Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.mft
File: Xt--3qwGsBxaP3hM6gRuWiyVyl4.mft (raw, json)
Hash identifier: ccIluLV4crIE57tnjHrSdII5UYD32LHmauP/uRpW0MM=
Subject key identifier: E5:5E:BC:BA:23:48:F4:FC:62:0A:D9:CF:0C:48:27:4F:3F:11:30:D7
Authority key identifier: 5E:DF:BE:DE:AC:06:B0:1C:5A:3F:78:4C:EA:04:6E:5A:2C:95:CA:5E
Certificate issuer: /CN=5edfbedeac06b01c5a3f784cea046e5a2c95ca5e
Certificate serial: 019D27724FFC69E84EC6B0EC347BA91AC4B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xt--3qwGsBxaP3hM6gRuWiyVyl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.mft
Manifest number: 0BE5
Signing time: Thu 26 Mar 2026 00:01:36 +0000
Manifest this update: Thu 26 Mar 2026 00:01:36 +0000
Manifest next update: Fri 27 Mar 2026 00:01:36 +0000
Files and hashes: 1: Xt--3qwGsBxaP3hM6gRuWiyVyl4.crl (hash: zFyju0OKBvUy5UfOMqyiE5R4Tw1JrE4sJ8fq4hL+LCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xt--3qwGsBxaP3hM6gRuWiyVyl4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:4f:fc:69:e8:4e:c6:b0:ec:34:7b:a9:1a:c4:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5edfbedeac06b01c5a3f784cea046e5a2c95ca5e
Validity
Not Before: Mar 26 00:01:36 2026 GMT
Not After : Mar 27 00:01:36 2026 GMT
Subject: CN=e55ebcba2348f4fc620ad9cf0c48274f3f1130d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:dd:01:a0:fe:fd:8a:85:10:00:30:a6:56:9d:
20:42:52:57:c8:47:be:81:f9:e7:7e:59:58:ea:58:
e0:00:70:a9:94:95:25:c1:06:4e:54:d2:19:c1:86:
1d:24:06:19:80:e0:3c:62:0c:79:c7:ad:de:08:6c:
de:7d:a3:86:d0:3f:3c:db:99:48:3c:42:b9:eb:9b:
3b:37:92:a4:a4:fa:3f:ab:d1:bb:08:cd:8f:bf:e6:
e2:5e:0e:b6:d2:61:56:88:43:f5:94:a6:a9:ce:76:
90:f0:b9:a6:1f:38:c6:a4:84:dc:65:06:5a:08:22:
1d:88:9a:11:0e:05:d9:4e:e7:64:d4:0b:f9:88:c7:
44:8d:59:4f:fd:7c:92:3c:e8:2e:db:1b:69:11:c2:
dd:e0:eb:8c:4f:98:a0:9b:79:6b:49:9c:0b:cb:b6:
2f:fc:ff:f7:40:14:59:5f:f9:20:3b:d2:ef:b0:70:
7a:3e:a3:04:1c:dc:10:38:f0:3d:55:0e:d6:af:55:
15:a5:e5:ca:39:37:81:cc:2b:02:2b:41:d3:d9:7a:
09:2f:bb:1a:54:5a:7a:99:d2:88:9c:3d:b4:21:ea:
94:d8:da:32:2d:a4:f1:ed:b8:59:77:1e:d7:dc:a4:
08:ff:68:aa:a6:75:53:81:77:7d:58:38:73:3e:69:
69:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5E:BC:BA:23:48:F4:FC:62:0A:D9:CF:0C:48:27:4F:3F:11:30:D7
X509v3 Authority Key Identifier:
keyid:5E:DF:BE:DE:AC:06:B0:1C:5A:3F:78:4C:EA:04:6E:5A:2C:95:CA:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xt--3qwGsBxaP3hM6gRuWiyVyl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/28343c-a4e4-4db0-92be-b58617e1888b/1/Xt--3qwGsBxaP3hM6gRuWiyVyl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:62:b0:33:dd:fa:3a:42:4d:d3:dc:c5:55:3e:25:a2:8c:4b:
79:d4:f3:a3:95:35:21:e1:8c:2b:45:03:3a:8c:93:48:de:1c:
30:89:81:47:da:b1:18:22:65:32:ce:11:c4:24:02:40:3c:2d:
99:53:87:80:ce:ce:92:2e:6f:82:bb:68:c8:c1:a2:fa:7f:2a:
bb:29:03:d9:80:01:c3:de:e2:60:b5:44:3b:5a:aa:75:76:2e:
11:65:22:15:79:e5:c4:13:1a:8f:d0:55:e1:6f:43:da:37:cd:
ee:a5:af:cb:b0:32:d5:2d:d0:20:86:93:bf:0e:b4:4c:a3:d7:
35:79:e1:1b:5e:65:aa:17:20:95:9d:14:92:8e:9d:8c:a0:5a:
14:90:8b:6c:ad:3d:78:0e:29:e4:7f:f3:3d:62:07:df:e0:83:
33:2c:29:43:c8:0d:0d:0b:b8:04:f6:72:f9:84:8d:c3:09:45:
ab:26:77:11:69:5f:f9:6b:45:05:f2:e1:b3:72:0d:fa:ca:a2:
52:81:93:41:0e:7e:7f:2a:ad:c8:a1:23:6e:06:2d:db:7f:9f:
5a:14:8e:96:d9:ff:fd:63:68:33:5b:10:d7:89:61:0d:e5:e8:
a4:4e:d6:ff:29:30:0d:b5:51:3d:18:51:d0:27:53:c9:86:4e:
00:0c:db:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:59:12 2026 by rpki-client