Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
File: xGn-PYgsk-OOi2ooajF33Bfpmsc.mft (raw, json)
Hash identifier: q1LOh1/ynMMSiL1+Ox8M7GLxgB1iwSaP4XSvKitAIH8=
Subject key identifier: 31:F7:5D:28:96:59:5D:D3:AC:54:33:3C:59:9F:F9:4F:2F:B4:E6:31
Authority key identifier: C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
Certificate issuer: /CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Certificate serial: 019D25F204523F85EA1845E0760E81E7B141
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
Manifest number: 1889
Signing time: Wed 25 Mar 2026 17:01:50 +0000
Manifest this update: Wed 25 Mar 2026 17:01:50 +0000
Manifest next update: Thu 26 Mar 2026 17:01:50 +0000
Files and hashes: 1: OCjFzuWnGnUje1dEwwbYZ43peEM.roa (hash: P5fQaYguprLTn4X7pglwbJyeWRvGrv3R1qzPPGB8wdU=)
2: QvmlulBgViU_u1E5wXg70ZJinKo.roa (hash: xvxs7uuz8LndST7UH/h6gdjWMb/GLweKYEzomHa+gKE=)
3: isQJz9goh0eO4eEL1oxtfeOuTHc.roa (hash: +u5g7kbMKmTR3+DRB4nSO5Wrklp5Nrp8LPPP0yIm63I=)
4: mvF3N_iasc18M4jH1HsTxW2Ez2k.roa (hash: Gu1ps52m2DJstA5d1+N9coMSjwqgst0MtlfUwNkcBWA=)
5: xGn-PYgsk-OOi2ooajF33Bfpmsc.crl (hash: Vozu7tB1yXohovlVX51lfyYWm4Y+UmkS4HIkpw4QMmA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f2:04:52:3f:85:ea:18:45:e0:76:0e:81:e7:b1:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c469fe3d882c93e38e8b6a286a3177dc17e99ac7
Validity
Not Before: Mar 25 17:01:50 2026 GMT
Not After : Mar 26 17:01:50 2026 GMT
Subject: CN=31f75d2896595dd3ac54333c599ff94f2fb4e631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d7:c2:f1:e1:bf:fd:42:c7:cb:8b:d2:9f:42:
15:38:2b:5c:c5:a7:bc:fb:67:98:82:d1:0a:d8:7d:
dc:ba:c4:8a:c3:06:2f:25:35:26:80:d2:55:56:bf:
d2:40:f9:19:6f:4c:90:6d:f2:77:a3:5b:7a:62:ae:
25:34:0c:ce:e3:87:25:34:ff:eb:74:9b:da:49:97:
de:d7:23:e1:a2:fd:0d:7c:30:1e:ca:a0:7d:7b:b9:
d9:70:a2:89:ec:25:37:75:8c:18:e9:ec:1d:08:92:
37:be:ce:e1:fe:d8:1d:20:36:57:b3:ef:5c:28:57:
0e:21:3f:3e:0e:d6:9f:f8:1e:77:f0:d6:33:29:39:
5b:11:0d:8b:ba:19:90:3c:fa:db:3d:72:1c:c6:7d:
df:b7:bc:74:76:e1:3a:7d:b9:70:a6:e9:fd:f0:03:
ab:d8:08:88:e5:52:d1:20:01:6d:c8:4d:c0:08:95:
c1:6b:b1:a3:03:a5:3c:cf:3b:e2:e5:be:98:ec:64:
a1:a8:27:4d:bd:b6:54:82:ec:d3:00:fa:0a:77:7b:
b8:d5:c1:d4:c9:26:56:38:95:ea:24:15:3b:90:46:
c1:48:b3:69:a7:f0:45:e2:f8:c1:ce:26:a9:af:4e:
9d:5b:20:1f:8b:e8:64:91:b1:2a:c8:12:8f:69:e6:
b0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:F7:5D:28:96:59:5D:D3:AC:54:33:3C:59:9F:F9:4F:2F:B4:E6:31
X509v3 Authority Key Identifier:
keyid:C4:69:FE:3D:88:2C:93:E3:8E:8B:6A:28:6A:31:77:DC:17:E9:9A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGn-PYgsk-OOi2ooajF33Bfpmsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/c475ab-fdd5-492f-813a-61d9a23f3411/1/xGn-PYgsk-OOi2ooajF33Bfpmsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:f6:c2:e2:50:16:65:2b:0c:be:de:55:7d:d3:af:d0:87:67:
1d:22:93:e9:bb:37:b1:99:9b:c3:ad:5e:03:da:64:9d:25:ce:
5d:18:c2:b2:7a:d4:80:67:7a:95:58:eb:31:eb:e1:84:68:3c:
7e:e9:fc:b9:7b:5f:96:41:5c:30:30:04:5b:b1:5b:05:34:79:
1f:99:82:61:e7:7c:67:e6:59:63:2d:17:02:9c:33:90:65:2a:
5c:3a:f4:46:f3:4e:a6:b7:98:44:46:ce:48:15:4f:17:a7:e6:
37:01:fb:b6:b1:09:7d:4d:8d:28:f7:3e:fb:bd:33:79:ad:96:
1d:77:25:99:c7:5e:a4:d8:96:d8:e1:8f:16:bd:c8:86:04:58:
65:7c:63:da:3c:2b:0f:c1:1a:b5:fe:79:e1:e1:11:c4:b2:53:
78:67:87:45:19:7c:d5:72:48:70:c3:51:21:c1:23:0c:5a:4f:
86:c9:ad:c6:77:44:bc:b1:37:89:21:f9:ae:97:00:bc:54:79:
53:b1:aa:73:59:d7:2e:07:92:ab:52:1c:a2:4a:d7:9d:30:57:
04:bf:e3:78:3a:14:ff:a3:75:90:dd:cb:c1:9d:66:92:4c:d9:
47:de:6e:30:bc:9b:35:16:95:fc:b5:b9:8c:81:d1:33:61:99:
13:88:7c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:12 2026 by rpki-client