Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
File: xKMWKFZYILOlo-HPyHdz4oP7lcE.mft (raw, json)
Hash identifier: NnO07uAtV3JnWRTxqBDA6RHf9o9+TKY5egvKPOKpMbo=
Subject key identifier: B0:25:AB:95:3C:C4:88:51:4A:60:59:7E:3F:DA:13:2F:26:DE:F4:73
Authority key identifier: C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
Certificate issuer: /CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Certificate serial: 019D27A91AD4939FC54ABAD5EC2AC42A5AA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
Manifest number: 0DCC
Signing time: Thu 26 Mar 2026 01:01:26 +0000
Manifest this update: Thu 26 Mar 2026 01:01:26 +0000
Manifest next update: Fri 27 Mar 2026 01:01:26 +0000
Files and hashes: 1: Tsd8HU5MYi729ftZEbzYJ5q8DFk.roa (hash: Z2yRa6Vn6jZpC2JEgmfhyvHiigb6Voy/StTbiLK6M9k=)
2: xKMWKFZYILOlo-HPyHdz4oP7lcE.crl (hash: LZYnxhdGvY+TV9HbNNzrMO4kthNPQuGaVq3UwRe0ZdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:1a:d4:93:9f:c5:4a:ba:d5:ec:2a:c4:2a:5a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4a31628565820b3a5a3e1cfc87773e283fb95c1
Validity
Not Before: Mar 26 01:01:26 2026 GMT
Not After : Mar 27 01:01:26 2026 GMT
Subject: CN=b025ab953cc488514a60597e3fda132f26def473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4b:f2:60:62:76:c7:f3:b3:97:80:c5:60:a3:
04:28:8a:0c:b1:0d:2d:ff:c5:8b:6b:03:ad:a7:1d:
ac:38:b2:5c:9c:6f:20:8a:88:ae:62:34:67:3c:b2:
8f:8c:71:3a:db:e1:e0:88:aa:96:27:84:b1:f1:81:
57:ef:e7:f6:b8:22:84:15:b1:11:84:71:e4:90:96:
f1:e7:8d:fe:55:a4:d7:13:21:b3:2f:90:4f:55:80:
7d:9e:8e:0c:7a:1c:49:d5:08:ea:4a:9f:fd:e6:c0:
75:86:02:55:d4:6b:e1:07:42:7e:66:f8:0b:21:39:
e5:61:47:7c:63:d1:de:06:15:a8:80:f1:ee:41:30:
f4:9f:37:66:55:36:d4:2f:39:82:c2:76:c1:9c:9d:
04:d4:3a:9c:e5:58:8c:57:8b:40:c4:37:e2:5e:63:
5a:2d:65:ce:33:1e:59:d6:ca:12:6d:3c:b4:b9:72:
7c:ca:bd:8f:b9:66:80:9d:5b:3f:d7:be:ff:4b:c0:
c9:6f:15:d7:35:9f:64:ce:33:2d:96:87:44:43:75:
a9:b6:35:b7:12:56:bb:f6:ae:9c:b0:6a:5d:97:1b:
13:14:22:72:f0:50:e5:8b:8b:95:94:4b:89:f2:29:
6a:9a:3a:60:7a:82:1a:4f:a4:37:40:57:a9:9a:a5:
47:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:25:AB:95:3C:C4:88:51:4A:60:59:7E:3F:DA:13:2F:26:DE:F4:73
X509v3 Authority Key Identifier:
keyid:C4:A3:16:28:56:58:20:B3:A5:A3:E1:CF:C8:77:73:E2:83:FB:95:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xKMWKFZYILOlo-HPyHdz4oP7lcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/7a80aa-000a-4714-a2fa-fb307badec4d/1/xKMWKFZYILOlo-HPyHdz4oP7lcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:f7:92:b8:56:38:7f:33:38:20:2c:f3:44:f1:e4:55:ad:9c:
04:08:3d:24:f8:87:c7:01:65:0b:bb:e9:8c:c1:af:78:0d:59:
e7:c6:8b:b4:9b:af:f0:d7:d2:32:a8:96:24:54:ab:e2:6e:f5:
3d:ae:ce:55:58:35:ad:9f:9a:2c:05:93:15:d9:50:ee:cc:65:
1d:24:4c:c1:ce:c5:a8:4d:e4:bc:3a:86:c4:49:28:95:23:f7:
d1:04:46:a8:2d:0b:86:04:e6:ae:0e:cc:5e:67:88:e1:bd:77:
8b:c3:41:b0:5a:f6:8b:ce:c7:4a:5c:db:83:a2:d5:ef:d3:82:
49:9c:02:38:0e:81:10:2d:3e:4d:b8:29:42:09:53:f5:e8:da:
4a:a3:31:de:bd:d8:20:ec:13:9b:c6:70:36:fa:c2:e0:0c:49:
27:0d:06:84:b7:45:bd:bc:a2:4f:5f:27:23:99:69:24:68:ac:
0c:45:a5:95:85:69:1a:87:90:6d:48:90:74:c0:8b:c5:33:f7:
3f:68:2c:6c:89:2d:dd:aa:7a:94:6d:88:8c:54:95:c2:4f:e4:
70:b7:51:bc:9b:9a:2a:90:70:6b:85:5b:ef:58:87:87:c4:d1:
91:93:04:48:db:be:14:0f:fe:cc:9f:b4:bb:07:77:b6:9e:43:
45:32:73:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:36:33 2026 by rpki-client