Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
File: XchzCYds7EBPAHv22gQ0wL3GLYs.mft (raw, json)
Hash identifier: cEFoieKhPivb2dbPaiAFWlOolCHtGK6x+NPph4nsVhM=
Subject key identifier: EB:4E:29:1A:31:66:ED:66:A2:CC:30:AB:16:61:0F:69:C7:22:97:F1
Authority key identifier: 5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
Certificate issuer: /CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Certificate serial: 019D284E4399CC8882F24088184800EA33D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
Manifest number: 1884
Signing time: Thu 26 Mar 2026 04:01:50 +0000
Manifest this update: Thu 26 Mar 2026 04:01:50 +0000
Manifest next update: Fri 27 Mar 2026 04:01:50 +0000
Files and hashes: 1: XchzCYds7EBPAHv22gQ0wL3GLYs.crl (hash: lQmDCVk9sm2F0R2e/SrHNgPEDGePKGj9BHbGWzBWOao=)
2: fOblkOKnVrmUSkTncbBDEMnfaWM.roa (hash: JWgHw+0HX00Em/lbw5J4guVx3tmSNMauopcN/+iFVxw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:43:99:cc:88:82:f2:40:88:18:48:00:ea:33:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc87309876cec404f007bf6da0434c0bdc62d8b
Validity
Not Before: Mar 26 04:01:50 2026 GMT
Not After : Mar 27 04:01:50 2026 GMT
Subject: CN=eb4e291a3166ed66a2cc30ab16610f69c72297f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:da:3d:b9:97:86:41:85:27:69:82:9f:43:13:
58:9c:cb:f4:d6:ac:34:79:51:e5:2f:96:af:14:f3:
21:af:c9:80:39:28:52:09:e3:8c:0a:76:09:22:2e:
e6:86:0c:f6:b5:50:8c:27:4e:51:35:f2:03:33:cf:
ab:aa:66:15:b8:7b:38:95:2e:67:39:88:e5:e8:f2:
4f:dc:a7:6f:e7:2d:d3:59:63:86:3d:fa:64:ee:69:
36:ad:65:3c:f4:52:c8:5b:72:d3:c5:9e:30:b2:a6:
71:38:d1:c5:20:21:5f:96:57:5a:c1:f5:a7:6a:e6:
57:05:8b:65:be:2b:23:de:c2:cb:35:8b:0d:7a:34:
07:4a:88:65:62:60:25:4c:6b:4d:b0:26:f4:d5:bc:
b3:a1:b7:3d:84:54:28:d9:b4:85:71:9e:39:ab:6d:
30:fa:38:bf:7d:54:25:63:c9:b4:f0:c5:4c:e2:b4:
58:75:f9:8f:9c:79:64:c1:3c:81:00:1c:3a:7e:a5:
90:ff:9a:80:f9:83:f6:39:1f:d6:55:79:57:b9:8b:
ba:cc:5c:c8:61:9b:91:ce:6b:87:f6:81:98:21:c1:
6e:68:62:5e:9a:ca:54:e5:6b:a2:aa:02:c6:33:d6:
ec:56:7a:cd:d4:43:76:6c:b0:24:bf:b2:fc:b2:40:
c3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:4E:29:1A:31:66:ED:66:A2:CC:30:AB:16:61:0F:69:C7:22:97:F1
X509v3 Authority Key Identifier:
keyid:5D:C8:73:09:87:6C:EC:40:4F:00:7B:F6:DA:04:34:C0:BD:C6:2D:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XchzCYds7EBPAHv22gQ0wL3GLYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/44dd9f-4891-45ae-9030-8da8317de3f6/1/XchzCYds7EBPAHv22gQ0wL3GLYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:f2:40:9d:76:02:4b:1c:ee:48:6d:f4:9c:0a:e9:d4:d1:52:
ce:84:34:32:37:6e:24:20:db:e4:d6:0c:a9:c9:63:55:ea:64:
c7:17:a8:86:20:8d:df:9d:bc:14:5d:30:5b:02:a1:c4:dd:11:
a9:e0:dc:c0:99:0e:24:6d:d2:56:cd:b2:98:46:c4:f8:db:aa:
6d:ea:9e:c2:29:23:e6:54:dd:05:5b:5b:ee:ab:39:4f:52:c8:
0e:ef:8f:96:06:7f:f3:ee:05:04:bd:9e:1a:82:03:2e:97:63:
c7:e2:4e:c2:7d:81:6a:28:f5:26:4f:cd:8f:53:b9:8c:c1:03:
a8:7c:c9:ec:00:10:22:4c:71:72:79:72:61:7b:f3:0e:72:fa:
04:5a:6f:5c:e8:f2:5a:1f:54:3b:09:88:85:9d:eb:08:ed:52:
ca:e2:e5:16:f0:cf:98:3f:06:f5:50:a7:c0:78:86:7a:00:d2:
d7:51:a1:5f:7c:df:c0:9f:26:36:cc:e2:3e:69:cf:2a:a9:2c:
ae:56:66:a3:59:40:5e:21:23:65:ce:9f:8f:da:54:ca:ad:ce:
af:6a:66:68:cc:09:6d:d5:2f:91:95:f4:8f:b9:d6:16:98:e1:
7b:40:58:3b:81:23:f2:96:cf:72:34:51:16:f0:08:db:1b:2d:
7a:91:ab:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:38:20 2026 by rpki-client