Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
File: 5qi5LUxZf2wET3clKFSPnJEpoNM.mft (raw, json)
Hash identifier: duTKoDxIV8FB7AGf1IBk1BXKo5/n5vFkRFN+ZyX0c44=
Subject key identifier: 8B:26:43:F7:04:BF:6D:02:A1:BB:2E:24:B8:8D:93:BF:35:6A:36:DB
Authority key identifier: E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
Certificate issuer: /CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Certificate serial: 019D277236A0AA8F4752BE8D3EDB2FE0315A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
Manifest number: 1564
Signing time: Thu 26 Mar 2026 00:01:29 +0000
Manifest this update: Thu 26 Mar 2026 00:01:29 +0000
Manifest next update: Fri 27 Mar 2026 00:01:29 +0000
Files and hashes: 1: 5qi5LUxZf2wET3clKFSPnJEpoNM.crl (hash: jrxWUqdtD+kgIDB51BbfTo6XKwZIvgpO5lzJG5NK0nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:36:a0:aa:8f:47:52:be:8d:3e:db:2f:e0:31:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Validity
Not Before: Mar 26 00:01:29 2026 GMT
Not After : Mar 27 00:01:29 2026 GMT
Subject: CN=8b2643f704bf6d02a1bb2e24b88d93bf356a36db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:28:9a:2b:7f:f0:3b:08:59:02:f3:86:37:14:
e3:3d:42:b7:4e:fc:28:2b:10:ce:bd:be:a1:73:27:
6b:3d:43:d3:0e:9e:03:fe:c2:1d:c5:13:ec:42:e6:
25:c9:8a:50:a9:53:e2:2a:5f:50:ff:dc:f2:0d:2a:
ae:e2:1d:b4:4d:48:e6:d6:53:03:b5:a4:9f:df:83:
f3:c0:90:8a:86:d2:fc:12:1e:16:4b:7a:df:da:79:
a4:77:7c:80:63:55:35:6f:63:ce:86:37:10:f7:b7:
78:a9:4f:8b:1f:18:96:ee:11:8f:56:41:69:e6:8c:
63:7f:a0:a1:9b:99:1e:3e:92:44:5a:07:fe:25:ce:
66:39:ea:83:f2:10:4e:29:55:f4:6d:62:84:54:28:
1d:9f:ce:f6:ec:ed:2e:32:39:52:59:b6:f4:b0:bd:
83:fa:0c:7d:5b:4b:20:92:e0:38:2f:92:35:3b:ca:
dd:3d:c5:f0:0c:74:c6:49:7e:bc:68:c0:a0:b7:08:
e3:9b:6c:46:67:0b:be:30:7a:a5:1d:80:ca:d7:04:
ad:1b:48:09:d5:a3:41:99:36:fe:64:ca:dc:05:f7:
8f:36:60:20:35:c3:f5:b8:ae:f2:97:25:6b:3b:d3:
58:45:60:88:07:36:a4:51:92:69:28:d3:1b:d8:2e:
de:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:26:43:F7:04:BF:6D:02:A1:BB:2E:24:B8:8D:93:BF:35:6A:36:DB
X509v3 Authority Key Identifier:
keyid:E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:07:c9:40:83:37:2f:07:fc:ba:f3:27:9b:1b:1a:59:9d:c1:
55:38:29:a9:a3:95:25:07:3e:ee:47:b5:07:8b:0d:e3:2c:bd:
46:22:84:8a:55:d1:c4:c6:1b:90:ed:34:6f:6f:cd:a5:d7:ea:
54:2e:aa:fb:1b:1a:4e:a8:53:4d:77:14:e8:41:0d:00:9c:8c:
e2:d5:f9:75:cf:55:b5:2b:08:87:2a:e1:b6:51:97:7f:16:4c:
90:1a:c7:36:96:70:79:9e:c1:a8:7d:d3:c1:31:98:6f:68:60:
69:05:1e:3e:03:e0:7e:f0:03:c7:0a:ba:d4:20:32:54:22:cd:
0a:da:60:af:cf:ec:54:7b:06:23:cf:54:26:15:f9:81:4e:91:
47:91:93:6b:1c:3c:f4:3b:58:e4:05:df:e0:2f:53:7f:eb:3e:
96:0d:07:33:24:a6:b2:e3:b1:c5:bd:fc:7d:67:dd:74:b8:99:
9b:14:1d:52:99:a5:f9:8c:66:33:40:2e:df:62:b2:f1:53:e9:
d1:e0:c3:bd:bf:4c:04:ad:c5:0a:74:d5:a1:95:e0:fe:21:80:
c4:b4:b5:89:05:9b:7f:4d:54:d7:f3:3c:c3:b0:d4:e4:40:fe:
5d:21:15:96:98:6e:51:19:6f:c2:fc:58:1f:1a:5e:f3:9f:ce:
c0:3b:fa:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:57:46 2026 by rpki-client