Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
File: XM814TYW15djDR4lQAwTxiEfUAw.mft (raw, json)
Hash identifier: i5heNegrFUtkPKhcs3yIq5T5/jrk1BKEaAXuUrlj9V4=
Subject key identifier: 64:51:0A:14:32:72:92:CE:18:E3:6D:62:20:04:CF:92:0C:03:0D:77
Authority key identifier: 5C:CF:35:E1:36:16:D7:97:63:0D:1E:25:40:0C:13:C6:21:1F:50:0C
Certificate issuer: /CN=5ccf35e13616d797630d1e25400c13c6211f500c
Certificate serial: 019D2929A4018342492C52BAEF9FA1D248BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
Manifest number: 0242
Signing time: Thu 26 Mar 2026 08:01:27 +0000
Manifest this update: Thu 26 Mar 2026 08:01:27 +0000
Manifest next update: Fri 27 Mar 2026 08:01:27 +0000
Files and hashes: 1: D30kUtfoFIu60sm6RYYK6TaB79k.roa (hash: pH+2Tpg4nCk6cSuxhVv6OIDISdwdQhjgBdPN7UeRmd8=)
2: XM814TYW15djDR4lQAwTxiEfUAw.crl (hash: lDo0GfkmZRLwNl54sQIZH12oTzxzTIOhQjNkdF21564=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:a4:01:83:42:49:2c:52:ba:ef:9f:a1:d2:48:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf35e13616d797630d1e25400c13c6211f500c
Validity
Not Before: Mar 26 08:01:27 2026 GMT
Not After : Mar 27 08:01:27 2026 GMT
Subject: CN=64510a14327292ce18e36d622004cf920c030d77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:1c:f8:ba:5d:30:40:e9:ac:e0:9c:73:74:08:
9c:bc:f0:af:d1:23:90:51:45:6a:63:17:82:12:62:
97:4a:1c:85:92:10:d2:19:76:68:38:b0:b7:75:bf:
1e:6e:93:f1:b8:8d:6e:a6:75:39:0b:54:b1:b9:5b:
b5:0f:11:d2:6c:1e:d2:b8:bd:ce:1d:d8:f7:eb:6b:
36:fe:66:a1:39:88:96:6c:c7:ee:4f:73:e2:ff:3e:
84:c3:aa:0f:3b:6e:4e:93:ad:3b:d9:f6:a2:96:bc:
6e:5e:19:0a:ec:f3:56:51:66:90:13:6e:4e:8c:f8:
00:64:27:3c:b4:3f:ec:11:b7:71:f3:46:8b:55:64:
2a:77:de:11:95:bb:22:c1:83:51:7d:97:b9:7b:f2:
f0:78:89:78:21:20:95:6d:a3:a9:e1:a8:7d:a3:96:
0a:c2:d8:15:48:20:85:3e:77:e6:dd:77:eb:eb:90:
6d:80:c9:f6:63:c1:a7:2c:e4:47:4b:c9:ad:9e:4a:
05:ff:f0:07:f3:ce:07:53:15:94:c2:c4:00:f0:ef:
ec:d1:55:03:24:54:ac:54:62:34:2f:6d:f4:2e:46:
bf:b1:f0:6f:b1:ea:61:32:f2:52:c4:51:71:bc:20:
e7:58:79:71:9c:80:c8:f9:13:e1:4f:62:19:82:ee:
de:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:51:0A:14:32:72:92:CE:18:E3:6D:62:20:04:CF:92:0C:03:0D:77
X509v3 Authority Key Identifier:
keyid:5C:CF:35:E1:36:16:D7:97:63:0D:1E:25:40:0C:13:C6:21:1F:50:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM814TYW15djDR4lQAwTxiEfUAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/cb6bf5-3ac5-413d-b898-4fef15e7dead/1/XM814TYW15djDR4lQAwTxiEfUAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:9f:34:04:87:1b:94:86:b5:8a:2b:0f:33:6b:52:6b:10:c0:
7d:5f:bc:5a:b7:35:01:0b:4c:f3:45:f7:8b:3b:88:92:9c:9f:
55:28:1a:97:e5:35:a0:a8:c8:e5:5a:de:f7:5e:e0:36:b5:96:
c8:09:5c:ee:12:07:88:75:58:af:cd:20:b7:c0:70:f4:39:d9:
7b:86:28:32:3e:fd:cb:01:ed:67:9a:b7:f5:35:16:33:79:99:
85:cf:59:f9:b6:fd:54:85:39:5d:43:a3:53:73:da:81:23:30:
99:d8:5e:5c:29:e7:f7:a1:49:4c:bd:e9:e7:03:d1:f8:31:d7:
12:14:db:68:fb:af:34:57:46:8b:34:56:45:ae:c7:0e:e8:d2:
9b:67:55:c4:01:61:dc:45:72:a2:64:fa:c2:d3:29:66:d0:50:
ba:19:9b:ce:95:08:8d:0c:d8:5e:b9:48:4a:f6:bf:d3:44:39:
76:9d:c3:2b:3d:71:e9:fe:41:d0:b9:be:54:7a:a7:94:d7:c9:
a5:b8:56:06:d5:58:0d:a1:89:be:40:31:65:b0:09:1a:59:64:
21:4a:29:22:89:4a:01:11:21:0c:41:45:2c:c9:9d:ed:6b:6b:
f3:2d:3a:e1:93:d2:af:6b:fe:3c:94:99:e3:f7:aa:f2:e3:6b:
63:f7:3b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:49:53 2026 by rpki-client