Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
File: XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft (raw, json)
Hash identifier: HCWVtrSp3/nhePknQQ/XMJ3WtYtKQd+CCWcJ1Sekgq8=
Subject key identifier: D5:98:5B:EF:AB:4A:E1:D1:1F:51:62:7B:EA:DF:60:D5:B2:08:B4:F3
Authority key identifier: 5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF
Certificate issuer: /CN=5e4098f206850488b72cdde8387c3181c63f8cdf
Certificate serial: 019D2A72795F4E8F7B8B1303ED08208AFAC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
Manifest number: 0639
Signing time: Thu 26 Mar 2026 14:00:38 +0000
Manifest this update: Thu 26 Mar 2026 14:00:38 +0000
Manifest next update: Fri 27 Mar 2026 14:00:38 +0000
Files and hashes: 1: XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl (hash: 53d+RdoH66l0REeGGZh+uibK23ImztT00l8g/8dHJQA=)
2: bXHKxfZ-clKo3uVvBiES8ymUWb4.roa (hash: 5y+v12wnsW0x7UyzTae1pV9Cje40Zw2A3YIrbQGELhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:79:5f:4e:8f:7b:8b:13:03:ed:08:20:8a:fa:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e4098f206850488b72cdde8387c3181c63f8cdf
Validity
Not Before: Mar 26 14:00:38 2026 GMT
Not After : Mar 27 14:00:38 2026 GMT
Subject: CN=d5985befab4ae1d11f51627beadf60d5b208b4f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4e:bd:8d:30:8a:53:34:f4:45:00:82:3c:cd:
f1:e5:31:50:fc:39:86:13:c3:a6:08:7e:c7:aa:d5:
8a:ad:9e:00:45:6a:c9:3a:c8:eb:06:73:9b:d4:c4:
b3:b0:81:a3:53:0a:37:91:d2:5d:8a:8c:0f:59:58:
35:9b:bf:4c:0d:f9:38:4b:71:c5:a4:7f:a7:47:0f:
59:a5:86:9f:5a:5a:51:f8:e2:1a:9c:52:1f:71:c5:
58:92:18:4f:17:06:db:05:8d:12:3f:d7:32:d0:c2:
24:80:5f:57:1f:56:c7:f3:7f:49:56:a3:48:76:3e:
82:37:28:f9:0a:ce:09:12:c0:87:16:64:b4:f5:b7:
31:1c:fb:f6:23:46:5b:9b:94:9d:44:16:d9:d4:3c:
45:c5:5b:b4:3e:20:aa:87:06:e1:4b:5d:cf:fd:af:
9f:44:06:5c:7e:0d:df:20:ed:b2:4e:29:95:cf:5b:
37:98:ee:8b:f3:01:43:80:e7:11:1a:35:2e:dd:2a:
96:3d:45:17:1c:e9:27:04:48:40:1a:e8:45:02:11:
5f:f8:40:57:0c:f2:95:25:f7:2b:5b:5e:70:1a:b4:
ce:e1:c2:8c:9b:d1:7a:82:5d:ae:03:5b:78:aa:0d:
a7:e4:f1:46:b7:2a:ee:ed:e0:68:4b:2b:a7:0a:ef:
8e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:98:5B:EF:AB:4A:E1:D1:1F:51:62:7B:EA:DF:60:D5:B2:08:B4:F3
X509v3 Authority Key Identifier:
keyid:5E:40:98:F2:06:85:04:88:B7:2C:DD:E8:38:7C:31:81:C6:3F:8C:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkCY8gaFBIi3LN3oOHwxgcY_jN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/c0b106-6bf1-4660-8aff-9cf87ff1ce5b/1/XkCY8gaFBIi3LN3oOHwxgcY_jN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:46:ee:bd:7b:2f:ce:92:75:b3:ee:5b:b5:fe:e5:ab:f8:57:
81:5f:6d:18:72:cd:f5:c3:8b:b6:62:f8:a3:e9:46:33:25:76:
8f:f5:8e:ba:bd:b4:65:94:d3:5f:e8:54:24:56:a8:6a:7b:3d:
b3:99:d1:e5:c6:e1:ca:6b:68:a2:65:5d:84:39:78:67:e4:0e:
94:d3:77:06:e7:d8:8c:fd:98:5d:3b:37:ef:68:ef:cc:7e:45:
ec:ac:11:d4:65:ed:9a:25:d4:35:40:45:99:27:74:23:d0:61:
4a:a7:7f:de:b1:f5:47:27:64:2f:9b:f8:bd:81:6f:9b:49:ab:
a3:c6:12:cb:d0:79:7f:5e:5f:b1:05:8f:77:1d:d8:1d:9a:0e:
51:10:3f:cb:b2:d6:aa:ea:47:37:18:18:b9:50:ba:b5:86:c9:
e2:a9:a7:1d:08:30:47:9a:97:cc:03:54:3c:db:43:34:12:4e:
e1:a4:4e:31:1f:21:cf:14:51:94:39:6b:71:27:61:f5:07:b1:
f8:f4:78:a0:3a:1b:0c:f6:ab:e9:1e:9a:b5:72:f9:bc:48:ac:
6b:f7:44:49:c3:85:4f:6e:5a:b0:c2:32:84:6e:1b:19:74:9b:
ad:10:74:8a:8a:12:dd:ac:97:d2:e1:ca:02:45:70:5f:d2:82:
65:25:64:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:29:17 2026 by rpki-client