Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json)
Hash identifier: xRfk6rl6wZf9ZQFwYUlcz2JkI0Ibqrg4psXdv3u42Ws=
Subject key identifier: 1F:40:FC:C1:B1:F0:56:DA:AB:A1:91:62:FE:33:98:DF:5C:B0:D7:EB
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 019D265FDF531E69F0F6F69DC0DC366BF840
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
Manifest number: 1036
Signing time: Wed 25 Mar 2026 19:01:50 +0000
Manifest this update: Wed 25 Mar 2026 19:01:50 +0000
Manifest next update: Thu 26 Mar 2026 19:01:50 +0000
Files and hashes: 1: 2Nc5AsSnBWzCuxjbHnI5SDdmCKE.roa (hash: IY9E1+Z/A+D4/xzAfwUZ6RBDyrzbb4T4cIqPhChpPt8=)
2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: UosrYfy6oxieNiXDkqT2oCBIRpAWjiNw/cvgrCxqqxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:df:53:1e:69:f0:f6:f6:9d:c0:dc:36:6b:f8:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: Mar 25 19:01:50 2026 GMT
Not After : Mar 26 19:01:50 2026 GMT
Subject: CN=1f40fcc1b1f056daaba19162fe3398df5cb0d7eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:f6:32:68:97:7d:1b:c9:72:0b:75:19:3f:0c:
5e:ab:34:22:7b:2a:0c:ab:80:44:d3:ad:e7:80:81:
66:5a:31:e1:01:db:3f:37:24:1b:b7:be:7c:7b:70:
f4:6d:0b:dc:e4:fb:4f:3a:65:83:c9:f2:88:dd:e1:
3a:28:3e:9b:20:90:1d:00:a5:96:bc:44:55:f9:68:
fd:ed:51:90:ab:27:da:da:29:84:98:3b:3a:63:67:
62:1f:f0:db:ad:f4:3b:16:2a:6d:94:0b:28:75:b7:
33:41:1a:51:61:99:78:73:60:71:a4:ee:a0:c5:fb:
a9:67:68:56:6a:f1:67:74:ba:ce:dd:19:02:b6:00:
57:74:3c:95:52:dd:c3:3c:73:4f:61:91:6b:68:85:
60:57:f8:34:65:87:c0:7a:47:22:e9:59:e7:99:8c:
28:b7:8b:f5:8e:da:e3:15:26:26:1e:d5:c5:c2:20:
e8:c0:c3:a7:98:2d:aa:d1:56:89:09:75:82:87:74:
4f:83:ed:a6:a2:c2:cc:df:44:f0:ac:d8:44:69:7e:
a0:97:5d:6c:7d:5c:30:21:87:82:a4:0b:e0:e2:0e:
3c:31:91:45:44:ec:88:93:23:6b:f3:a3:65:d7:fa:
ea:07:47:56:0a:7b:fc:3d:9b:50:95:80:49:22:55:
08:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:40:FC:C1:B1:F0:56:DA:AB:A1:91:62:FE:33:98:DF:5C:B0:D7:EB
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:f3:11:b8:f7:f2:71:52:07:c1:3c:f1:3b:4d:80:83:44:78:
ca:1f:c9:ad:57:a8:10:fc:b9:cd:35:e9:3c:4f:df:06:c1:cb:
bf:c4:e0:df:e3:28:ce:fc:17:aa:11:e9:ae:a5:b1:d9:67:32:
85:c0:1c:c5:f5:19:ea:99:fd:c0:18:9d:96:bc:35:c4:15:41:
43:17:a5:d1:43:1a:d7:61:cb:c0:19:86:41:73:25:68:da:53:
d1:5a:c2:d1:b2:e9:5a:89:66:96:07:e6:e9:56:24:7e:d5:3f:
42:06:62:7e:9d:aa:33:7b:6c:48:a2:6d:40:27:57:54:0b:9c:
0f:fa:73:d1:d8:67:6f:2b:6d:e2:6e:29:6e:16:11:15:57:64:
1b:81:ec:6d:76:f9:c0:ee:cb:6a:bd:84:9a:12:9b:e8:c5:3e:
6f:a9:cc:ff:d3:f5:ae:72:8d:b3:7d:83:ce:6b:81:58:01:19:
85:39:17:65:72:a3:03:27:a1:ad:eb:4f:72:8b:30:98:d4:c0:
29:70:4a:d9:9b:60:68:e2:21:c7:70:c5:20:6c:64:65:1e:90:
ed:fd:b5:e4:10:3a:89:3e:3b:20:25:b5:53:18:19:4b:43:79:
b1:3d:6c:77:ca:eb:ef:57:d9:41:bd:dc:04:b4:ed:bc:0e:ee:
24:e5:7c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:38:26 2026 by rpki-client