Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft
File: X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft (raw, json)
Hash identifier: 12jnw8QLI15en8DKPhrZeh62CHtZuDf5ubdsq8JJ+5U=
Subject key identifier: E6:27:4C:F6:BA:38:01:9C:44:E6:B1:5D:D7:17:E9:88:B2:8E:1A:1A
Authority key identifier: 5F:40:62:82:EC:14:FA:0B:C7:D6:51:1E:FC:BC:6A:E9:F1:E0:5B:3D
Certificate issuer: /CN=5f406282ec14fa0bc7d6511efcbc6ae9f1e05b3d
Certificate serial: 019D25F13FA9240FBC1AB40FE1E567DA5E10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X0BiguwU-gvH1lEe_Lxq6fHgWz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft
Manifest number: 0333
Signing time: Wed 25 Mar 2026 17:01:00 +0000
Manifest this update: Wed 25 Mar 2026 17:01:00 +0000
Manifest next update: Thu 26 Mar 2026 17:01:00 +0000
Files and hashes: 1: X0BiguwU-gvH1lEe_Lxq6fHgWz0.crl (hash: QJZtI3axB6hymBGXC1AsP1C6Fu8EcMKQo80N2qYJds4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/X0BiguwU-gvH1lEe_Lxq6fHgWz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:3f:a9:24:0f:bc:1a:b4:0f:e1:e5:67:da:5e:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f406282ec14fa0bc7d6511efcbc6ae9f1e05b3d
Validity
Not Before: Mar 25 17:01:00 2026 GMT
Not After : Mar 26 17:01:00 2026 GMT
Subject: CN=e6274cf6ba38019c44e6b15dd717e988b28e1a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:54:0c:1b:d1:4c:67:ce:42:cf:10:0b:eb:e8:
a5:d1:02:ea:aa:48:cb:7b:33:a0:4b:66:41:7e:43:
69:81:89:52:cc:e9:7c:1b:9b:19:a7:f1:15:e1:7b:
44:92:92:51:c3:ea:7e:c2:73:1b:3a:a3:b8:09:22:
1f:0e:23:ca:e9:6c:08:ee:ab:36:f2:b0:3a:65:99:
74:b1:04:f5:81:5f:37:e5:2d:a0:a1:52:e5:b2:77:
04:31:65:74:e4:a1:b4:fa:2b:52:6c:1f:d5:9b:1a:
e5:fe:44:49:9f:52:97:ec:ef:c2:ef:02:4b:43:ea:
dc:7d:ff:27:62:48:4c:ed:44:ee:52:a0:e6:df:86:
a6:d6:0c:22:b3:f1:f8:a0:c2:90:22:77:0f:e9:0d:
81:50:e1:cc:20:f1:57:36:3e:90:9c:53:17:67:f9:
bc:fe:cd:69:de:40:bd:be:cd:c9:3b:03:ae:5e:4e:
8b:9c:7e:ac:99:fa:1b:79:03:82:f5:35:b5:e8:d1:
39:75:72:4c:19:32:7b:b2:cd:78:b6:87:f2:d9:9d:
c5:4d:87:03:61:5e:8f:6d:6c:d6:3b:80:72:bd:ae:
2a:80:98:fd:78:2b:86:62:a4:6b:6b:78:78:03:1e:
90:fa:fc:af:73:09:c5:e5:c6:e7:51:a8:8a:83:bd:
4a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:27:4C:F6:BA:38:01:9C:44:E6:B1:5D:D7:17:E9:88:B2:8E:1A:1A
X509v3 Authority Key Identifier:
keyid:5F:40:62:82:EC:14:FA:0B:C7:D6:51:1E:FC:BC:6A:E9:F1:E0:5B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X0BiguwU-gvH1lEe_Lxq6fHgWz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:f9:56:cf:b6:d5:e3:80:f9:2d:87:0f:be:31:4f:d6:6b:32:
a1:6b:85:ca:18:03:08:c1:43:aa:17:de:99:5d:f2:66:a7:9e:
b8:44:f1:43:1a:3a:b4:26:da:4a:ad:71:81:c2:b3:ec:1a:90:
63:cf:f1:82:ca:6c:40:d8:66:20:fb:28:86:b2:af:06:2b:1c:
ed:2c:5b:e6:26:d3:35:ab:44:9a:b2:b5:e6:76:21:0b:35:97:
ee:a5:aa:4e:49:06:3f:18:1b:1f:e9:c3:13:c2:0b:a6:f4:1d:
78:64:32:b5:69:fd:98:6d:1f:3e:33:ca:48:4b:90:45:d6:b3:
e0:11:5d:83:c6:93:05:9e:92:5b:c3:bb:74:8d:61:7d:98:fa:
35:fa:d2:03:1a:4f:6b:ea:8a:80:36:16:ea:2a:a6:1a:3b:6a:
a9:d7:f3:77:08:1d:45:91:3f:41:53:7b:90:7b:7e:4b:22:30:
0f:24:27:a0:e7:52:6f:93:6e:b3:23:87:1b:17:6e:e4:30:5a:
74:76:bb:a8:cc:70:ae:7c:09:b9:42:22:1d:50:1f:97:bc:d4:
4b:96:8f:14:28:f1:0d:b4:24:be:0f:e2:b0:a1:81:b1:8e:32:
0c:aa:a3:a8:55:ca:62:1d:16:7c:9a:06:ce:9d:ec:ad:0f:57:
f8:7d:1b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:14:14 2026 by rpki-client