Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.mft
File: 5AP02ltCPYmfu1tWFk-wdpbYFZ0.mft (raw, json)
Hash identifier: EP2+jbdQexoheMHoS1x7hkFxsXYia1oGhqZbyOv2wo8=
Subject key identifier: 65:9F:41:8B:9A:EB:8D:99:16:96:87:F4:70:6F:FE:9A:40:98:7E:06
Authority key identifier: E4:03:F4:DA:5B:42:3D:89:9F:BB:5B:56:16:4F:B0:76:96:D8:15:9D
Certificate issuer: /CN=e403f4da5b423d899fbb5b56164fb07696d8159d
Certificate serial: 019D28F29918C1C0E417FC6F93C4C8BF9832
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5AP02ltCPYmfu1tWFk-wdpbYFZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.mft
Manifest number: 0211
Signing time: Thu 26 Mar 2026 07:01:20 +0000
Manifest this update: Thu 26 Mar 2026 07:01:20 +0000
Manifest next update: Fri 27 Mar 2026 07:01:20 +0000
Files and hashes: 1: 5AP02ltCPYmfu1tWFk-wdpbYFZ0.crl (hash: 5DOVsAg4AnJfm9LnaVU/ObLOI3/fv9nYMc3B/by/PXQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5AP02ltCPYmfu1tWFk-wdpbYFZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:99:18:c1:c0:e4:17:fc:6f:93:c4:c8:bf:98:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e403f4da5b423d899fbb5b56164fb07696d8159d
Validity
Not Before: Mar 26 07:01:20 2026 GMT
Not After : Mar 27 07:01:20 2026 GMT
Subject: CN=659f418b9aeb8d99169687f4706ffe9a40987e06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b5:f5:ae:3b:54:8a:6c:c3:b9:ec:f1:75:42:
a4:21:8e:d4:71:0e:f7:d4:14:ea:1b:b9:a8:e7:84:
20:26:e7:95:01:3a:b5:d5:30:b4:b9:ca:f6:7b:9b:
54:97:c6:28:90:54:14:30:15:e2:00:9b:df:a7:4c:
93:8f:1c:a0:0e:20:d0:9b:48:91:02:08:e6:fd:4c:
82:2c:0b:fb:5d:36:ed:ae:b9:ff:7f:84:b9:39:81:
32:19:ff:6f:8d:c9:f7:a4:51:fe:3f:54:c3:be:bb:
a5:cc:0c:ab:cc:aa:76:3f:b9:ec:13:41:6e:5b:98:
c0:87:b1:7e:34:d9:57:f3:a1:03:58:b2:fe:bd:3a:
d8:78:a6:61:0b:e4:24:db:a1:b0:20:20:18:94:54:
07:15:39:59:43:95:d9:85:e8:14:a8:4f:6b:3a:fd:
57:95:6b:7f:0f:4a:9e:76:52:ce:4b:5e:1f:31:0d:
a6:db:3f:a7:ae:bf:a3:ca:59:17:35:a6:d9:47:3f:
75:35:14:e3:af:70:fc:29:57:bf:8f:21:07:9c:65:
4d:6f:40:39:9c:17:55:48:45:09:65:c8:3d:23:a0:
6e:85:e7:49:80:5f:60:34:6f:b1:9b:73:44:44:b3:
27:33:2e:02:3c:36:0d:6c:36:0f:29:94:01:f1:23:
1a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:9F:41:8B:9A:EB:8D:99:16:96:87:F4:70:6F:FE:9A:40:98:7E:06
X509v3 Authority Key Identifier:
keyid:E4:03:F4:DA:5B:42:3D:89:9F:BB:5B:56:16:4F:B0:76:96:D8:15:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5AP02ltCPYmfu1tWFk-wdpbYFZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fd210d-d4c3-4831-a446-a00956afc469/1/5AP02ltCPYmfu1tWFk-wdpbYFZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:d7:ce:fb:8e:93:2c:13:cd:8e:fa:40:ed:43:0a:7b:66:35:
79:e6:e9:e3:b8:c7:b6:3f:a6:25:b4:eb:e7:fc:57:e8:7c:89:
9e:2b:10:3e:6a:a6:cc:d9:43:87:b7:9f:b7:76:cc:3c:82:19:
19:f5:b6:c9:90:78:b8:cd:41:f3:cb:b5:d6:45:df:46:8a:69:
4e:b9:53:48:99:81:b4:8a:15:db:b0:ee:25:e6:da:a6:a6:9b:
76:49:77:af:db:e2:26:d9:33:68:65:3c:9c:e4:63:ba:8c:d8:
8e:bc:4f:e0:c7:48:e2:f9:09:aa:75:66:b2:c9:3f:4f:cd:6b:
ac:c6:ce:aa:04:ae:ce:73:cf:39:a7:c0:80:14:60:80:1b:8c:
37:4e:1e:58:7e:6e:f1:fd:da:7f:f5:b2:01:37:24:ac:b9:1f:
17:42:03:b6:14:2a:48:50:1f:71:67:15:c1:a3:7e:6d:60:17:
1e:4a:c0:45:02:1d:01:0d:1d:39:8c:5e:df:96:46:e7:e3:bf:
a4:4b:f8:4c:84:c0:bc:27:25:0e:3f:c5:f5:85:c8:42:74:b9:
a2:26:3f:4a:69:04:4c:35:e6:4b:71:c8:45:30:45:2e:00:65:
e5:51:be:b2:d0:20:cb:82:82:f3:a0:a7:60:e9:46:db:d5:0d:
35:8d:bd:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8pkYwcDkF/xvk8TIv5gyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MDNmNGRhNWI0MjNkODk5ZmJiNWI1NjE2NGZiMDc2OTZk
ODE1OWQwHhcNMjYwMzI2MDcwMTIwWhcNMjYwMzI3MDcwMTIwWjAzMTEwLwYDVQQD
Eyg2NTlmNDE4YjlhZWI4ZDk5MTY5Njg3ZjQ3MDZmZmU5YTQwOTg3ZTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA47X1rjtUimzDuezxdUKkIY7UcQ73
1BTqG7mo54QgJueVATq11TC0ucr2e5tUl8YokFQUMBXiAJvfp0yTjxygDiDQm0iR
Agjm/UyCLAv7XTbtrrn/f4S5OYEyGf9vjcn3pFH+P1TDvrulzAyrzKp2P7nsE0Fu
W5jAh7F+NNlX86EDWLL+vTrYeKZhC+Qk26GwICAYlFQHFTlZQ5XZhegUqE9rOv1X
lWt/D0qedlLOS14fMQ2m2z+nrr+jylkXNabZRz91NRTjr3D8KVe/jyEHnGVNb0A5
nBdVSEUJZcg9I6BuhedJgF9gNG+xm3NERLMnMy4CPDYNbDYPKZQB8SMaDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGWfQYua642ZFpaH9HBv/ppAmH4GMB8GA1UdIwQY
MBaAFOQD9NpbQj2Jn7tbVhZPsHaW2BWdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUFQMDJsdENQWW1mdTF0V0ZrLXdkcGJZRlowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9mZDIxMGQtZDRjMy00ODMxLWE0NDYt
YTAwOTU2YWZjNDY5LzEvNUFQMDJsdENQWW1mdTF0V0ZrLXdkcGJZRlowLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy9mZDIxMGQtZDRjMy00ODMxLWE0NDYtYTAwOTU2YWZjNDY5
LzEvNUFQMDJsdENQWW1mdTF0V0ZrLXdkcGJZRlowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbNfO+46T
LBPNjvpA7UMKe2Y1eebp47jHtj+mJbTr5/xX6HyJnisQPmqmzNlDh7eft3bMPIIZ
GfW2yZB4uM1B88u11kXfRoppTrlTSJmBtIoV27DuJebapqabdkl3r9viJtkzaGU8
nORjuozYjrxP4MdI4vkJqnVmssk/T81rrMbOqgSuznPPOafAgBRggBuMN04eWH5u
8f3af/WyATckrLkfF0IDthQqSFAfcWcVwaN+bWAXHkrARQIdAQ0dOYxe35ZG5+O/
pEv4TITAvCclDj/F9YXIQnS5oiY/SmkETDXmS3HIRTBFLgBl5VG+stAgy4KC86Cn
YOlG29UNNY29mA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:59:35 2026 by rpki-client