Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: /vrTomvlCnlCFUOyPJlUIYVi7ijgwGqhN2SUYMNKkfA=
Subject key identifier: 47:04:81:D4:FE:00:38:52:A1:CE:F4:3B:FF:EF:9F:75:B0:C6:0F:34
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 019D26CD0F91C80C24DD08C74DB317A3F0AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 0D96
Signing time: Wed 25 Mar 2026 21:01:06 +0000
Manifest this update: Wed 25 Mar 2026 21:01:06 +0000
Manifest next update: Thu 26 Mar 2026 21:01:06 +0000
Files and hashes: 1: Fnr8UBCRPeUQhRVFOAHVctCKPfo.roa (hash: PgOyYUmMG9zgljOcOgtP5byxd2cN3HfKRRt85MDBTwk=)
2: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: 8uJnhHe8fb2t9aCn/mbBHla5GjXEzG1VsGZxYI7KUdc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:0f:91:c8:0c:24:dd:08:c7:4d:b3:17:a3:f0:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: Mar 25 21:01:06 2026 GMT
Not After : Mar 26 21:01:06 2026 GMT
Subject: CN=470481d4fe003852a1cef43bffef9f75b0c60f34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:94:a8:d0:ad:48:fa:6a:dd:ce:12:e4:73:fc:
78:d2:f8:ba:1c:60:a8:d8:f1:35:c0:02:f2:66:7b:
73:3e:71:52:16:0b:aa:33:11:1b:0a:35:be:c5:68:
39:19:00:19:8e:15:0d:0b:9c:43:e5:7f:06:4a:0f:
97:f9:54:2a:0b:f8:60:2a:d1:d9:33:71:65:7e:e9:
23:2a:c5:02:89:89:96:e7:6d:33:ae:ab:a3:0a:96:
5c:20:66:61:22:f9:b8:91:11:95:84:7e:16:cf:26:
0f:99:09:c0:1d:65:9a:32:5e:89:bf:3d:b0:dc:e8:
ed:3a:af:ab:b1:0b:f6:61:43:6e:05:6c:e0:3b:8a:
01:9c:3f:1b:ed:99:7e:18:c2:4d:05:79:d9:d8:1d:
53:c7:3c:61:ff:00:2c:1b:ef:fe:25:60:a5:b2:18:
fd:75:8f:f4:ba:3e:de:7a:54:97:de:0f:e3:aa:65:
d6:75:25:46:05:c4:9f:bc:28:f4:f8:fc:39:e9:d9:
96:e2:cc:9e:8e:82:96:9a:28:08:09:48:33:0a:70:
27:1d:39:f5:47:06:d5:5c:50:95:e8:3a:54:ed:a0:
d3:a8:3e:93:a3:76:84:62:ff:af:22:2a:a4:db:6d:
29:e9:a1:eb:e8:55:35:1b:1a:c9:d5:b0:11:56:e1:
ac:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:04:81:D4:FE:00:38:52:A1:CE:F4:3B:FF:EF:9F:75:B0:C6:0F:34
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:be:55:45:15:18:56:83:97:33:63:04:3e:8d:fc:9f:f8:bd:
74:b0:22:4b:6f:72:a9:3b:f3:78:03:ae:cc:50:36:e8:a1:a3:
85:e6:b0:02:e4:68:8d:8b:5a:13:b1:92:e6:43:b1:aa:a1:8f:
0d:6a:6c:fc:5e:09:8a:df:5e:ac:f9:e1:3a:4e:0d:c6:88:c3:
35:06:2a:70:17:de:90:43:0c:30:a7:7b:a1:32:1c:0b:52:8f:
02:e3:a0:3f:3c:f0:42:7b:28:bd:95:49:80:69:91:2c:d8:b7:
14:49:7f:78:ea:40:a9:d6:e1:8d:f0:b5:cd:fc:b1:08:2e:97:
a4:41:1a:6c:f5:11:72:4e:e8:e3:e9:2a:21:5f:52:20:30:af:
75:81:48:30:bc:67:fa:3a:e6:a0:55:8e:6f:0a:84:9d:f8:2f:
f1:94:74:5e:4b:d2:d1:62:72:bf:8a:fb:c0:21:2b:60:c2:29:
f8:d0:83:a2:13:7d:6f:5d:0a:10:49:98:62:eb:cc:9a:f1:fe:
a4:4f:c5:39:56:3d:16:60:83:cf:e3:1d:55:17:18:03:ab:71:
6f:b3:71:ac:80:dc:1b:82:4e:65:7e:f7:4d:ec:a2:0b:fd:3e:
61:60:ce:af:9a:63:80:6b:8d:fe:1c:39:86:80:19:14:68:a3:
ed:1c:e3:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:43:11 2026 by rpki-client