Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
File: xFz9uYA84FcULRh_hrxPVnHX63s.mft (raw, json)
Hash identifier: r14d4H9i8SWjPU5g68rj2QNqfhdoaZU/X9tAaEVFhXU=
Subject key identifier: 64:AB:56:96:4D:06:2C:06:FC:B7:C0:21:15:2A:60:54:F7:16:56:67
Authority key identifier: C4:5C:FD:B9:80:3C:E0:57:14:2D:18:7F:86:BC:4F:56:71:D7:EB:7B
Certificate issuer: /CN=c45cfdb9803ce057142d187f86bc4f5671d7eb7b
Certificate serial: 019D27039894ACDA6156D557C0280D503C8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
Manifest number: 1880
Signing time: Wed 25 Mar 2026 22:00:40 +0000
Manifest this update: Wed 25 Mar 2026 22:00:40 +0000
Manifest next update: Thu 26 Mar 2026 22:00:40 +0000
Files and hashes: 1: xFz9uYA84FcULRh_hrxPVnHX63s.crl (hash: bd6L18oy9ipdAWOLdJFJWO7tMSKrKZrlbl04JWQeHi8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:98:94:ac:da:61:56:d5:57:c0:28:0d:50:3c:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c45cfdb9803ce057142d187f86bc4f5671d7eb7b
Validity
Not Before: Mar 25 22:00:40 2026 GMT
Not After : Mar 26 22:00:40 2026 GMT
Subject: CN=64ab56964d062c06fcb7c021152a6054f7165667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d1:db:98:4c:fa:09:50:ac:1b:a8:52:48:3b:
c8:4a:9f:fb:4c:d5:d3:40:1a:6a:5c:39:d8:2a:74:
6f:fb:f5:75:94:f3:bb:98:2f:82:4e:01:74:f5:2c:
dd:7e:2d:62:b7:7e:97:f0:2a:e2:4f:33:91:11:d7:
66:0f:74:ae:8b:84:a5:6a:98:23:56:b2:8e:4d:d3:
41:2e:1a:0e:7c:bd:8e:bb:9e:e8:0e:a6:76:48:82:
0c:51:95:00:9a:3a:83:87:40:bf:d2:41:34:6f:dc:
d7:20:e4:13:00:50:5d:f7:d9:21:72:0c:11:4f:2a:
c5:25:4a:fd:8b:fe:d1:ae:1b:dc:50:e6:6d:b6:69:
d2:a0:b2:a1:a8:82:15:4c:59:9e:c8:ec:c8:73:b1:
47:d7:e8:e7:9c:4d:c7:d2:76:af:29:ac:25:29:e9:
96:12:ed:05:a7:36:6d:cb:1b:26:f0:63:54:b8:0b:
fa:56:b0:2a:51:5f:26:35:58:e4:dd:f0:80:e6:e1:
93:d8:4e:43:ff:cb:cf:e0:7b:07:2c:f1:ea:57:ec:
e5:1b:33:35:7d:77:da:e1:2b:70:9b:95:2a:e5:d4:
c0:4e:96:84:0d:c1:e0:e8:b4:05:ec:91:bf:ff:b8:
8c:aa:cf:b1:d9:8f:a7:e5:8a:c3:2f:d2:06:94:29:
aa:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:AB:56:96:4D:06:2C:06:FC:B7:C0:21:15:2A:60:54:F7:16:56:67
X509v3 Authority Key Identifier:
keyid:C4:5C:FD:B9:80:3C:E0:57:14:2D:18:7F:86:BC:4F:56:71:D7:EB:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xFz9uYA84FcULRh_hrxPVnHX63s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b254bd-145c-4019-88a4-d5a177178f4a/1/xFz9uYA84FcULRh_hrxPVnHX63s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:d1:8c:ac:f5:2c:bf:e5:9a:97:01:fc:d1:fc:84:a8:82:89:
7a:b2:7f:d9:bd:68:9e:fe:71:4e:c9:2e:8d:5c:b0:f5:d0:6c:
45:fa:db:2d:2d:81:6a:df:5b:df:30:e6:49:93:f8:2b:78:6e:
39:2f:38:7c:84:83:e3:c0:f6:1f:14:5e:75:f0:f4:3e:11:18:
46:ef:95:ef:0e:ce:c3:05:04:10:83:7f:36:9d:eb:a2:4d:cd:
26:39:30:68:b4:0d:52:62:12:a0:10:5f:82:2d:f8:b9:c6:67:
e1:24:67:8e:ae:78:c4:3a:45:db:25:b8:83:6f:17:fe:80:e3:
2b:4c:f5:9f:c3:eb:af:f8:f8:c4:2d:ad:06:07:fa:82:ee:98:
58:be:52:57:f5:75:24:fd:d0:ed:86:19:0e:c3:54:2c:c2:5e:
a6:47:de:ea:9b:54:c5:8a:63:63:68:71:63:3f:18:62:89:53:
8b:a8:48:3a:79:7c:1d:67:39:69:02:d9:a2:1e:37:d1:86:3a:
b7:1b:fc:12:32:f6:20:52:fe:da:2c:fc:e8:24:66:86:65:1d:
fa:79:ea:6e:d2:de:35:51:58:1a:ca:c6:ed:f0:c7:c9:67:5b:
2f:ed:32:bc:48:8d:49:4a:45:f9:92:d2:63:b0:04:29:b4:2c:
fd:f8:98:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:17:11 2026 by rpki-client