Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
File: XICE2xnxE9gbZEg5P60cEyxYT80.mft (raw, json)
Hash identifier: D+eVki0bA4997zSkG1yPiFyJmSMn3okRXmcdBN1KTmE=
Subject key identifier: A5:45:8F:4E:85:B1:B5:09:DF:64:EC:04:F7:F2:D0:99:0F:AE:60:F0
Authority key identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
Certificate issuer: /CN=5c8084db19f113d81b6448393fad1c132c584fcd
Certificate serial: 019D27DFEBC4599CA426160E1C90894AAB1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
Manifest number: 118A
Signing time: Thu 26 Mar 2026 02:01:19 +0000
Manifest this update: Thu 26 Mar 2026 02:01:19 +0000
Manifest next update: Fri 27 Mar 2026 02:01:19 +0000
Files and hashes: 1: XICE2xnxE9gbZEg5P60cEyxYT80.crl (hash: L5u2fzfWhiCTmo/rSBcWu7BUxCGWKdg02xbBWSKHilQ=)
2: qXa05Pm4susE6h1kgPXqtx4ui2U.roa (hash: bVr1M0Wzu14ImKwiIYB0nxHAmPqsQWuDaJyg7tqZvAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:eb:c4:59:9c:a4:26:16:0e:1c:90:89:4a:ab:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c8084db19f113d81b6448393fad1c132c584fcd
Validity
Not Before: Mar 26 02:01:19 2026 GMT
Not After : Mar 27 02:01:19 2026 GMT
Subject: CN=a5458f4e85b1b509df64ec04f7f2d0990fae60f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ba:a0:9b:18:ec:5e:63:3e:18:18:d0:f1:3d:
4e:b4:34:2e:dc:cd:13:24:a0:64:db:0f:5a:66:3b:
21:47:c3:db:ff:88:81:e3:8a:cb:3b:fd:0b:0d:b8:
3a:ad:99:8b:c8:81:bb:e6:92:90:31:1c:86:de:39:
56:6d:e2:a3:ff:ba:05:1c:e4:c2:29:fd:db:48:d6:
87:8b:a1:00:b0:c1:1c:f8:ea:4f:5e:20:72:a3:87:
0d:ac:f9:75:54:0e:79:bc:2c:69:e2:47:dd:3f:40:
f8:de:c2:61:d6:b6:9d:b4:97:d9:04:25:4f:df:36:
59:c1:a8:1c:45:90:f9:c4:ba:9d:51:a0:00:3a:29:
4d:bc:2a:39:55:c0:2c:22:03:b3:da:36:0c:d2:e9:
f8:eb:f7:a2:90:41:ce:13:9c:4c:52:f8:5e:ea:1a:
85:ef:50:d6:73:32:85:e6:dc:3c:5e:15:24:40:02:
12:dc:98:3b:5a:09:44:e5:48:39:7d:83:26:06:08:
bd:d1:a3:82:bb:1e:36:d7:ae:3b:f5:cd:6f:54:f1:
68:8a:47:db:62:f9:c6:d5:2e:3a:35:50:db:ec:18:
d0:f8:d2:8d:33:99:21:a3:88:7b:4a:fe:04:27:55:
ab:73:aa:3e:aa:d4:62:a0:c0:3d:1c:98:94:57:b8:
ff:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:45:8F:4E:85:B1:B5:09:DF:64:EC:04:F7:F2:D0:99:0F:AE:60:F0
X509v3 Authority Key Identifier:
keyid:5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:b9:69:0d:0c:48:9e:da:87:44:bc:8b:ba:24:b4:85:6e:01:
c8:1b:a5:4e:07:a3:7b:c8:30:06:eb:a4:98:44:85:4e:c0:86:
d2:81:d8:e3:11:f7:f0:c8:e3:43:06:d0:58:27:a3:a3:40:49:
e9:f7:a8:0f:69:aa:c3:31:50:9c:5e:be:af:2c:7f:72:56:38:
58:d0:b2:a6:49:8d:fa:41:89:ea:e7:c1:8d:a2:53:41:a3:b0:
9e:d5:c5:e6:ad:4c:75:ad:0b:04:fc:c1:25:40:85:46:15:20:
8b:04:34:92:1f:6f:12:a5:0e:7b:b1:db:28:d8:47:10:73:ec:
65:53:27:d4:ac:c9:fe:d1:c0:9d:02:fa:8d:c9:09:6e:c5:d8:
17:2e:ce:b3:f0:23:7d:09:c2:15:d9:39:74:3a:87:2f:29:28:
67:0a:8e:5d:21:d2:8b:73:0e:63:98:bb:ab:aa:d3:89:e2:c3:
05:fb:66:00:18:b2:4c:0a:e4:13:c9:95:88:2d:6d:0b:1a:25:
5e:4b:4e:3d:e3:e0:62:1a:69:2a:75:8e:60:4d:00:9c:d1:f4:
3e:bc:95:e8:af:aa:8c:e8:ba:8b:c4:11:5f:77:3c:73:a4:81:
7a:68:fe:18:af:50:85:98:46:eb:be:65:d2:bc:f6:ea:77:73:
0f:43:cc:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:58:16 2026 by rpki-client