0f:c1:
fd:3d:95:01:ee:8e:ae:85:bc:a7:fd:8e:95:a1:93:
01:bd:98:16:9b:a5:d1:dc:ac:16:84:63:ab:49:c4:
7c:3c:b2:ad:e8:c0:a5:a5:da:a5:a7:0a:14:a2:0a:
60:d3:e5:42:5b:e3:80:c4:c8:f0:a3:6c:cb:48:df:
5f:a7:4c:1a:f7:23:d6:3b:9c:63:25:d6:37:23:a7:
b4:10:0a:dd:b7:e8:38:d3:eb:59:f4:0e:f9:c1:ea:
11:7c:c7:23:f0:dd:47:af:22:08:dd:3b:b1:4b:4a:
96:53:3e:b2:4a:c6:a7:47:0d:e0:4d:61:2c:6e:58:
af:64:3a:73:9d:e0:2d:f4:a1:76:07:5b:d7:79:3b:
3c:12:40:14:30:27:4e:eb:3a:55:0e:1f:f6:62:60:
5c:ff:5b:5a:8c:20:87:a4:1b:cf:ba:48:b5:33:ea:
16:43:b8:d1:9a:17:31:93:24:79:a4:35:0f:db:50:
7e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:56:70:C6:A3:E9:C2:23:8B:9B:06:E3:0E:E6:E1:5A:B7:93:8E:40
X509v3 Authority Key Identifier:
keyid:76:BE:46:1E:B9:F7:00:4F:29:A1:7F:DD:DF:EF:2E:2E:A0:5E:B9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dr5GHrn3AE8poX_d3-8uLqBeua8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/c680bf-9b6c-44d3-837f-88cfa3dca6de/1/dr5GHrn3AE8poX_d3-8uLqBeua8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:ee:01:30:4e:38:be:d7:3c:92:49:d7:73:a5:ea:5c:70:58:
ae:4e:05:2e:03:68:e7:3f:cd:65:97:b1:e9:34:ee:de:80:11:
6c:01:70:ed:f5:b8:17:34:b9:68:6a:bc:96:01:c4:de:1d:55:
a2:22:8a:fb:e6:8d:04:1a:1c:ed:71:03:0b:5e:2d:9d:02:68:
a1:6c:a4:61:92:02:b3:39:12:12:8f:95:a5:70:b6:cf:83:56:
50:d9:55:79:53:56:cb:90:f6:ea:5c:a5:66:dc:80:cd:5d:bf:
c1:f6:7b:94:0d:f4:f5:b4:0c:45:f1:ea:4e:32:07:a8:9f:bc:
98:78:ee:fb:58:eb:71:d0:a7:5f:de:dd:3c:1d:2d:12:e1:5d:
c1:ed:ff:34:51:db:a5:80:45:fa:65:34:6d:c5:3d:d3:aa:68:
ae:64:90:84:41:52:c4:41:35:09:d7:9c:ef:33:3f:10:ec:bc:
95:61:29:4a:01:f1:75:cb:a3:21:d5:9c:f3:74:4a:69:14:99:
b3:f6:5c:5c:6d:f2:24:42:14:2f:bd:38:6a:a2:4a:f3:f2:47:
c5:7e:16:6e:7a:6c:d7:a6:93:08:2a:19:9e:17:07:f3:49:18:
a6:d2:53:da:25:d7:00:22:8a:57:e8:38:eb:ad:6d:79:a6:e2:
62:96:e7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:59:12 2026 by rpki-client