Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
File: XeYTaCVSAQKY86aUoA18WQYGC5U.mft (raw, json)
Hash identifier: ZbfDr+fRqF7VuoDioLTEiF3V0oRQzxCjJN8QbCNNs9o=
Subject key identifier: BA:0A:F3:ED:3C:FD:2C:66:67:51:F8:47:C9:8B:4D:FB:C7:2E:70:3A
Authority key identifier: 5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
Certificate issuer: /CN=5de613682552010298f3a694a00d7c5906060b95
Certificate serial: 019D26CCFD2D9E72AE1E0A9B9FCA0DCB6A08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
Manifest number: 1889
Signing time: Wed 25 Mar 2026 21:01:01 +0000
Manifest this update: Wed 25 Mar 2026 21:01:01 +0000
Manifest next update: Thu 26 Mar 2026 21:01:01 +0000
Files and hashes: 1: 8E85CKuNqBtAq_mQnEGUCCO3R10.roa (hash: CgmtiE0mp6q+6KobblRjrSYw7pd0zVbtE+o0y7MhUQQ=)
2: XeYTaCVSAQKY86aUoA18WQYGC5U.crl (hash: qKRiEeZAfqcd2BcGOjJITL5ynCkGzdW5IGnwE8Z55ec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:fd:2d:9e:72:ae:1e:0a:9b:9f:ca:0d:cb:6a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de613682552010298f3a694a00d7c5906060b95
Validity
Not Before: Mar 25 21:01:01 2026 GMT
Not After : Mar 26 21:01:01 2026 GMT
Subject: CN=ba0af3ed3cfd2c666751f847c98b4dfbc72e703a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:09:25:bd:e0:18:a6:32:75:50:97:f5:b6:c6:
a7:dc:b5:75:79:10:cf:20:9b:8b:79:23:70:ed:68:
86:24:a2:04:40:19:c6:b8:66:b2:df:1d:02:fa:0e:
22:94:e5:f1:dc:63:30:f8:af:36:1c:7d:a8:7b:b8:
05:fa:83:33:d6:cd:1b:b1:11:1f:03:09:8a:01:59:
15:0e:2c:db:c4:72:88:39:8e:1d:0b:d9:51:02:47:
51:88:78:64:f0:bd:2a:f2:c1:e5:d8:46:38:22:7d:
1c:ab:b6:ab:76:b2:27:1a:fb:30:f3:a3:3a:45:45:
9f:68:7f:08:93:4e:9e:80:5a:89:45:c2:62:ff:ca:
a1:fd:e2:68:f3:49:cd:05:5e:5a:9c:bd:88:4a:b6:
68:08:dd:98:bc:08:f4:0c:c0:a8:bb:a7:93:88:d5:
55:4a:8f:8e:ca:ee:c1:3d:50:ee:ac:a6:3e:a2:0b:
fb:9a:c4:00:5d:e5:46:14:55:30:70:d3:43:0a:c6:
44:03:93:90:fe:08:2f:95:39:a4:31:00:38:41:b0:
2d:69:3a:bb:27:87:ee:88:e6:41:68:c7:00:01:f5:
18:a9:83:30:6e:3f:d5:4b:18:96:15:44:dd:ef:f1:
62:3b:06:10:02:59:d6:5d:95:a6:66:cd:5f:bf:2e:
a7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:0A:F3:ED:3C:FD:2C:66:67:51:F8:47:C9:8B:4D:FB:C7:2E:70:3A
X509v3 Authority Key Identifier:
keyid:5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:29:ac:86:b8:c5:d7:8c:86:34:81:8a:de:1d:5f:f1:c8:52:
82:f1:a4:e7:94:c0:ea:5a:63:a9:e9:fb:78:46:ca:da:85:c1:
e1:13:99:e9:ac:40:1a:fa:90:77:c0:72:fc:71:e1:e4:97:cc:
a7:40:e2:5d:dd:89:af:cb:7a:04:f7:97:fb:13:37:2d:68:55:
20:3d:3e:34:b1:5e:fb:e8:38:8d:02:aa:a1:37:99:c8:78:7f:
37:2c:f0:44:10:cb:fc:45:d7:e3:44:26:27:de:4c:92:ae:20:
34:6f:99:5b:35:c6:08:8c:53:87:8e:40:d0:ff:6a:f1:ca:bb:
e9:cb:2f:a1:9b:15:c7:a0:46:0a:90:9e:d5:11:40:8d:00:2b:
0d:a8:aa:d6:ab:9a:31:9a:ad:f2:92:66:7b:de:b9:cd:3a:60:
48:0f:53:98:03:7d:05:87:2e:b9:66:81:60:80:0f:6a:68:17:
50:10:92:60:7e:d7:1a:59:c4:c0:d1:ac:87:5c:63:b5:7b:59:
b8:3e:31:24:89:1c:04:73:d8:33:06:cc:e0:62:00:8e:07:04:
dc:f3:da:09:4f:0a:4b:97:14:74:2c:3f:a7:09:f0:02:6b:e0:
b3:04:35:6d:cb:96:09:7b:d4:fc:d4:d2:8e:ed:6b:8e:20:a1:
af:bd:8f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:11 2026 by rpki-client