Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
File: 5IKZWNgAyhrebhPKeygLIpzmYC4.mft (raw, json)
Hash identifier: y8417RUl5ESIAmqDo1J9+uUpkEz6o4jdXgGK0M7rCQ8=
Subject key identifier: BC:F9:6D:34:2A:F1:1E:AA:AF:59:B3:F5:20:F8:03:15:8D:7B:3B:04
Authority key identifier: E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
Certificate issuer: /CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Certificate serial: 019D2704E1C95E0D39961A3A8DB7486BFF30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
Manifest number: 1883
Signing time: Wed 25 Mar 2026 22:02:04 +0000
Manifest this update: Wed 25 Mar 2026 22:02:04 +0000
Manifest next update: Thu 26 Mar 2026 22:02:04 +0000
Files and hashes: 1: 5IKZWNgAyhrebhPKeygLIpzmYC4.crl (hash: 17YnNFhPguyoRiIzzsKi+f5ja7mOd98WKoqeefDyjGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:e1:c9:5e:0d:39:96:1a:3a:8d:b7:48:6b:ff:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Validity
Not Before: Mar 25 22:02:04 2026 GMT
Not After : Mar 26 22:02:04 2026 GMT
Subject: CN=bcf96d342af11eaaaf59b3f520f803158d7b3b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:6b:6a:db:af:ae:6d:71:c2:8a:0b:32:34:2a:
53:41:4b:54:10:bd:63:74:b3:3f:9a:ad:95:1f:a7:
28:f0:bc:18:44:f0:e4:e3:70:47:20:26:2e:70:1f:
3d:2d:75:52:f5:88:1c:56:d9:0c:26:f8:8c:f6:96:
a1:85:c3:17:a9:fb:34:f3:39:fb:ea:03:7d:2a:b3:
05:40:f2:85:ab:f8:7f:6a:89:a0:69:d4:4e:44:9c:
77:42:90:cb:9c:51:53:b1:ba:24:03:a2:20:66:b6:
f3:b5:a8:c4:eb:bd:9e:f3:80:7a:77:18:a5:df:20:
03:03:b7:ad:ec:e0:30:e0:17:c2:8a:e4:4e:40:57:
32:43:c9:a7:bf:2d:0e:5c:af:ce:20:90:6f:ff:ce:
3b:1d:3c:60:19:c6:f9:a5:a7:d2:99:36:1c:7f:b8:
66:d2:00:9a:56:9a:a4:e8:c3:0c:3c:bf:a7:2b:4f:
4c:bb:f6:ba:bd:70:1b:f4:74:1a:17:31:45:39:58:
c7:ad:75:88:a1:56:96:20:8b:2d:b9:5a:24:a1:2a:
02:e6:40:f8:8a:2d:b1:0d:ac:3f:15:6e:12:9e:86:
5d:0c:cd:d5:81:ad:24:1a:fe:b9:82:05:d4:66:19:
09:0c:82:83:49:f9:fd:15:ae:f3:4d:f0:75:b6:22:
f6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F9:6D:34:2A:F1:1E:AA:AF:59:B3:F5:20:F8:03:15:8D:7B:3B:04
X509v3 Authority Key Identifier:
keyid:E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:8d:6d:2e:a3:59:86:8c:b2:0d:5e:94:c1:75:20:87:69:18:
cc:34:e8:d9:eb:3f:4d:3d:45:e6:96:7b:0b:78:89:9f:2c:d4:
0d:ec:f0:f0:8b:e4:e0:16:29:4d:64:d8:77:6c:26:a3:22:9a:
97:0e:11:57:78:93:e5:3b:3a:30:bf:0f:c2:82:e9:6f:e9:06:
8c:04:4c:ba:91:e3:b4:1f:aa:c1:97:96:e8:78:c0:bc:8e:20:
a7:d2:b7:8d:26:b4:8b:ba:fc:7e:a8:d5:8d:cc:57:0d:70:8e:
3d:cf:da:56:27:46:72:45:2d:ac:88:ed:af:cc:59:db:ab:1e:
2b:83:b6:8c:c8:9e:ce:c9:97:be:27:ee:bc:0e:9f:02:29:43:
9e:28:31:0f:3f:5d:d8:14:38:69:11:8b:d4:1c:e9:89:78:f9:
63:25:46:15:b4:f8:c4:c6:94:02:f1:17:0a:69:86:ec:e9:ac:
4a:67:41:ce:60:bd:1c:db:c9:3d:f9:8c:b6:bd:b0:fe:2d:67:
53:3e:10:bf:e3:28:fe:2e:e0:b8:1f:14:3d:9c:b8:c6:56:e7:
a2:dc:77:b2:96:ad:80:0a:b0:8c:a8:9c:ad:39:ec:9e:a9:31:
56:2e:0d:9c:84:83:45:a3:4b:5e:1e:11:de:cf:f5:e5:ca:73:
34:39:f3:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBOHJXg05lho6jbdIa/8wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ODI5OTU4ZDgwMGNhMWFkZTZlMTNjYTdiMjgwYjIyOWNl
NjYwMmUwHhcNMjYwMzI1MjIwMjA0WhcNMjYwMzI2MjIwMjA0WjAzMTEwLwYDVQQD
EyhiY2Y5NmQzNDJhZjExZWFhYWY1OWIzZjUyMGY4MDMxNThkN2IzYjA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmtq26+ubXHCigsyNCpTQUtUEL1j
dLM/mq2VH6co8LwYRPDk43BHICYucB89LXVS9YgcVtkMJviM9pahhcMXqfs08zn7
6gN9KrMFQPKFq/h/aomgadRORJx3QpDLnFFTsbokA6IgZrbztajE672e84B6dxil
3yADA7et7OAw4BfCiuROQFcyQ8mnvy0OXK/OIJBv/847HTxgGcb5pafSmTYcf7hm
0gCaVpqk6MMMPL+nK09Mu/a6vXAb9HQaFzFFOVjHrXWIoVaWIIstuVokoSoC5kD4
ii2xDaw/FW4SnoZdDM3Vga0kGv65ggXUZhkJDIKDSfn9Fa7zTfB1tiL2EwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLz5bTQq8R6qr1mz9SD4AxWNezsEMB8GA1UdIwQY
MBaAFOSCmVjYAMoa3m4TynsoCyKc5mAuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQt
MWQ1YmMwMDFhMWRlLzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQtMWQ1YmMwMDFhMWRl
LzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT41tLqNZ
hoyyDV6UwXUgh2kYzDTo2es/TT1F5pZ7C3iJnyzUDezw8Ivk4BYpTWTYd2wmoyKa
lw4RV3iT5Ts6ML8PwoLpb+kGjARMupHjtB+qwZeW6HjAvI4gp9K3jSa0i7r8fqjV
jcxXDXCOPc/aVidGckUtrIjtr8xZ26seK4O2jMiezsmXvifuvA6fAilDnigxDz9d
2BQ4aRGL1BzpiXj5YyVGFbT4xMaUAvEXCmmG7OmsSmdBzmC9HNvJPfmMtr2w/i1n
Uz4Qv+Mo/i7guB8UPZy4xlbnotx3spatgAqwjKicrTnsnqkxVi4NnISDRaNLXh4R
3s/15cpzNDnz5A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:23:27 2026 by rpki-client