Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
File: xVFHJIBoPGGXD2BfsZnuturhIYs.mft (raw, json)
Hash identifier: RZn8sS1dXzHT9oUXL4OW6ScyYGzayMOLWcEYlJetd58=
Subject key identifier: C5:03:91:85:50:75:44:82:D9:89:B0:5B:44:0B:23:BC:87:B7:E8:CB
Authority key identifier: C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
Certificate issuer: /CN=c551472480683c61970f605fb199eeb6eae1218b
Certificate serial: 019D2627E85E6C099E414475BC59425CEE3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
Manifest number: 1588
Signing time: Wed 25 Mar 2026 18:00:42 +0000
Manifest this update: Wed 25 Mar 2026 18:00:42 +0000
Manifest next update: Thu 26 Mar 2026 18:00:42 +0000
Files and hashes: 1: mAjzWoi04qK6NnjPrTZ48XaGykQ.roa (hash: P8midNKI0EeB3alRGfjHU2gINYYSKmlfTyo7mKM/3qw=)
2: xVFHJIBoPGGXD2BfsZnuturhIYs.crl (hash: +tk7m/2sRIsTmvQND9YDbegzmTZp+Ccp2BslFPZCkho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 18:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:27:e8:5e:6c:09:9e:41:44:75:bc:59:42:5c:ee:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c551472480683c61970f605fb199eeb6eae1218b
Validity
Not Before: Mar 25 18:00:42 2026 GMT
Not After : Mar 26 18:00:42 2026 GMT
Subject: CN=c503918550754482d989b05b440b23bc87b7e8cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3e:97:68:ae:6c:2e:35:bd:0e:92:0b:65:06:
c2:4e:d9:c9:33:88:fe:d9:f6:ae:15:c2:13:d2:4d:
1a:45:e1:c1:c6:5b:2e:a2:4d:42:03:32:ea:21:5f:
a2:9f:60:4c:0b:92:b4:12:ff:26:9c:eb:14:29:46:
d7:a9:ce:83:83:30:1a:f6:89:93:5d:15:62:a5:f1:
c8:02:ce:69:f9:b5:ec:5a:dd:8a:a2:4b:9c:d9:15:
5e:b7:96:90:52:0e:b1:5a:86:69:ff:a4:77:9f:79:
8d:eb:26:3b:ec:82:81:c2:db:7b:86:bc:8b:79:e6:
24:12:05:1c:35:56:6e:81:83:d7:aa:a4:fa:eb:00:
0f:5e:75:6e:e5:73:e7:3a:ee:b0:3c:aa:e8:3f:7f:
c4:20:b2:2a:b4:37:29:3f:13:db:3b:d1:25:e4:4c:
7f:75:3c:a2:b9:b1:b3:11:fd:c5:81:3a:d5:5b:7e:
53:d0:bc:91:f6:59:ac:0f:6b:91:58:4e:6e:cc:eb:
03:2a:c7:fc:e2:8a:a3:5d:cd:41:33:75:48:fa:2b:
09:51:6a:40:60:ea:45:14:ea:1b:3d:10:fe:e4:62:
86:35:bb:2a:10:53:1f:86:e3:ae:41:4b:67:1c:cf:
88:f7:1a:b7:e2:14:0b:a6:18:de:6b:bc:d3:81:05:
54:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:03:91:85:50:75:44:82:D9:89:B0:5B:44:0B:23:BC:87:B7:E8:CB
X509v3 Authority Key Identifier:
keyid:C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:80:c3:dc:55:ed:92:6a:86:c0:91:83:6b:37:a3:a9:1b:5f:
a1:89:2a:5f:bc:f4:44:a2:ae:e8:a2:42:ad:49:c9:9f:2f:51:
52:d9:58:79:e8:40:8e:34:5d:fb:9d:d5:38:ca:5b:21:7c:ca:
98:77:fc:34:58:73:ef:10:3f:0a:e1:c3:b4:72:b1:34:49:fa:
d6:f4:e4:6e:cc:68:6d:26:ed:2f:41:a0:45:9b:51:56:fb:fb:
df:db:23:0c:e3:62:89:3b:5d:ac:7b:eb:19:69:c5:3e:4f:59:
d5:e5:29:28:53:7b:e0:2f:41:33:b9:dd:2d:50:eb:c6:f9:63:
df:a9:9e:c8:b2:f9:4d:98:7d:0b:86:e7:1c:92:a9:cb:76:e1:
e9:9f:f0:93:fc:00:f2:9d:a2:04:9a:e0:11:66:d9:20:65:60:
7f:68:34:ae:6b:76:44:fb:76:cf:f6:3b:eb:5a:f3:3e:c3:d0:
e2:45:a1:61:e3:82:6c:d5:45:d9:4a:94:46:2e:c8:e4:72:02:
5f:2b:c9:8b:8b:3a:5f:ea:ce:73:02:64:a9:88:68:1d:4c:a0:
f1:1a:82:78:2d:e8:f1:68:27:d8:e0:1a:bd:14:de:47:2c:6a:
62:cf:06:bd:70:09:2a:67:8f:02:48:8e:ce:a0:e7:0c:2d:d1:
f0:b9:1f:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:37:37 2026 by rpki-client