Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
File: XQwn-FWB4ue94MmPvVS-HUlnBRc.mft (raw, json)
Hash identifier: 2YLq5XdXty1dsg6Up2Qccezz90L6cuJnCRKaF6cIgZU=
Subject key identifier: 3B:6F:81:76:52:8C:0E:74:68:97:D7:08:9A:70:01:2A:5C:7B:68:66
Authority key identifier: 5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
Certificate issuer: /CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Certificate serial: 019D29292C5DBF14420CE5CFEB5291FDBA8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 08:00:57 +0000
Manifest this update: Thu 26 Mar 2026 08:00:57 +0000
Manifest next update: Fri 27 Mar 2026 08:00:57 +0000
Files and hashes: 1: XQwn-FWB4ue94MmPvVS-HUlnBRc.crl (hash: 5Qf8i5k+UBlBi1p53gnm6Elv/c9Ao6Rb2H89Znm5rUw=)
2: vBd96lvIsDsfGISTsOxkg88egXA.roa (hash: RnnbPzBvvvPoGwsnPKy9bGG71tb5eaAdI+LKM3Dltq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:2c:5d:bf:14:42:0c:e5:cf:eb:52:91:fd:ba:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d0c27f85581e2e7bde0c98fbd54be1d49670517
Validity
Not Before: Mar 26 08:00:57 2026 GMT
Not After : Mar 27 08:00:57 2026 GMT
Subject: CN=3b6f8176528c0e746897d7089a70012a5c7b6866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a2:85:73:a1:9e:36:32:7d:dc:86:a9:ea:63:
aa:be:58:ed:76:ca:bd:d1:97:98:74:8f:ba:a0:b9:
dd:be:43:45:35:6b:07:8e:fb:29:a9:64:92:d6:4f:
84:c0:6e:3a:c9:48:d7:dd:ff:2c:17:b3:c5:86:66:
6e:6c:b2:2a:e2:d5:f5:ad:0d:76:3d:cd:15:e6:6e:
ef:57:f7:95:2a:22:2f:6a:b2:68:c6:7e:c8:94:a2:
47:af:b0:c8:75:f7:df:37:fd:ea:57:54:d2:7f:fa:
28:cc:61:51:cf:23:47:53:31:8c:d0:c5:ef:dc:ea:
5e:4d:3a:9a:0d:53:63:06:e1:14:ac:b7:3e:0a:65:
c0:cf:f8:8c:29:c3:09:8d:04:61:47:e9:99:f8:9e:
95:48:33:8b:a9:7f:0d:62:d5:7e:c0:f5:78:03:53:
c8:b8:83:46:ef:0f:b4:e8:0b:f1:c5:cf:05:ca:9b:
d2:c3:18:22:e9:66:d0:01:10:73:9d:6a:49:28:6c:
84:71:c8:73:58:04:23:8b:be:16:f6:d5:ad:86:0c:
42:2e:1a:7f:1e:13:53:35:82:c5:07:32:9a:8a:da:
22:5f:71:2c:bf:3a:5d:37:20:8e:f4:b1:cd:6e:51:
57:a6:72:5e:d8:8a:50:96:c5:57:75:aa:f6:e7:66:
0e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:6F:81:76:52:8C:0E:74:68:97:D7:08:9A:70:01:2A:5C:7B:68:66
X509v3 Authority Key Identifier:
keyid:5D:0C:27:F8:55:81:E2:E7:BD:E0:C9:8F:BD:54:BE:1D:49:67:05:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XQwn-FWB4ue94MmPvVS-HUlnBRc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f787a9-5763-4c36-8c73-341f5173fcf7/1/XQwn-FWB4ue94MmPvVS-HUlnBRc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:62:b6:9a:bd:8a:5b:66:28:6e:9c:e9:e3:c1:90:eb:1d:5e:
35:55:20:9d:3f:a7:c8:70:3c:be:fa:95:25:f4:1f:80:78:3c:
b4:08:61:b7:0a:e3:18:21:f7:26:1a:1f:b0:c1:3c:30:4f:53:
8f:8b:2a:3a:27:e8:cb:7e:8d:1b:04:d7:5d:44:84:ea:87:2b:
92:46:86:c3:f0:d7:37:bf:ae:af:a7:98:37:d5:0c:7d:90:73:
6e:5f:f1:be:1c:f7:7e:17:2d:75:aa:34:09:6b:86:7d:27:71:
b3:89:36:d5:30:08:26:0d:5a:38:06:ca:6d:8d:52:6c:13:57:
ce:b1:09:96:a5:7c:6c:06:1b:36:70:7f:3c:a9:9b:57:0d:94:
4a:96:f7:6d:eb:8c:26:81:bf:06:07:01:56:be:b2:72:b2:e8:
df:5d:cf:5e:9d:ec:7a:d9:eb:a9:c5:22:dd:73:43:be:37:97:
ec:59:0c:04:6d:cd:b0:ea:d9:8f:b6:35:e5:fe:38:da:a7:fd:
b2:66:d5:e5:5f:b1:86:04:f8:fd:fd:ee:e8:a9:2b:bf:96:de:
ea:fb:9e:8d:30:3e:21:d1:53:44:90:9b:6c:da:6f:32:e8:fc:
c0:16:ac:4e:50:90:c5:4a:0f:3f:0f:9f:22:0e:8b:12:b1:d9:
ce:01:7e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:29:12 2026 by rpki-client