Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
File: xs_ZQjfv0gDdCxFuH2-be8plnKc.mft (raw, json)
Hash identifier: 1FBslFAJg7RAsI1XOZk++U4yqCShmx47bcy9crmdfzE=
Subject key identifier: 42:1A:87:DD:46:76:BC:AE:2C:D2:F1:CF:64:0E:5A:31:0B:1F:B3:54
Authority key identifier: C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
Certificate issuer: /CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Certificate serial: 019D27A8DB286721A96B0B5303DE4D89C945
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 01:01:10 +0000
Manifest this update: Thu 26 Mar 2026 01:01:10 +0000
Manifest next update: Fri 27 Mar 2026 01:01:10 +0000
Files and hashes: 1: RB5D86Eez18oD-QABqEilaFp2nQ.roa (hash: cNT5vI1+Epdr8/RiwTV50sHhN6dBP41X/USYdNru1kM=)
2: xs_ZQjfv0gDdCxFuH2-be8plnKc.crl (hash: n5fFODX1+FE/baVR9x8yUndNrJKZDl9ZOOQWhD6M8zQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:db:28:67:21:a9:6b:0b:53:03:de:4d:89:c9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Validity
Not Before: Mar 26 01:01:10 2026 GMT
Not After : Mar 27 01:01:10 2026 GMT
Subject: CN=421a87dd4676bcae2cd2f1cf640e5a310b1fb354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:03:f9:86:70:65:7d:1a:06:5e:2d:72:4b:67:
71:7b:6a:39:62:02:8e:fe:cc:2f:6a:6a:fd:2c:35:
a1:d3:20:14:0a:43:21:34:4f:47:ae:16:6f:c5:6e:
17:31:c4:b7:33:a1:21:5e:b0:48:fc:5d:e4:c4:47:
78:ae:50:4e:18:5e:6a:a7:79:0b:9d:54:83:4d:7c:
15:14:fd:b2:11:49:77:69:02:52:df:68:7a:75:67:
11:a4:f0:e6:6d:c2:f2:2a:48:18:6c:32:08:27:73:
66:19:c2:72:88:cd:db:80:9f:23:e1:a1:93:7d:bd:
d7:50:58:8a:f1:b9:fe:ce:b6:29:df:0e:d9:02:dc:
66:18:de:07:62:8c:c5:3f:ed:16:46:cf:c6:75:cc:
dc:bf:b7:65:cf:f8:74:43:41:da:56:14:24:e8:a9:
45:e4:51:f5:44:36:79:34:86:2c:de:7e:fb:bc:31:
6c:b7:48:64:51:65:92:2d:91:9f:79:86:ff:72:b2:
ce:5f:b4:f4:b9:31:e2:d7:a1:4d:40:2f:3a:a0:22:
78:8c:ad:4a:18:d0:c5:e2:ad:91:e6:62:0e:f1:da:
a1:68:03:a3:86:06:1c:b4:00:1d:d8:b4:59:fd:d7:
2f:dd:9b:64:80:e6:6b:11:0f:9e:25:52:22:a2:b6:
24:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:1A:87:DD:46:76:BC:AE:2C:D2:F1:CF:64:0E:5A:31:0B:1F:B3:54
X509v3 Authority Key Identifier:
keyid:C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:21:1c:6a:05:d5:23:2e:41:5a:c0:38:b6:83:7e:f8:34:38:
c6:5d:4f:1d:78:a8:37:40:75:a6:e8:c9:f9:f9:43:f8:8c:ba:
fc:cc:c8:30:20:08:48:9a:6c:fc:19:be:9d:24:2b:23:8a:a2:
45:3a:21:bf:f3:c4:5c:08:a7:64:d0:ff:26:d1:11:4d:1b:d3:
c2:73:b4:5c:bb:8e:4f:9e:9f:71:1a:9d:4e:ee:91:75:f4:97:
e6:7b:27:fc:47:e1:5f:8c:07:cb:b7:c1:b2:27:0b:15:75:f7:
73:6c:96:35:fe:77:5f:eb:c1:4d:77:78:e7:a4:74:b9:d2:7b:
ad:06:a6:bb:b5:c7:e1:76:c6:80:cb:90:86:5c:7d:a0:8f:56:
60:44:09:16:fc:23:2f:13:14:4e:cd:91:86:e3:db:7e:26:45:
92:c5:8d:ad:2b:5d:6c:48:88:57:75:d0:c0:5b:f0:cd:a8:e9:
d9:80:9f:a6:2f:fc:6d:8d:81:ea:79:a6:6d:60:57:c4:52:42:
98:99:15:e1:91:f2:e0:26:30:6b:67:ad:af:d9:c1:7a:1c:86:
3b:b3:44:d4:16:fd:2f:16:5c:0b:75:7b:22:cf:f6:e5:ab:b4:
a3:03:ad:27:4d:ae:dd:8c:0a:05:e2:9d:fe:14:09:3f:86:1e:
64:79:f3:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:08:12 2026 by rpki-client