Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
File: XEKIRvhNgYNh9rnApGOy5XQqFJs.mft (raw, json)
Hash identifier: xsjCC6qe/1CMkXWX8Ecucg6KmKp34+p+HkyPgzHNIg8=
Subject key identifier: B5:9C:86:03:83:17:3D:76:35:E8:0D:E0:E5:A4:80:27:43:2B:E9:F3
Authority key identifier: 5C:42:88:46:F8:4D:81:83:61:F6:B9:C0:A4:63:B2:E5:74:2A:14:9B
Certificate issuer: /CN=5c428846f84d818361f6b9c0a463b2e5742a149b
Certificate serial: 019D2695EDBFE0794AB2C2F303B6AB794299
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
Manifest number: 01DB
Signing time: Wed 25 Mar 2026 20:00:52 +0000
Manifest this update: Wed 25 Mar 2026 20:00:52 +0000
Manifest next update: Thu 26 Mar 2026 20:00:52 +0000
Files and hashes: 1: CNU3mQEbY-u6S3PERfizHiI3tYk.roa (hash: /9Q8PFVvHk4oD7Nve3f5+udPkxTJLftVYP8vMjZBj5o=)
2: XEKIRvhNgYNh9rnApGOy5XQqFJs.crl (hash: rDi4ETPa9FKU9ZGA+1/2ISg8d9uj+yAdUIr2S7OXPaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:95:ed:bf:e0:79:4a:b2:c2:f3:03:b6:ab:79:42:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c428846f84d818361f6b9c0a463b2e5742a149b
Validity
Not Before: Mar 25 20:00:52 2026 GMT
Not After : Mar 26 20:00:52 2026 GMT
Subject: CN=b59c860383173d7635e80de0e5a48027432be9f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d5:7b:4c:9c:67:19:3b:97:fd:13:a9:8c:6d:
82:f2:cc:05:4f:95:42:f0:9b:f0:0f:0c:cf:01:06:
4f:2c:bb:7b:6a:9e:d4:9a:fa:f8:90:bc:4a:df:73:
bd:1b:4f:7f:3c:57:5f:9e:c1:ef:a7:61:48:fd:35:
c9:44:dd:68:1f:6e:ae:b5:11:98:f0:66:7d:53:d0:
c7:5e:6b:73:e1:26:9e:4a:e9:83:9e:fb:32:c7:52:
49:36:81:ca:31:19:0e:26:c1:a1:89:cd:3c:35:14:
8f:24:1b:a5:02:f5:92:6a:02:7e:7b:4e:a3:45:7a:
c3:61:5a:07:95:b1:d5:20:30:2c:46:44:5f:b9:8e:
b0:27:0b:13:0f:fd:6d:81:0f:11:e7:23:7a:0c:75:
6a:89:58:2e:32:0c:11:7c:52:97:f2:c6:fe:e5:71:
2f:7b:16:0f:80:a4:43:3c:5c:42:65:1e:8a:24:2b:
44:45:b9:21:02:55:b1:00:3a:f8:45:87:b9:43:8e:
03:1a:b0:ae:c9:38:52:24:65:30:29:4b:04:b3:a4:
b1:18:54:5a:40:39:bb:0a:02:81:f3:ee:01:64:7f:
95:2e:c6:c9:24:e1:bf:7d:b2:27:8e:39:ed:f0:39:
be:38:a3:0b:79:4f:65:2c:2e:1a:c1:4b:1f:74:7f:
51:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9C:86:03:83:17:3D:76:35:E8:0D:E0:E5:A4:80:27:43:2B:E9:F3
X509v3 Authority Key Identifier:
keyid:5C:42:88:46:F8:4D:81:83:61:F6:B9:C0:A4:63:B2:E5:74:2A:14:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:78:dc:b4:41:49:db:eb:1c:9c:bb:25:ca:37:ac:64:15:b9:
07:b2:ea:fd:85:7d:71:6c:07:54:db:40:9e:92:0b:00:03:ee:
7e:6c:e1:b0:9c:dc:fe:fc:64:12:66:18:4b:4a:32:11:96:13:
0e:f0:37:2e:98:e2:ed:f7:6a:f7:61:f2:0b:2c:f6:e1:a0:cb:
c9:d7:b9:bf:e1:38:a5:4b:3b:78:e1:13:52:b3:d7:45:49:95:
0a:4e:dc:83:d6:39:98:79:a6:fd:b1:c1:72:1d:a5:1a:c2:37:
07:fd:c3:85:0b:ab:7c:46:b0:9a:63:b9:14:75:cb:5b:1c:af:
41:6a:6f:cd:d3:cc:52:3f:8d:ba:d9:0d:ae:a1:09:be:77:72:
31:40:f1:b5:11:b9:19:8c:57:91:b3:68:fe:cd:7e:a4:b3:71:
09:92:e0:59:bd:2c:1c:1c:3c:92:cc:32:ce:73:f7:a0:04:f2:
f7:5c:a3:3f:bd:62:88:e1:95:5c:05:48:63:75:2e:ab:ab:8a:
36:ef:9c:69:b8:99:4c:77:97:42:4b:84:dc:2b:b6:df:21:b9:
42:e3:5e:9e:27:8e:e5:11:3c:1a:a2:98:17:fe:67:00:6c:af:
87:16:5b:c8:be:39:ec:c8:01:c1:9a:d5:f8:7e:59:96:b3:88:
10:64:a9:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:08 2026 by rpki-client