Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json)
Hash identifier: l93WEjW9hWLtgXf76+SX6+cAVVulxVnG74lgk5+5Sq8=
Subject key identifier: B5:41:6A:9D:5E:1D:00:5E:17:97:E3:27:FC:72:EB:D3:F8:3C:98:73
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 019D27DF4E71F8AE595873D54160CECFF3E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 02:00:39 +0000
Manifest this update: Thu 26 Mar 2026 02:00:39 +0000
Manifest next update: Fri 27 Mar 2026 02:00:39 +0000
Files and hashes: 1: OS8EDWL74n3CtFxmTxNOolYhsvA.roa (hash: yF17P4v/AdaI5VNNKOl9FtUJuOAbQSvTKgj5Ha/kk7s=)
2: RrlPj_5PMLmauOZbV-XxFE0jClU.roa (hash: +JGjuqCo+HgEGZGs0mkuqnIL4NPJWqKMaUK/A5KXgqw=)
3: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: GsJd/WbObRIgMLP3gGZWcj012zyW1qITAxVIPyfvkXQ=)
4: dL_9twvmgLzMs895oA64iiDmIEY.roa (hash: LgJcVms5Pq7JFZ8+OO+s5X+XVI8uKF8XIm98bwsR7Lk=)
5: m_016GliLd1us5Dyp3gWd_9XmZU.roa (hash: NGfX/rkS6vQZZNfEtGY8uwL12Vk9X/AaXVk/NGit2hQ=)
6: wEd_ihwz_Sc9Z7253Egu-wb4rYs.roa (hash: JaUYZqefug6H01TWJts1HEcFIA5lKpx4F7+av5F+33Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:4e:71:f8:ae:59:58:73:d5:41:60:ce:cf:f3:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Mar 26 02:00:39 2026 GMT
Not After : Mar 27 02:00:39 2026 GMT
Subject: CN=b5416a9d5e1d005e1797e327fc72ebd3f83c9873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:98:da:97:01:14:da:66:4c:a3:a6:1a:13:4c:
de:c3:5d:c4:06:39:b9:b6:86:53:72:29:73:7d:dd:
77:3e:62:92:61:ce:62:ab:b9:dd:05:d4:3b:8d:48:
72:82:22:38:7f:e8:60:34:1e:9d:8d:7e:4f:f4:d8:
d9:d0:e8:be:15:df:32:91:74:99:1d:65:7d:1e:89:
c2:3c:3a:bc:90:47:68:ee:d9:7e:56:a0:38:ce:38:
c1:ae:8d:30:db:ce:c3:69:62:12:bb:c8:70:cc:31:
6e:10:d0:9c:3c:f2:b8:d1:96:ce:df:d9:35:71:f2:
ea:c6:c0:02:66:7d:65:28:28:fd:5d:15:bb:d9:a3:
15:8e:34:47:a0:ac:42:18:0e:04:28:d9:6b:c2:88:
55:d0:26:cf:17:6c:4d:50:4e:67:41:f2:67:e6:51:
96:75:c9:7f:73:d7:c8:67:ed:92:6c:a7:e1:79:2f:
bb:34:84:4b:9e:0b:a4:01:e7:76:01:18:81:89:fe:
cd:b9:cc:78:e6:31:c7:7c:32:e2:3d:d6:fc:9f:7c:
72:16:b9:9a:d8:cf:92:b0:29:90:48:64:df:94:84:
0f:b6:d6:f3:c9:d8:ae:20:ae:0d:2f:20:b6:35:ca:
2c:84:fa:b3:9d:c0:a9:84:8d:19:d5:45:ee:86:2a:
a2:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:41:6A:9D:5E:1D:00:5E:17:97:E3:27:FC:72:EB:D3:F8:3C:98:73
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:01:be:f1:e2:13:e6:c1:ac:49:e2:78:ec:66:d7:b8:2a:c7:
bb:d9:cc:61:61:65:ff:9a:93:b0:4d:ed:0b:c4:c5:eb:66:58:
f8:c3:ef:b9:97:34:c2:6e:2b:24:98:c3:7e:de:e8:c9:f9:c5:
2d:da:14:2c:0f:38:33:ce:f0:ca:16:4b:f4:6a:6d:08:47:32:
fd:f9:6d:b2:6a:09:b8:39:d3:65:49:91:89:22:16:13:c8:d6:
6f:08:1b:32:1f:80:a7:52:1d:c6:53:68:55:a9:d4:37:4f:20:
91:78:07:56:7d:b4:38:1c:ca:f1:46:d2:fc:d9:80:05:eb:14:
f1:7c:ae:98:08:80:67:83:c1:c4:a5:b5:f4:20:fa:a9:82:28:
21:30:71:3b:2b:66:81:ec:3c:06:26:f1:27:41:f7:7f:8a:6c:
f7:5f:5c:ea:1b:45:f6:7b:4c:f0:63:fb:4c:71:11:eb:29:d7:
27:73:cd:f3:d7:32:a7:3e:4b:93:85:f0:49:07:43:37:28:92:
d3:84:bf:2b:80:6b:e0:3d:71:9b:ac:59:5d:83:1b:01:34:cd:
3f:2d:6a:7e:44:40:ff:41:aa:04:5e:62:9a:6c:c6:c8:3d:ce:
2b:56:d7:ce:60:ed:d6:02:ce:a5:52:65:4b:83:60:54:5d:d0:
cf:bd:e2:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:26:53 2026 by rpki-client