Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
File: XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft (raw, json)
Hash identifier: r1NVlCHGUGHcC2PcCFFyCrtwlLDtUFzndDANoSrCC9k=
Subject key identifier: 58:BA:4B:AE:54:63:57:B2:38:BC:85:B5:C5:0C:B3:D3:F6:1A:EC:1B
Authority key identifier: 5E:55:AF:DE:34:21:1B:CE:E6:A7:FD:99:24:88:A2:49:27:B4:69:47
Certificate issuer: /CN=5e55afde34211bcee6a7fd992488a24927b46947
Certificate serial: 019D2BF32F80F95868000D0C935162C97DE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
Manifest number: 04D2
Signing time: Thu 26 Mar 2026 21:00:50 +0000
Manifest this update: Thu 26 Mar 2026 21:00:50 +0000
Manifest next update: Fri 27 Mar 2026 21:00:50 +0000
Files and hashes: 1: XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl (hash: RgBvUbBPvPt8V9gpqQttSGrmUTuwsXfPeqji8JoE8YE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 21:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:f3:2f:80:f9:58:68:00:0d:0c:93:51:62:c9:7d:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e55afde34211bcee6a7fd992488a24927b46947
Validity
Not Before: Mar 26 21:00:50 2026 GMT
Not After : Mar 27 21:00:50 2026 GMT
Subject: CN=58ba4bae546357b238bc85b5c50cb3d3f61aec1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0d:c0:20:a9:b5:4e:84:5f:d1:c5:be:75:2b:
1a:cb:c0:d9:ca:aa:47:6d:72:81:48:34:64:04:e9:
c2:d0:f4:fd:14:e0:32:df:50:94:e3:bf:73:07:f4:
01:26:7b:ef:cc:f8:8c:11:5c:ef:8c:11:d7:9a:97:
96:94:ef:ce:37:7f:80:a2:a5:ae:54:66:44:a3:55:
d9:e7:8d:cc:b2:e0:2c:b6:d6:d8:63:ef:0d:2e:72:
eb:25:05:b6:22:33:dd:17:60:10:f1:f3:dc:66:1b:
16:da:0e:2c:fc:c9:e1:4d:28:89:60:a9:35:9d:64:
33:3f:64:07:c8:d0:7f:f6:1d:c1:9a:e2:fb:9b:eb:
05:07:04:c1:8d:ff:71:f8:2c:06:9b:a2:4a:c3:30:
86:43:55:cb:ef:6e:1f:15:f2:a0:8e:93:11:90:bc:
44:8d:7f:7e:f0:b1:3e:b2:16:54:9d:0a:7c:78:2f:
83:31:3a:0d:14:8a:8d:32:14:1b:a4:96:3f:54:91:
a7:32:9f:45:2c:48:45:d0:d0:ab:9a:24:62:2c:65:
9c:25:27:c8:66:55:09:0c:c5:67:4a:4a:d1:01:41:
4e:20:ed:48:97:c6:ea:27:46:6c:30:8d:49:1e:67:
44:a5:c2:83:05:13:74:70:48:dd:82:11:4a:11:22:
56:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BA:4B:AE:54:63:57:B2:38:BC:85:B5:C5:0C:B3:D3:F6:1A:EC:1B
X509v3 Authority Key Identifier:
keyid:5E:55:AF:DE:34:21:1B:CE:E6:A7:FD:99:24:88:A2:49:27:B4:69:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:3e:7d:71:91:01:ca:42:10:e8:54:22:b0:16:f0:a5:53:16:
24:44:57:d2:6a:3e:27:a3:1c:73:d4:c4:77:89:33:20:ed:c1:
e2:f7:8b:fa:fd:0d:c0:78:07:57:6d:22:c4:f6:c7:e0:1c:46:
c2:eb:14:09:b2:44:cb:f1:a8:ea:81:8c:fc:1a:31:0f:f4:cb:
31:b6:3e:aa:95:16:97:9a:12:15:5f:2b:53:67:64:17:ad:d6:
de:44:42:03:69:cc:bd:0f:71:24:90:8a:01:06:70:e0:f9:83:
76:7f:bf:7f:8c:0d:e5:00:0b:02:20:33:e0:d7:09:ab:3a:4e:
c5:30:2d:2d:f5:84:99:98:13:24:b4:04:39:1d:f9:25:4b:b1:
90:5a:2f:4c:56:97:44:a4:30:99:8b:47:04:70:69:27:3c:39:
3a:60:d3:f4:4c:5b:c0:05:06:6b:cb:9c:2d:87:47:cd:82:01:
5a:e1:f5:86:77:9b:20:6e:68:71:12:a1:c7:b4:d4:62:61:cb:
39:26:72:e3:8c:7c:d4:75:fc:a3:1d:7e:31:8b:7b:d1:a0:aa:
2f:a5:54:33:c3:ed:e1:6f:24:cb:e4:1f:88:34:ff:1d:c5:1c:
a9:7f:cb:65:b0:7a:f5:a4:d1:05:e2:2a:78:a6:e9:ff:ec:8b:
de:1b:76:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 06:22:23 2026 by rpki-client