Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
File: xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft (raw, json)
Hash identifier: gLcSCdhMIo7N0wgV+HEyVoJyewg3C9hB+i3BSL0+osc=
Subject key identifier: FD:D1:5A:C5:D3:BB:4D:83:2A:16:22:3C:BD:9F:93:1A:3F:68:B7:64
Authority key identifier: C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
Certificate issuer: /CN=c5721737651598f56cf7195120777d7b5316f552
Certificate serial: 019D2772AB7F9CF226C542FD8CD99B1F40C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
Manifest number: 15EA
Signing time: Thu 26 Mar 2026 00:01:59 +0000
Manifest this update: Thu 26 Mar 2026 00:01:59 +0000
Manifest next update: Fri 27 Mar 2026 00:01:59 +0000
Files and hashes: 1: xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl (hash: jM9NQPr9SiyaURmZI5YaAxUL8JKGKVyGDeBPA6dSdPE=)
2: yssogANIknAnyTe9sA9LERuires.roa (hash: JqsNnZHV+p4+5egMp0o4jtASOk/NcwBkk/PcUWXzj7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:ab:7f:9c:f2:26:c5:42:fd:8c:d9:9b:1f:40:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5721737651598f56cf7195120777d7b5316f552
Validity
Not Before: Mar 26 00:01:59 2026 GMT
Not After : Mar 27 00:01:59 2026 GMT
Subject: CN=fdd15ac5d3bb4d832a16223cbd9f931a3f68b764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6c:6c:f0:03:60:2b:33:3f:ce:c5:6d:70:03:
44:d0:3f:74:8e:52:7d:c5:79:bc:15:c5:17:e5:4e:
ba:94:d2:79:1e:9d:3f:4b:47:24:4d:c9:e0:63:55:
9b:98:fa:35:57:5f:c6:ba:f7:cd:ef:da:6e:cd:f2:
64:8a:cb:10:19:f3:71:65:fd:b5:de:22:8d:c9:1b:
0d:b9:35:a6:9d:eb:88:42:c9:fd:6f:1a:ea:e8:44:
ab:ce:ec:a8:cd:eb:aa:03:90:c2:cd:fd:63:ed:fc:
0b:50:8b:c6:5f:db:52:6f:5a:99:fb:c4:2f:22:b0:
c8:0d:c5:f8:71:dc:00:38:87:b1:82:70:07:a9:a8:
3b:e0:65:57:58:76:51:93:29:83:53:cc:7a:81:d8:
32:2a:a4:7a:99:98:9d:f0:fd:bc:7d:fb:b6:cf:86:
ae:fd:e6:d3:d3:73:c1:31:a2:ac:1c:c7:05:55:b2:
3d:4a:65:21:47:0f:21:f6:73:11:1a:3e:c2:61:03:
94:ab:d9:87:eb:27:25:2b:f0:d9:83:23:ca:7c:45:
a4:b5:cd:88:8a:14:e3:11:b5:8a:bb:8f:8d:94:9b:
09:e4:40:c9:a5:4d:d9:b6:e9:f6:f9:de:a1:48:af:
13:4b:d7:6e:ba:40:b8:a7:39:c1:16:ea:5e:ac:3a:
60:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D1:5A:C5:D3:BB:4D:83:2A:16:22:3C:BD:9F:93:1A:3F:68:B7:64
X509v3 Authority Key Identifier:
keyid:C5:72:17:37:65:15:98:F5:6C:F7:19:51:20:77:7D:7B:53:16:F5:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xXIXN2UVmPVs9xlRIHd9e1MW9VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/5b43ba-8eb5-44d3-9b87-e000e3fff93e/1/xXIXN2UVmPVs9xlRIHd9e1MW9VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:86:07:2f:2a:e4:57:6a:e4:4f:bc:f9:5a:68:dd:52:15:ee:
3c:24:d3:8c:2b:9c:a3:9d:d9:2d:d7:f3:e8:f8:49:88:78:79:
b2:e6:92:53:7b:6f:8d:59:24:14:9e:04:cc:f8:a7:f1:00:78:
e9:94:31:e0:65:b4:eb:9a:83:b3:22:95:92:31:0d:39:e1:fa:
5a:36:7b:ce:85:f7:5a:68:f2:26:7f:72:64:06:e6:98:0b:b6:
a1:7c:de:b3:d6:f0:44:9a:de:f8:79:1d:e0:55:47:d1:36:e6:
83:c0:65:7e:1c:47:d1:ca:a3:37:84:f3:9a:4f:ba:dd:bf:26:
8b:46:34:2a:db:4a:2c:88:a2:9c:37:61:cf:c6:4b:64:31:53:
c8:a3:3f:aa:45:42:99:e2:14:32:bb:c9:7e:71:61:68:2d:d3:
d5:00:ef:34:1e:68:46:82:c8:ec:e2:0a:8f:47:ae:4e:06:25:
9b:ee:10:12:50:2d:37:90:3f:20:3b:e1:9c:ee:a7:ad:12:b7:
45:2e:fc:23:62:a9:b5:c2:3b:03:de:61:83:98:2d:02:52:34:
ac:37:1d:a5:48:2b:2b:b2:e3:1e:47:a2:fb:ee:d7:13:3d:08:
d8:cd:ce:51:cf:67:3c:a7:0a:33:29:11:e6:56:59:79:df:64:
9c:f1:e7:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:26:01 2026 by rpki-client