Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
File: XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft (raw, json)
Hash identifier: JDqmx7VMM7UX6x2k0+MgBMMWKrD+IbburUQjIv1O54s=
Subject key identifier: 5A:ED:DD:44:F9:15:95:45:14:7A:3E:A6:AA:0E:CC:28:A5:C0:3B:63
Authority key identifier: 5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36
Certificate issuer: /CN=5de458f21d406466bdf68240f505eefd197ba936
Certificate serial: 019D28F2DB3F15C16BDFF4458FCDAEB194BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
Manifest number: 188A
Signing time: Thu 26 Mar 2026 07:01:37 +0000
Manifest this update: Thu 26 Mar 2026 07:01:37 +0000
Manifest next update: Fri 27 Mar 2026 07:01:37 +0000
Files and hashes: 1: XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl (hash: winGtDmVCu2bDOZBeJ7X8vS9mXlgFjb2LAdadN66DwE=)
2: i4eEi_MJmmYfUqfd7JjdOwAtBfc.roa (hash: GUYHjtH4qDoS+nBA7gPOzvHqwLi2k+v4VmAAo9jm4uA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:db:3f:15:c1:6b:df:f4:45:8f:cd:ae:b1:94:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de458f21d406466bdf68240f505eefd197ba936
Validity
Not Before: Mar 26 07:01:37 2026 GMT
Not After : Mar 27 07:01:37 2026 GMT
Subject: CN=5aeddd44f9159545147a3ea6aa0ecc28a5c03b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:90:80:32:d1:6f:d3:00:f7:c0:35:a5:9d:c4:
60:4a:3d:9d:1c:75:3d:6c:ea:26:9a:6f:88:61:5f:
93:cc:4d:9b:2a:43:22:38:9a:47:4b:9f:0d:c5:7f:
b4:dd:7a:93:f9:09:35:47:08:a1:99:0a:15:43:3b:
2c:8a:82:d0:f8:b7:f2:b9:63:2e:c3:36:23:e0:10:
04:b5:27:c6:cb:b7:78:0e:be:b5:35:42:8d:50:d8:
0f:31:89:56:9d:34:eb:ab:2c:ea:9a:fb:90:18:ac:
13:b5:56:a0:1a:b6:ec:7e:f0:b5:bd:63:69:ff:29:
d8:3d:7a:28:4a:c0:ee:fb:fb:10:26:ca:84:c2:8b:
fe:c8:ee:fb:e5:82:40:86:ff:d3:f7:cb:58:22:0d:
a1:c2:80:63:ab:9f:8b:9a:a0:6c:3d:ae:2c:54:45:
f1:c2:4f:bd:02:b7:2d:ff:ab:a7:62:7b:7c:8b:5f:
b7:11:2d:a5:1a:8f:6c:9b:f1:99:29:4c:2b:ae:f7:
18:bf:e2:46:72:05:46:60:0a:25:23:bf:19:98:39:
d9:77:9b:66:8c:27:fb:f2:79:c6:a1:50:8d:b3:35:
9a:ec:bd:c2:34:b7:c7:60:0d:c0:f8:c3:5d:ac:e6:
09:d6:9c:92:5a:01:18:c8:18:8b:3b:f4:1c:7e:9d:
86:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:ED:DD:44:F9:15:95:45:14:7A:3E:A6:AA:0E:CC:28:A5:C0:3B:63
X509v3 Authority Key Identifier:
keyid:5D:E4:58:F2:1D:40:64:66:BD:F6:82:40:F5:05:EE:FD:19:7B:A9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeRY8h1AZGa99oJA9QXu_Rl7qTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/e155ea-88cd-4414-aab6-23ab58d6415a/1/XeRY8h1AZGa99oJA9QXu_Rl7qTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:ee:8f:69:ae:66:ed:10:34:a8:ee:51:7a:49:d1:8e:2f:06:
0d:03:3a:56:bd:b7:58:80:6a:8c:52:c4:53:c9:e3:db:37:dd:
ff:6e:18:94:7d:7f:ec:b0:bb:60:2c:67:ea:70:f4:9f:d7:d0:
0b:05:6f:d0:49:98:8c:8e:77:50:7c:87:4d:e7:76:17:bb:69:
ed:28:54:6e:18:0f:dd:ca:65:57:ee:e8:0e:78:b6:7e:df:73:
85:28:29:8c:d8:cc:9a:2c:92:56:84:4c:66:04:6d:ab:1e:13:
65:9b:04:81:11:e1:64:6f:fb:51:b7:19:08:c4:94:78:bf:26:
65:7e:55:58:c3:37:21:26:58:a4:fa:08:84:97:b8:d9:da:03:
d8:0b:54:56:12:7a:20:3f:ed:a5:aa:87:cb:bd:a3:b0:03:d8:
0a:fb:24:45:12:62:8c:0b:c4:17:26:4b:ab:73:2b:9f:2f:d0:
09:1b:7f:37:8f:43:56:77:0e:38:7b:8a:c5:dd:14:b0:2f:79:
62:45:8b:dd:50:cb:28:9e:6d:93:8e:95:0a:c7:ec:28:88:78:
77:d8:cb:3d:eb:f8:2e:09:c8:80:4a:35:2d:b5:b9:8b:19:37:
80:3c:45:23:74:9a:a4:f7:14:96:ca:9a:9d:6c:f3:fb:ba:96:
3f:f6:86:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:59:24 2026 by rpki-client