Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
File: XX9jQBQHwcx5excDToE9IlT5dz4.mft (raw, json)
Hash identifier: MCg7ASi69o1gZY+bzY67hdoNs9VEHzCl16vpo0pUv7g=
Subject key identifier: 82:22:30:30:42:1C:D3:B1:92:BD:E5:D9:66:A9:0A:12:CA:DC:11:05
Authority key identifier: 5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
Certificate issuer: /CN=5d7f63401407c1cc797b17034e813d2254f9773e
Certificate serial: 019D26289CD0294BB487D67E7A33ADA17627
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
Manifest number: 0F1D
Signing time: Wed 25 Mar 2026 18:01:28 +0000
Manifest this update: Wed 25 Mar 2026 18:01:28 +0000
Manifest next update: Thu 26 Mar 2026 18:01:28 +0000
Files and hashes: 1: IJctrhezjfWjiA84ZaayWYeZh1k.roa (hash: VetyKsjNSyH6fNCp1k97xHgv6Vja8yJIQbMcO2qIjkU=)
2: XX9jQBQHwcx5excDToE9IlT5dz4.crl (hash: Voa7LMyoc0BVHqtXSWosRDT3r1no2aRZeaQKr6iowTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 18:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:9c:d0:29:4b:b4:87:d6:7e:7a:33:ad:a1:76:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7f63401407c1cc797b17034e813d2254f9773e
Validity
Not Before: Mar 25 18:01:28 2026 GMT
Not After : Mar 26 18:01:28 2026 GMT
Subject: CN=82223030421cd3b192bde5d966a90a12cadc1105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:67:37:03:10:fe:93:1b:db:5e:a9:9e:74:c5:
3c:4b:fe:c0:e5:ca:68:b4:66:39:17:ab:da:e3:dc:
8c:64:dc:de:8e:7e:fd:55:ea:7d:39:02:5e:74:51:
d3:89:32:a8:97:c6:46:a0:d3:8a:2a:99:76:a9:92:
65:0e:57:fe:96:aa:ad:f2:3a:8a:61:8e:30:09:b2:
2f:45:65:bd:2b:b1:5c:67:f4:19:7d:21:1b:c7:44:
a3:f9:87:bf:b0:09:53:ca:ab:2a:c5:d3:85:c2:19:
0a:d4:84:0c:f6:b9:c1:31:c4:8e:5a:6a:6e:df:e1:
86:59:0b:a7:88:98:40:21:16:b5:51:f1:af:99:e8:
12:43:5b:70:b1:f9:f2:a9:d7:99:a8:4b:bd:4a:15:
7c:d3:c2:6d:73:28:f0:76:fd:98:69:54:26:e8:59:
8c:b1:3d:2d:fe:4c:e5:50:08:8a:c1:cc:1d:50:44:
b1:c1:93:6a:a3:ae:62:79:77:57:20:7c:04:00:5a:
c5:44:8e:57:0a:4a:75:29:a1:3e:05:a9:b8:0d:df:
dd:10:2f:3c:f1:b2:00:22:17:b6:07:ab:61:71:11:
65:a2:b2:21:3c:fd:d1:96:09:3d:e4:b9:20:4a:63:
a6:34:c5:33:7e:2e:26:a7:8e:13:18:4c:9d:48:b4:
be:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:22:30:30:42:1C:D3:B1:92:BD:E5:D9:66:A9:0A:12:CA:DC:11:05
X509v3 Authority Key Identifier:
keyid:5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:1a:5d:eb:41:60:55:83:0d:da:12:6f:b1:ce:ef:62:79:41:
21:d5:df:c6:2e:10:60:1e:ee:6f:10:e3:25:99:f8:c5:7a:d1:
00:c1:10:3d:cd:d8:04:87:cd:85:ff:7b:bc:b1:86:23:41:c8:
a2:86:3f:74:0a:26:c9:03:64:31:09:ce:cc:da:42:78:e7:fd:
98:e9:83:75:1c:2b:1c:9b:97:c3:b5:74:26:ed:c1:51:bb:2e:
08:41:c0:b0:e0:05:d6:55:98:6d:e3:20:a9:ea:bb:7c:1a:bc:
6a:96:84:74:a2:41:18:00:71:d1:74:11:83:47:b3:67:0a:09:
0d:e1:64:53:73:28:69:03:da:15:a9:9d:1c:9f:62:77:74:20:
c0:d6:5b:48:11:40:d9:fe:38:d2:43:c4:a8:b9:a2:66:ef:83:
0e:6f:31:13:a9:7e:ff:10:f8:45:49:3f:55:4f:b1:0d:41:5e:
23:1a:12:2b:80:c0:47:2a:a0:c2:8e:90:d3:dd:3b:8b:c8:81:
e3:c1:63:e8:16:f2:53:87:85:b0:59:76:fe:c7:ce:6a:41:a7:
1a:81:91:37:de:c2:58:f3:a8:5e:7f:cd:10:cb:2f:0f:6c:c0:
8d:55:e2:ff:1b:b6:4c:60:db:f7:31:63:88:5e:2b:92:33:47:
52:f9:87:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:36:33 2026 by rpki-client