Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
File: X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft (raw, json)
Hash identifier: BM+TiWiQY2r4koeAurMxjdPz0JoVsaLoS2s6nGa+j1A=
Subject key identifier: 2E:BA:EE:F7:E3:14:1C:3D:ED:7A:33:FB:4E:00:2D:B0:5A:09:A9:45
Authority key identifier: 5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
Certificate issuer: /CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Certificate serial: 019D28BB6F0E2BC05C51EC8B142D2B78D8D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
Manifest number: 1882
Signing time: Thu 26 Mar 2026 06:01:05 +0000
Manifest this update: Thu 26 Mar 2026 06:01:05 +0000
Manifest next update: Fri 27 Mar 2026 06:01:05 +0000
Files and hashes: 1: X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl (hash: Z09qPts3CkOkMv6w4OpAiDCgBG0aezJ1oi1fRutizpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:6f:0e:2b:c0:5c:51:ec:8b:14:2d:2b:78:d8:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Validity
Not Before: Mar 26 06:01:05 2026 GMT
Not After : Mar 27 06:01:05 2026 GMT
Subject: CN=2ebaeef7e3141c3ded7a33fb4e002db05a09a945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:13:01:22:ae:02:f5:bc:04:cc:d2:5a:92:ab:
d1:8a:3c:89:09:c4:30:3f:70:29:e9:5f:e8:d1:71:
21:99:3e:6a:9b:e1:ad:d0:a6:51:43:8f:16:9b:ee:
f1:f9:f0:70:c2:0d:e9:73:e7:5b:8a:b5:03:f2:ac:
4d:f3:c4:6f:a8:6f:96:1c:d9:dc:fd:6e:2a:a8:32:
47:a1:eb:7e:64:60:af:c9:fc:94:e8:66:fb:89:28:
79:4e:f3:08:37:ba:a5:42:57:fa:7b:18:d9:e0:93:
6e:0a:32:16:e9:2f:37:30:66:db:40:52:1b:94:8b:
20:aa:a1:b9:7c:ea:9b:87:3e:35:3b:ae:be:58:e8:
42:65:3d:66:b2:91:50:3b:5e:6c:f0:8a:25:a1:f8:
52:9f:b5:b5:42:c3:84:aa:81:53:74:b1:ee:e6:dc:
8f:a4:15:72:b0:54:ad:e1:e7:cb:76:ff:36:09:12:
cf:bc:f2:a4:e3:91:c1:91:ed:de:d7:17:fe:56:69:
9f:e8:71:42:6e:68:be:92:1a:af:27:69:93:b8:cf:
a4:f8:16:d9:8d:7a:66:54:f3:4a:b3:30:8d:72:0f:
9b:8b:b5:22:46:cb:12:15:97:aa:da:40:af:cf:1a:
0f:93:f1:d3:8e:40:c6:59:3d:b6:2d:05:3c:c1:b6:
79:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:BA:EE:F7:E3:14:1C:3D:ED:7A:33:FB:4E:00:2D:B0:5A:09:A9:45
X509v3 Authority Key Identifier:
keyid:5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:5f:a3:55:b3:0a:7d:99:be:4d:00:b0:cb:05:96:a1:0d:81:
14:9f:79:7f:12:ac:1f:cf:8b:0e:79:2b:49:2a:1e:a7:81:e6:
4c:e7:bc:5f:b2:7d:67:e6:cb:5b:20:b8:43:6b:6c:90:db:ff:
93:bd:0c:1d:1d:2f:8c:fe:4b:6f:97:43:25:a4:71:1d:0e:db:
9d:e6:ce:f4:83:64:b5:f6:2a:56:af:87:5d:c6:dc:c4:a4:91:
e2:7f:b4:bb:8e:79:6e:d6:9f:e7:3f:8d:00:eb:f9:0a:08:73:
06:87:2d:5c:78:4b:26:73:f3:09:d2:de:10:da:08:c8:fe:b9:
85:c8:71:bf:2b:a6:5b:16:37:8a:0f:04:85:6c:18:0a:d4:f1:
97:fc:b3:8f:05:c2:d4:b3:31:5b:47:61:27:ad:a8:3a:07:87:
9a:23:e2:64:93:3a:83:97:89:bc:8f:76:68:2b:13:89:88:54:
5f:c6:17:32:94:82:7b:4b:c5:20:d6:0c:0b:6d:b7:3a:b9:5b:
9e:58:c4:e0:cd:65:81:19:62:7d:01:0a:6c:d3:0c:54:74:fe:
34:dd:a2:b1:80:16:18:74:8d:b7:41:39:c0:a9:41:d2:08:ae:
41:a0:c7:a3:15:8e:eb:0e:c1:61:39:21:b8:01:06:12:1a:9d:
cb:40:14:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:13:28 2026 by rpki-client