Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
File: XQwn-FWB4ue94MmPvVS-HUlnBRc.mft (raw, json)
Hash identifier: k2uSBuuhFnNIN2mkm3KvrR9UY+ILVrvxUSMF3cuUZYo=
Subject key identifier: 20:F1:4A:0A:5D:BC:9D:46:97:91:C3:1E:42:25:0D:EA:56:75:F8:9F
Authority key identifier: 5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
Certificate issuer: /CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Certificate serial: 019D2B17AF083D48C63DD5FF59B5F7ACECE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 17:01:05 +0000
Manifest this update: Thu 26 Mar 2026 17:01:05 +0000
Manifest next update: Fri 27 Mar 2026 17:01:05 +0000
Files and hashes: 1: XQwn-FWB4ue94MmPvVS-HUlnBRc.crl (hash: AalYsxGi6LbEYun0BhCQbXCnW+zyTcFb8vEtyjkRRRg=)
2: vBd96lvIsDsfGISTsOxkg88egXA.roa (hash: RnnbPzBvvvPoGwsnPKy9bGG71tb5eaAdI+LKM3Dltq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 17:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:17:af:08:3d:48:c6:3d:d5:ff:59:b5:f7:ac:ec:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Validity
Not Before: Mar 26 17:01:05 2026 GMT
Not After : Mar 27 17:01:05 2026 GMT
Subject: CN=20f14a0a5dbc9d469791c31e42250dea5675f89f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:1d:8b:33:9d:67:fb:0b:37:0f:f6:25:75:a8:
68:52:16:bc:ad:75:d7:c3:02:5f:60:6b:7c:56:15:
c5:ac:9d:57:0a:65:79:73:bb:2c:4e:70:d7:f2:7f:
b1:d2:05:20:1a:a2:9d:6c:9b:3b:3c:d7:aa:3c:11:
77:be:84:91:59:69:f1:b8:f0:e5:ba:46:ea:ee:0a:
a3:7d:5b:db:fa:ae:a0:bb:7d:45:60:aa:1b:3d:22:
98:32:a2:03:68:d7:a1:ca:50:1f:07:46:3f:3d:81:
f8:e9:9a:58:25:77:cb:87:61:ff:73:b7:51:28:49:
32:be:9f:c5:75:45:bb:42:ce:5c:ec:8b:92:f6:86:
83:61:71:49:8d:b2:ce:f5:10:fb:a1:7b:6a:4f:3c:
c0:73:24:c4:f8:6f:c4:53:fb:65:01:a8:34:a6:dc:
ff:73:78:a0:b8:10:78:b3:41:c1:d8:e5:92:1b:b4:
db:d9:79:f4:eb:cf:02:20:e9:cf:3f:8d:e2:33:43:
83:45:66:c1:02:b3:2d:ed:6a:af:ed:3b:43:d0:a5:
8f:3b:4e:13:69:06:d7:f9:c7:4c:b6:c4:7f:e3:b2:
8c:1b:3e:c3:97:7f:98:df:5c:74:ef:55:61:e5:bf:
05:84:66:d9:38:f1:09:2c:2c:d3:3f:95:66:9b:86:
16:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F1:4A:0A:5D:BC:9D:46:97:91:C3:1E:42:25:0D:EA:56:75:F8:9F
X509v3 Authority Key Identifier:
keyid:5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:36:cc:db:5d:29:1f:f0:73:6c:9b:e4:51:0e:55:b1:c7:68:
d4:2f:35:aa:3a:82:d0:d4:bf:f6:0d:0d:58:1c:e9:77:70:9d:
4c:b9:84:35:1a:e2:df:aa:87:1a:e6:b0:58:5b:b6:e4:25:d3:
28:03:13:f2:14:ae:76:bb:07:9b:6b:a9:23:71:64:41:45:9d:
93:88:2a:a4:62:fe:e4:c2:ce:7e:04:12:27:7f:d9:42:45:9a:
53:bc:b2:71:96:4f:10:ac:be:43:c8:63:4b:25:e0:de:d9:7d:
9f:ee:e6:4e:8b:9d:48:fe:3b:63:77:88:24:86:fa:b0:a9:bb:
41:91:a4:ac:8a:cb:f3:2e:24:70:90:51:e2:70:f1:a9:6c:3e:
74:1a:92:af:20:8e:ef:e2:27:6d:a7:61:b8:70:7c:9b:0e:ee:
6f:34:b9:bd:b1:93:9b:de:05:30:3f:49:31:41:32:78:dc:71:
c0:2b:eb:38:d6:01:48:e1:92:a2:37:c9:28:06:6a:3f:0d:4f:
94:be:cc:52:57:d8:73:d4:f5:d5:e1:b7:74:d3:15:d6:cc:54:
ef:af:fb:b3:c9:05:c4:de:15:cd:0b:a1:53:87:22:69:1f:77:
a2:91:89:9e:bd:64:22:5a:ae:3b:20:88:75:92:74:0c:f6:9a:
60:fc:60:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 04:10:10 2026 by rpki-client