Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
File: 5qi5LUxZf2wET3clKFSPnJEpoNM.mft (raw, json)
Hash identifier: Z2Nji1qZUQbx/NpVTHCtjXirZkkdQsCZ96U/Ec3E7Zc=
Subject key identifier: C5:77:7D:42:61:48:11:1F:13:23:CD:DB:77:7E:15:EE:B4:5D:65:34
Authority key identifier: E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
Certificate issuer: /CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Certificate serial: 019E1EA3D0BFA874CD91403BB2175357D7E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
Manifest number: 15E4
Signing time: Wed 13 May 2026 00:01:52 +0000
Manifest this update: Wed 13 May 2026 00:01:52 +0000
Manifest next update: Thu 14 May 2026 00:01:52 +0000
Files and hashes: 1: 5qi5LUxZf2wET3clKFSPnJEpoNM.crl (hash: eN9U+uvhx2Tp+oYG1hPZRalVWLXmyBzg/Q3+Iv5yjrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:d0:bf:a8:74:cd:91:40:3b:b2:17:53:57:d7:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Validity
Not Before: May 13 00:01:52 2026 GMT
Not After : May 14 00:01:52 2026 GMT
Subject: CN=c5777d426148111f1323cddb777e15eeb45d6534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:40:64:e7:3f:cf:c8:fd:6b:ad:bb:92:85:78:
7e:d6:89:3e:8e:15:3d:d8:8b:61:0f:aa:45:37:56:
68:43:7d:a0:c9:ec:50:66:78:ef:bf:a7:50:21:07:
f8:63:a0:3d:09:c2:44:15:5d:2a:17:99:ab:d0:22:
a5:2d:1c:d2:35:e5:8f:1e:2d:1e:c4:3d:33:cc:ba:
c5:e8:54:f4:ab:76:fe:d0:f1:71:4c:f0:bd:d3:f0:
08:4d:8f:2c:d4:d8:39:c7:d2:74:fd:b4:6a:4f:15:
00:de:1f:76:4d:aa:03:d8:43:e9:57:2a:27:05:01:
be:09:94:a7:63:13:52:46:81:80:2e:8b:99:5a:77:
13:a1:c8:e2:db:b9:9e:e6:b4:fa:ab:d7:f0:d6:41:
c6:f2:7f:41:16:77:e9:97:53:98:c3:b8:33:87:96:
b8:38:20:76:e4:bc:db:d2:05:09:a6:9c:de:1a:be:
d3:c5:bd:31:0b:8e:f6:e5:d8:7b:5b:7e:20:07:a0:
c2:0d:42:51:c6:3c:7a:01:b7:81:34:4c:f3:50:65:
29:67:02:a2:18:16:5d:7a:36:bd:46:d5:7e:2c:e2:
78:20:95:7a:b1:ad:32:80:19:43:c8:cb:9a:29:1e:
6e:b4:84:86:80:e2:c6:94:e1:f6:60:7c:e2:4e:0d:
ec:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:77:7D:42:61:48:11:1F:13:23:CD:DB:77:7E:15:EE:B4:5D:65:34
X509v3 Authority Key Identifier:
keyid:E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:68:cc:16:71:ca:4a:78:3f:43:9d:16:13:e7:c0:3a:68:4e:
ce:3e:7e:cc:8b:d8:0a:b2:9e:b5:e0:a8:ac:98:a8:df:18:49:
48:2e:17:c8:25:fe:6c:0f:5a:33:a6:f9:26:2a:3a:ee:45:e5:
a6:91:8d:30:91:c4:ef:a8:93:f8:20:e0:49:2e:19:eb:b7:c3:
ad:c7:c3:1d:e9:4e:fa:66:6d:53:54:67:82:05:45:b0:de:4b:
a7:85:99:43:d3:15:55:19:67:cb:9d:3e:94:ad:fd:bb:26:e0:
d0:4f:2c:a5:b7:e0:8e:36:ae:75:27:fa:74:96:64:b9:e1:da:
43:75:82:bb:4d:c4:c5:7c:22:c1:da:c6:16:04:1a:0b:b4:3c:
7c:75:71:d3:e3:24:95:1a:ea:5e:fd:d1:8c:18:12:10:2b:7b:
ff:44:e8:c2:f3:ac:a1:8a:10:66:bf:31:ce:89:6e:90:f6:de:
1f:53:53:4c:b0:25:03:d5:3d:13:a8:88:bc:60:8e:55:0d:d3:
7e:5b:cc:db:58:4b:fc:10:9b:70:46:92:3b:86:80:3d:f3:fe:
59:03:78:05:2b:39:8d:e5:d7:c2:e0:dc:3c:9a:1c:23:88:ac:
24:31:ab:dc:47:6e:17:a7:7f:1c:cb:57:d2:25:20:db:c2:33:
f1:4c:0e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:50:40 2026 by rpki-client