Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
File: m5TSR2sxUeHn8DYNzk84USXu1fs.mft (raw, json)
Hash identifier: BQc3iLeh7PxcutTIb6Eu5e/gxaLTH5X5J0EFH/jZ0WQ=
Subject key identifier: 12:81:1E:6E:36:42:D1:DB:F6:48:3D:CA:EB:25:B4:AE:2B:F3:E2:A7
Authority key identifier: 9B:94:D2:47:6B:31:51:E1:E7:F0:36:0D:CE:4F:38:51:25:EE:D5:FB
Certificate issuer: /CN=9b94d2476b3151e1e7f0360dce4f385125eed5fb
Certificate serial: 019D2B4EE954B670B8122E62707BA29983D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5TSR2sxUeHn8DYNzk84USXu1fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 18:01:24 +0000
Manifest this update: Thu 26 Mar 2026 18:01:24 +0000
Manifest next update: Fri 27 Mar 2026 18:01:24 +0000
Files and hashes: 1: m5TSR2sxUeHn8DYNzk84USXu1fs.crl (hash: VYp/FJuPc4H9EU0hd9u22jxdCDo3EfhUCEyvbSgEZYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/m5TSR2sxUeHn8DYNzk84USXu1fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:4e:e9:54:b6:70:b8:12:2e:62:70:7b:a2:99:83:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b94d2476b3151e1e7f0360dce4f385125eed5fb
Validity
Not Before: Mar 26 18:01:24 2026 GMT
Not After : Mar 27 18:01:24 2026 GMT
Subject: CN=12811e6e3642d1dbf6483dcaeb25b4ae2bf3e2a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:57:79:45:94:76:3a:1d:45:2e:52:c1:3a:a6:
00:ca:42:51:74:fe:54:16:51:97:9b:8a:3b:65:4b:
bd:82:ea:44:e9:79:c2:a6:0b:4a:a5:06:5c:55:b8:
d8:ee:64:35:1c:8b:0e:fb:98:db:48:ea:60:28:59:
b5:03:2c:d6:b6:fb:cb:9a:3b:cb:a0:7c:99:a2:a6:
cc:aa:6a:4e:b4:f9:d4:90:b7:2d:88:7a:73:c4:4e:
fb:7e:22:35:9b:74:e4:a6:b2:06:89:2c:59:82:36:
2f:bb:bc:3e:22:c6:57:cc:3f:2f:5f:97:4f:4e:d0:
17:5d:b9:ac:1e:d7:c9:5a:d4:86:6a:cc:4c:e9:86:
12:6d:5e:7b:86:26:bc:b3:19:5a:17:60:58:02:7b:
8d:2d:83:dd:5f:38:e2:22:b7:22:5f:8a:d0:1a:2b:
70:39:bb:00:f9:97:5c:61:e7:24:3d:92:ec:7e:1f:
25:a1:f3:4a:71:ec:8f:14:4a:04:47:5e:c1:4b:09:
eb:e9:4d:1a:62:9a:68:6b:10:cb:27:b1:64:cd:11:
81:26:3d:70:11:1f:ba:6f:e4:86:77:27:af:3a:cd:
db:68:00:71:31:bf:86:e8:bd:21:ee:92:f4:35:5c:
ae:15:f1:4f:93:05:ba:d7:69:35:36:c8:2b:6b:6c:
60:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:81:1E:6E:36:42:D1:DB:F6:48:3D:CA:EB:25:B4:AE:2B:F3:E2:A7
X509v3 Authority Key Identifier:
keyid:9B:94:D2:47:6B:31:51:E1:E7:F0:36:0D:CE:4F:38:51:25:EE:D5:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5TSR2sxUeHn8DYNzk84USXu1fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/3b74f0-e753-4669-85fd-822eaf0d22b0/1/m5TSR2sxUeHn8DYNzk84USXu1fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:fa:ee:01:d6:38:aa:36:72:dc:49:a4:e6:80:1b:09:00:16:
2e:53:d1:5f:90:f4:15:0e:e9:b6:7a:98:75:34:dc:e7:2f:c3:
dd:7f:50:11:86:73:36:61:14:44:5d:bb:dc:6c:56:62:03:bf:
5a:92:25:12:fa:e2:15:8e:5b:7f:ad:03:80:54:b3:5d:26:72:
22:83:bd:5c:63:6f:5c:1b:d3:56:6c:af:4c:8d:fa:ef:65:ac:
5e:ce:67:2e:5b:58:2c:bd:c9:91:76:d6:7d:e1:a5:fd:98:c7:
c3:3a:e6:16:8d:90:bc:e6:28:be:97:3c:ee:0b:27:82:fb:ef:
b0:93:fb:44:c3:d1:6c:fc:5c:66:9a:4d:0c:79:10:ab:1a:21:
07:4e:ba:15:92:00:4c:f5:01:04:31:aa:1a:f3:ad:f0:cc:81:
7c:91:fa:a8:f5:74:4d:50:9e:4b:40:f2:bd:f8:96:23:ab:6e:
21:b4:f8:78:3b:a1:dd:c4:c9:76:8e:8c:50:9c:9c:78:f1:df:
22:57:c8:e5:69:96:2b:d9:85:48:ad:81:9f:f3:dc:29:ea:21:
d4:05:40:78:d3:49:b1:f4:b4:45:bf:04:f6:8c:a8:00:ad:e3:
60:16:fd:7a:f7:e1:e9:ec:88:f7:0a:f8:cb:d8:dc:c2:21:bb:
92:31:7b:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:15:09 2026 by rpki-client