Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json)
Hash identifier: 2kxoiUWpK7IVc/MpqktfoKp3HhKkbBoUm+kOHDqTd6I=
Subject key identifier: C5:B7:50:6A:BE:7B:64:25:15:67:1C:A1:F6:E5:2B:06:22:0E:99:0F
Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Certificate serial: 019D2BBC8C7A0A88A417420B14F73D8C3EBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
Manifest number: 0551
Signing time: Thu 26 Mar 2026 20:01:10 +0000
Manifest this update: Thu 26 Mar 2026 20:01:10 +0000
Manifest next update: Fri 27 Mar 2026 20:01:10 +0000
Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: P5uZKqY0RhR/nCGRA7yFCLmjkzwyhHh7GE9w77QjTyY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:bc:8c:7a:0a:88:a4:17:42:0b:14:f7:3d:8c:3e:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Validity
Not Before: Mar 26 20:01:10 2026 GMT
Not After : Mar 27 20:01:10 2026 GMT
Subject: CN=c5b7506abe7b642515671ca1f6e52b06220e990f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:89:0c:d8:46:38:b4:c3:11:87:43:6d:47:43:
b5:16:a1:55:8b:68:2d:f2:c1:f9:88:90:4b:98:a5:
15:9c:5e:72:85:8e:fc:60:16:d4:17:a0:9b:0d:7f:
b2:fc:30:1c:a0:2b:b7:f3:bc:b5:81:62:09:60:41:
a1:f6:80:a6:91:7f:e6:36:0e:25:03:6c:36:5b:bf:
e3:a7:53:be:ce:41:d3:13:e7:9a:fb:9a:0b:93:06:
1e:ca:4b:13:d6:77:69:72:38:23:b8:5e:d5:ca:9a:
93:ec:86:af:05:62:9a:af:e1:ac:bd:56:19:04:11:
b1:f7:09:62:9d:04:38:3a:25:71:84:75:d0:e7:0c:
aa:d4:74:d4:41:4c:e5:05:af:0e:d3:5e:10:55:1e:
84:e7:4e:4b:35:29:7e:92:ab:ae:86:b2:bf:a2:36:
dc:af:c5:57:f9:23:90:d9:18:bb:c0:e4:f8:64:c0:
2e:f8:0a:71:88:e2:d0:56:3d:f6:9d:bf:a9:80:43:
1c:2e:dc:99:f3:31:d7:40:9f:fb:4a:61:ac:3d:3c:
71:91:7a:69:83:4f:12:7f:93:b0:d0:80:18:0c:8d:
a7:cc:01:83:c6:a4:69:f7:57:fe:d5:7e:6a:70:be:
26:bb:e9:76:9c:f0:f4:e7:fa:d5:fb:14:67:b7:91:
8a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B7:50:6A:BE:7B:64:25:15:67:1C:A1:F6:E5:2B:06:22:0E:99:0F
X509v3 Authority Key Identifier:
keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:48:bf:50:2c:cd:c9:e3:be:44:dc:4e:77:41:ba:03:89:fc:
5f:16:d0:59:a7:f1:ab:48:04:67:fe:1e:45:fd:45:70:7b:f2:
1f:0d:ef:32:e6:db:24:13:77:bd:79:53:b1:fa:46:45:4c:66:
ed:1c:dc:00:6c:32:f0:a6:a0:67:30:be:6d:2a:99:cc:8b:c4:
d1:b8:c6:a0:50:d0:6c:14:77:90:8f:c8:d9:ec:b2:91:33:04:
73:62:4e:c0:c7:31:3e:a5:86:db:dc:73:71:84:b5:04:a2:eb:
b1:dd:48:69:ea:04:e4:13:5f:0b:8c:ed:39:f8:12:cb:0d:99:
1b:49:9b:da:4d:21:6d:c1:a2:bb:39:46:0a:09:dc:1f:9c:9f:
f9:8b:50:18:86:b4:b0:ae:a2:ba:2e:f8:f0:4a:20:48:e6:e5:
b0:c7:0f:18:05:48:39:3d:83:33:9a:46:28:f5:1e:d5:b8:32:
49:61:ba:a7:95:41:bf:96:64:77:cd:5a:c2:0f:93:17:2c:ed:
d6:1a:e6:65:65:45:d6:70:60:6d:84:d4:02:05:b2:cd:73:ce:
8e:8b:77:f7:22:05:f8:eb:37:b1:31:70:e1:e8:e2:0d:8d:8d:
43:ae:b7:fe:3e:b7:db:4e:78:e8:a7:01:45:f2:65:2e:5c:6c:
db:d1:f3:5b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0rvIx6CoikF0ILFPc9jD6+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmYmM4YTg2NjhmNTBmZGFmNDk0ZjUyOGEyY2FhZmQwMmI3
YzMxYWQwHhcNMjYwMzI2MjAwMTEwWhcNMjYwMzI3MjAwMTEwWjAzMTEwLwYDVQQD
EyhjNWI3NTA2YWJlN2I2NDI1MTU2NzFjYTFmNmU1MmIwNjIyMGU5OTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4kM2EY4tMMRh0NtR0O1FqFVi2gt
8sH5iJBLmKUVnF5yhY78YBbUF6CbDX+y/DAcoCu387y1gWIJYEGh9oCmkX/mNg4l
A2w2W7/jp1O+zkHTE+ea+5oLkwYeyksT1ndpcjgjuF7VypqT7IavBWKar+GsvVYZ
BBGx9wlinQQ4OiVxhHXQ5wyq1HTUQUzlBa8O014QVR6E505LNSl+kquuhrK/ojbc
r8VX+SOQ2Ri7wOT4ZMAu+ApxiOLQVj32nb+pgEMcLtyZ8zHXQJ/7SmGsPTxxkXpp
g08Sf5Ow0IAYDI2nzAGDxqRp91f+1X5qcL4mu+l2nPD05/rV+xRnt5GKKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMW3UGq+e2QlFWccofblKwYiDpkPMB8GA1UdIwQY
MBaAFL+8ioZo9Q/a9JT1KKLKr9ArfDGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjIt
ZGE2MTk5YjgyZjExLzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS9jYjg4YWUtZjAyMC00NGQ5LWI0NjItZGE2MTk5YjgyZjEx
LzEvdjd5S2htajFEOXIwbFBVb29zcXYwQ3Q4TWEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl0i/UCzN
yeO+RNxOd0G6A4n8XxbQWafxq0gEZ/4eRf1FcHvyHw3vMubbJBN3vXlTsfpGRUxm
7RzcAGwy8KagZzC+bSqZzIvE0bjGoFDQbBR3kI/I2eyykTMEc2JOwMcxPqWG29xz
cYS1BKLrsd1IaeoE5BNfC4ztOfgSyw2ZG0mb2k0hbcGiuzlGCgncH5yf+YtQGIa0
sK6iui748EogSOblsMcPGAVIOT2DM5pGKPUe1bgySWG6p5VBv5Zkd81awg+TFyzt
1hrmZWVF1nBgbYTUAgWyzXPOjot39yIF+Os3sTFw4ejiDY2NQ663/j6320546KcB
RfJlLlxs29HzWw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 23:48:10 2026 by rpki-client