Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: ihjBEy/dXZZhFa8gKJSOp3keU6XQFegLXY8V13UPit8=
Subject key identifier: 55:D8:77:CE:1C:AC:66:67:EA:33:4C:E2:85:07:4C:F6:EC:DC:9E:86
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 019D25F1E4E271C9B687C89F06916EDAE0D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 0D10
Signing time: Wed 25 Mar 2026 17:01:42 +0000
Manifest this update: Wed 25 Mar 2026 17:01:42 +0000
Manifest next update: Thu 26 Mar 2026 17:01:42 +0000
Files and hashes: 1: 6aoHpGpaWGGkl83xUFlNJm53NDk.roa (hash: /4TBotBrPhIQMbRC6QsWTde66kPhdMjvMCRoCWnf4ms=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: yLrD+56AD49VW0lQfoxahtd20HGCqa9/8uvMVwDW3Yg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:e4:e2:71:c9:b6:87:c8:9f:06:91:6e:da:e0:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: Mar 25 17:01:42 2026 GMT
Not After : Mar 26 17:01:42 2026 GMT
Subject: CN=55d877ce1cac6667ea334ce285074cf6ecdc9e86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:53:1e:68:d5:ed:97:30:c8:76:34:4d:65:10:
f0:a0:95:7a:2e:4d:a0:2b:83:43:af:e2:43:fa:32:
6d:29:19:8b:da:11:ff:a5:be:19:ef:6f:b7:88:5b:
35:bf:44:8e:b3:44:6e:e5:bb:e2:68:dd:87:f6:12:
98:cb:ba:4d:d3:dc:0d:60:35:5a:36:e2:34:24:ea:
72:8f:9e:13:6d:3c:15:04:70:69:0d:6b:e2:45:3c:
ba:4d:9c:81:e2:ac:f4:c9:df:4c:1b:8c:57:cb:be:
12:9e:74:94:fc:7c:4d:88:78:3c:1b:c3:19:bb:1b:
d2:bf:e5:6f:4a:dc:47:e6:c2:47:89:d4:71:94:bf:
dd:ff:ec:09:cc:d2:4f:4c:0a:16:a8:a7:41:6f:bd:
00:55:93:98:e5:90:f5:47:67:43:ff:57:85:cf:db:
48:a9:cf:57:76:b4:67:55:1b:12:4d:6d:8d:94:fc:
01:f8:b9:a9:73:e8:03:c9:c1:8d:ee:f0:26:ff:4d:
5f:3f:05:57:26:b3:84:66:38:58:01:23:21:51:70:
bf:9b:9c:1a:ac:48:8d:83:e4:da:70:f0:0c:8e:18:
f4:b2:4f:2b:31:25:10:16:aa:ef:c6:b1:d8:a5:37:
cb:b5:23:dd:41:13:c6:fb:18:14:20:4f:4e:59:94:
2f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D8:77:CE:1C:AC:66:67:EA:33:4C:E2:85:07:4C:F6:EC:DC:9E:86
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:13:6a:29:eb:96:d3:2c:fa:01:f2:72:2c:81:ef:4f:fa:08:
7d:43:95:c2:cb:12:09:b9:83:3f:cb:e5:64:52:58:f0:69:0f:
9f:02:31:e2:aa:ed:0e:5e:83:da:e2:b7:d3:ac:e9:10:c9:a9:
97:1d:68:c1:09:1e:19:25:31:f9:63:04:dd:ae:13:93:b4:c1:
e7:7e:b8:fb:af:81:d3:e1:68:bd:d0:3b:7f:24:52:4c:5c:99:
36:be:cf:2b:5d:58:a1:f8:9e:e3:25:17:aa:7e:31:92:f5:71:
94:ef:2e:37:f2:d3:43:f3:95:1a:d3:a6:69:49:82:a3:ae:ea:
6d:9f:7c:3b:c8:81:93:6c:d8:b5:66:24:8f:60:d0:0d:85:4c:
86:b4:09:0b:12:5e:74:4f:cc:1a:fd:8c:86:71:53:8e:70:5d:
b7:df:4e:14:74:1c:39:c4:19:71:02:0f:e6:b6:3f:14:40:9d:
97:62:a2:e8:ce:3f:13:d1:af:98:1d:ae:fe:5e:26:71:00:96:
1e:49:a5:f4:2d:ff:78:79:ce:0a:40:05:35:24:0d:6b:a3:e8:
79:9e:c7:f4:9b:bd:5e:e4:ce:6d:ff:d8:05:74:e6:8e:ba:40:
72:39:3f:3f:27:fc:e6:c7:ce:19:c2:a3:6a:5a:56:0a:ac:c6:
99:e1:2a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:19 2026 by rpki-client