Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
File: XYHR_0WxVHwAqEtG75nsot-9Rbw.mft (raw, json)
Hash identifier: HzjDr5U6/cJ96z3oUsAxnpsf+D0Na0n0Xp1tLoBQ0sY=
Subject key identifier: 02:54:A9:7C:DD:7F:87:E9:28:2C:E2:50:B5:5C:D3:46:E6:9F:08:20
Authority key identifier: 5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
Certificate issuer: /CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Certificate serial: 019D2583A45BE4C1E39478795FE95DF7879C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
Manifest number: 1888
Signing time: Wed 25 Mar 2026 15:01:17 +0000
Manifest this update: Wed 25 Mar 2026 15:01:17 +0000
Manifest next update: Thu 26 Mar 2026 15:01:17 +0000
Files and hashes: 1: XYHR_0WxVHwAqEtG75nsot-9Rbw.crl (hash: uattcOW8l83kKZhv+Lp+qej4lwn+4PiwyJ4ucuarXPs=)
2: xBNYTN26rjrftroj6bw53BOmtsE.roa (hash: aH3rJts1biSMOKPSezn36e6c7+ndTrVwqPqYWonjaSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:a4:5b:e4:c1:e3:94:78:79:5f:e9:5d:f7:87:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Validity
Not Before: Mar 25 15:01:17 2026 GMT
Not After : Mar 26 15:01:17 2026 GMT
Subject: CN=0254a97cdd7f87e9282ce250b55cd346e69f0820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e6:c3:08:8e:de:92:6a:0c:62:7c:ac:55:b7:
1d:48:f5:d3:b8:6b:ca:62:d8:2e:ac:03:7b:dd:8a:
8c:bb:ef:28:d3:21:3d:44:f0:61:5d:56:8a:30:9e:
8e:93:3b:b8:37:eb:36:7a:eb:b6:f6:2e:0b:5e:a8:
ad:e4:77:e5:44:87:73:81:67:1f:f8:ff:c0:66:87:
68:77:40:25:ca:ab:69:b0:53:da:a2:89:e2:98:30:
dc:7a:2b:a9:ae:19:03:18:6d:36:ea:8a:5b:4b:59:
61:d4:33:b3:4f:91:bd:ed:e3:ba:fe:00:23:4c:49:
49:4d:c9:b6:8f:a9:66:e5:4c:ec:ff:f4:74:89:2b:
db:f3:1d:77:76:44:6c:1a:d7:73:cd:23:a9:91:5a:
8e:18:3f:86:8e:4d:4a:87:59:e4:67:55:28:4b:1f:
f6:95:d4:bf:17:c4:e3:d8:e1:0a:9c:1d:9e:07:15:
67:34:b9:86:1e:29:7b:d8:99:b5:5e:7b:db:bf:d6:
72:7b:c3:38:6d:22:92:8e:cd:1b:da:98:f9:b9:aa:
b5:fb:0e:81:6f:be:c9:51:f4:ca:d0:68:af:36:76:
df:44:df:8f:d7:2b:e9:26:34:6d:63:bf:05:3b:c1:
47:ef:fc:47:12:4f:8a:65:8d:f2:b7:83:be:f8:a4:
40:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:54:A9:7C:DD:7F:87:E9:28:2C:E2:50:B5:5C:D3:46:E6:9F:08:20
X509v3 Authority Key Identifier:
keyid:5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:ba:51:8f:cc:ad:51:dd:3e:75:d9:9d:73:13:a7:88:f4:b8:
8a:5d:9a:9f:6b:86:95:5d:e9:2d:0a:ee:ba:42:33:f2:8b:1f:
67:ce:f0:34:4c:c1:b9:e1:5c:2e:7d:bf:f3:c1:81:5b:37:e7:
03:88:11:88:43:51:5f:7f:f3:db:b2:f2:9f:db:f8:01:43:eb:
27:48:a2:65:55:80:ab:8f:9a:b5:be:c6:b8:7d:f5:cb:10:7d:
7c:b4:f3:be:a6:16:0a:65:0f:d7:03:1a:fb:8d:57:02:5a:f7:
b4:7e:15:40:29:2f:58:23:ca:83:2c:17:ec:27:87:7a:a0:cb:
74:9b:4b:b7:52:5b:e2:14:85:63:9b:0d:7a:0f:f4:14:69:ad:
4b:9a:fd:d1:fa:d4:40:2f:bb:50:24:05:36:d7:c3:51:a3:6e:
82:0e:3b:84:de:73:0b:36:9d:c0:90:e9:7b:37:cc:1c:4f:ab:
80:1f:39:00:66:bd:1a:71:b6:f2:17:04:17:fd:a0:f0:81:52:
3f:dc:0b:a8:31:71:07:08:e4:b7:c3:46:51:21:9e:c7:98:00:
58:e1:57:00:df:d9:e1:4f:e0:4a:31:ae:5a:1a:5f:80:33:b4:
40:3c:97:b6:2c:d3:8e:74:22:4a:3f:53:f0:1f:eb:68:80:1f:
64:3a:54:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:52:38 2026 by rpki-client