Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json)
Hash identifier: hK5cYR943RXFH6TZZWtRscnMpwgdfCQPVsvvsXh7Sbs=
Subject key identifier: 98:48:5A:0A:88:A9:52:4E:34:ED:C2:4C:60:EF:E0:BE:DF:CB:2E:E8
Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Certificate serial: 019D2628661A923C7B330AE68FDDDA55C57F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
Manifest number: 188A
Signing time: Wed 25 Mar 2026 18:01:14 +0000
Manifest this update: Wed 25 Mar 2026 18:01:14 +0000
Manifest next update: Thu 26 Mar 2026 18:01:14 +0000
Files and hashes: 1: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: tD4discyqNgLo5XECH2Yt2MAu+OihjQy5dZ2VSlWlVo=)
2: z9U8nnktCizSYk1_4LI0Qkbtcns.roa (hash: POiizupDwGmr1N0Ok5nxERS6rP+EfVEg0CxJ8RCMqp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 18:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:66:1a:92:3c:7b:33:0a:e6:8f:dd:da:55:c5:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Validity
Not Before: Mar 25 18:01:14 2026 GMT
Not After : Mar 26 18:01:14 2026 GMT
Subject: CN=98485a0a88a9524e34edc24c60efe0bedfcb2ee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:da:6a:38:83:2c:c0:6e:21:5f:f6:48:28:70:
eb:ee:68:ad:7c:18:43:99:70:ef:18:ae:2c:77:71:
30:64:bf:fa:5b:57:08:58:68:e7:6b:86:31:55:d8:
55:31:d8:91:3f:ea:54:f7:19:4d:d5:9e:41:26:f8:
70:bb:a7:72:37:df:e8:c4:42:1c:32:5b:4f:63:93:
77:52:fc:45:54:50:b8:56:f7:20:32:f8:82:60:26:
97:b0:3d:39:7a:5d:cb:8a:e3:c5:01:34:c2:55:08:
b1:45:8b:59:11:a4:19:cb:2a:64:42:a5:4d:5b:7d:
a5:e1:79:4d:99:73:a8:86:2f:12:69:f8:8d:9a:39:
fc:8f:32:c7:ad:9f:03:e8:1d:26:0b:27:f8:30:fe:
54:1c:fb:a7:4a:6f:3d:e8:b3:73:83:ce:24:2a:23:
59:07:45:66:da:04:2c:67:b0:27:18:3f:c3:da:c8:
4f:77:3f:91:06:46:45:b3:0b:b7:fc:ab:12:77:78:
8f:c5:d0:c5:32:f0:80:4e:b6:ef:d7:3e:0b:b0:e4:
3c:69:b3:39:f6:a5:f4:01:61:c8:99:4f:08:ed:09:
4a:2f:af:a3:cf:93:d0:3f:d6:82:c0:55:42:2d:bc:
8e:90:ec:c7:c7:70:56:7f:0d:72:a9:35:d1:f6:ec:
9f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:48:5A:0A:88:A9:52:4E:34:ED:C2:4C:60:EF:E0:BE:DF:CB:2E:E8
X509v3 Authority Key Identifier:
keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:98:a1:e2:db:49:2d:b9:a4:aa:67:c5:b5:d7:64:66:5e:bd:
c3:5c:c0:64:76:bb:e2:08:8d:cc:a2:5d:90:db:9f:47:24:75:
66:c2:49:fb:89:aa:9a:17:2c:d8:1a:d8:14:a2:f9:09:84:94:
00:ab:69:eb:fe:b6:98:5f:ed:9d:9f:f1:59:e1:61:6b:1e:12:
6c:1a:b3:cc:40:95:7b:80:65:9d:e0:8e:c2:2c:07:3e:1e:25:
31:e3:9c:b6:32:f3:30:d2:5c:7b:ee:06:31:1f:36:ea:a6:43:
52:9d:5e:1e:24:f4:91:62:06:b9:8f:c4:1b:21:04:a4:b0:e7:
bd:bf:b8:81:52:21:ac:a0:61:76:f0:a5:bc:d5:d4:80:19:9d:
90:fa:2e:32:ef:ed:d3:14:ca:17:42:56:f6:08:e5:be:eb:c6:
07:6f:87:e1:5e:dc:d2:e6:1f:e2:cf:f2:9b:c9:a6:8c:4e:f3:
4c:4c:7b:ad:a9:79:07:0d:30:bb:4a:90:7d:b5:7a:20:86:84:
b0:8f:49:83:05:31:cb:9c:35:13:b0:e8:eb:c2:07:c9:5d:b5:
33:90:c6:36:3e:80:53:04:3b:aa:9c:53:88:df:15:4d:3e:76:
20:bf:4d:d7:cd:f0:a9:a0:bc:aa:77:83:3c:90:2f:03:7c:b9:
ef:40:68:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:58:35 2026 by rpki-client