Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
File: xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft (raw, json)
Hash identifier: /7YdMr1OQihKuqOPczjVIFx3KCWqfAqfVpfMVZqBkug=
Subject key identifier: E6:7E:8A:64:EB:C0:EF:C2:86:8B:09:38:EC:21:AF:5A:4F:34:A0:FC
Authority key identifier: C6:3B:E7:53:74:67:8D:B3:A0:49:F6:A3:EF:2A:FA:B7:0D:4F:6F:27
Certificate issuer: /CN=c63be75374678db3a049f6a3ef2afab70d4f6f27
Certificate serial: 019D254C6C39C05FB87D9E80E1F1F18590FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
Manifest number: 07F1
Signing time: Wed 25 Mar 2026 14:00:58 +0000
Manifest this update: Wed 25 Mar 2026 14:00:58 +0000
Manifest next update: Thu 26 Mar 2026 14:00:58 +0000
Files and hashes: 1: mI2eJ7owlng-a2RTBGJSB2dC0xc.roa (hash: Mtyhcf44MGwkMCoMpod+PD8wPTtDOMEI8pvJgEO7E5k=)
2: xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl (hash: mb9K+VwZfXM8zDmHA0S40/nmLt2CvKtl710qwOhMLhY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 14:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:4c:6c:39:c0:5f:b8:7d:9e:80:e1:f1:f1:85:90:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c63be75374678db3a049f6a3ef2afab70d4f6f27
Validity
Not Before: Mar 25 14:00:58 2026 GMT
Not After : Mar 26 14:00:58 2026 GMT
Subject: CN=e67e8a64ebc0efc2868b0938ec21af5a4f34a0fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:50:72:cf:f1:d1:88:0d:eb:2c:e7:66:c9:ec:
19:7a:63:3c:a5:47:d6:ed:67:fc:54:17:6f:b9:7f:
1e:c9:3a:8d:ca:2c:bb:13:aa:d6:f6:d5:ec:ca:f0:
bc:bc:ab:1a:83:88:26:aa:15:40:1f:a6:d9:e6:82:
57:56:2b:da:b9:47:26:1b:0f:43:5c:07:c1:f1:66:
3e:fe:cb:a0:67:c4:a3:f4:b2:52:6d:fe:50:cb:ea:
1c:c5:dd:2e:cc:f0:db:65:66:d5:d5:fc:2f:04:86:
6d:3b:e8:35:66:c8:28:60:17:96:18:e9:e3:40:83:
13:80:90:2d:3e:42:82:f2:a5:96:a1:d9:62:07:3a:
0e:b6:6b:2e:00:72:56:dc:85:d2:08:fa:e2:6e:4e:
03:e2:b5:2f:77:3b:fb:2b:ff:1a:c5:55:8c:2b:90:
c9:bb:1a:ad:2c:1a:01:fd:74:11:68:9c:3c:9c:26:
58:ff:76:59:3d:a2:68:46:3b:6d:de:74:d7:0d:b5:
30:27:21:2d:30:73:18:fa:54:10:eb:59:cc:18:a2:
e7:67:36:a3:e1:51:22:48:83:ce:e4:fa:cc:08:17:
3b:e6:25:bd:6d:ca:1a:0b:9e:5a:87:df:e7:92:36:
af:c4:78:f6:b1:5f:d9:42:f3:d4:64:dd:37:3b:2a:
87:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:7E:8A:64:EB:C0:EF:C2:86:8B:09:38:EC:21:AF:5A:4F:34:A0:FC
X509v3 Authority Key Identifier:
keyid:C6:3B:E7:53:74:67:8D:B3:A0:49:F6:A3:EF:2A:FA:B7:0D:4F:6F:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/056677-1a4a-48a6-a92d-6b3b867bd232/1/xjvnU3RnjbOgSfaj7yr6tw1Pbyc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:28:3d:94:b0:50:01:1f:37:1f:da:9c:4f:f5:38:8a:c0:39:
87:a5:e2:fd:de:18:2a:24:53:d6:69:4f:68:19:3f:12:fa:46:
65:ad:75:57:99:35:bb:2a:8c:b4:6e:23:6d:57:3e:6a:35:6f:
8a:94:91:21:7c:c8:dd:35:5e:82:50:94:3c:d1:5d:f2:d3:d1:
e2:79:17:6c:36:58:b3:ed:57:8e:92:21:83:ac:ea:bb:05:f1:
a5:d7:ef:b1:ba:9b:53:88:0b:67:aa:e7:a5:96:e2:c8:3b:39:
59:7f:33:11:67:6e:71:17:36:2b:9f:40:f7:f3:4a:0f:74:35:
fa:d0:39:4c:fb:48:6d:87:ab:8a:d5:54:7e:a3:a0:94:35:fb:
97:e6:8b:fd:79:4a:55:d8:5b:bb:7c:e9:3d:86:66:9d:ca:f9:
22:94:d0:b8:3f:1b:ea:a1:eb:7b:18:92:df:81:9a:db:be:d9:
c0:66:24:bb:82:e7:76:66:48:dc:55:0a:35:b1:d3:c5:62:71:
93:65:d0:1b:2f:8b:c6:a9:b4:43:89:65:ed:2d:76:09:01:1f:
70:11:04:61:74:08:54:fd:73:8b:18:2b:0e:0a:de:8b:b1:66:
d6:40:e3:12:11:67:05:af:85:80:94:cc:d0:ec:1d:08:f5:9b:
cf:ab:9b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:53:19 2026 by rpki-client