Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
File: xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft (raw, json)
Hash identifier: sSZmBK4zZk4w7hkgCcWo/HtTh/SzBUoGC4UQbjjZyrA=
Subject key identifier: 3E:59:D9:EB:EC:2F:8A:4F:F2:28:E5:6C:14:11:E3:C8:E6:4A:17:07
Authority key identifier: C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B
Certificate issuer: /CN=c6c00c553a54da05b93635a654cada03c6d9df2b
Certificate serial: 019D26CCCD05CD9AF5B20695CA29AC560C67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
Manifest number: 0958
Signing time: Wed 25 Mar 2026 21:00:49 +0000
Manifest this update: Wed 25 Mar 2026 21:00:49 +0000
Manifest next update: Thu 26 Mar 2026 21:00:49 +0000
Files and hashes: 1: 5Vieq-wulwB6FaJx0xDN_dm4FF4.roa (hash: QYUnQtWcGZ16DHSfHYt9mKOqdeXlb5mTBtNDg7p01bA=)
2: xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl (hash: qzWUlTYSNZ7oePOHvdb30YQpiwj+yeoH9EBn3BXlu0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:cd:05:cd:9a:f5:b2:06:95:ca:29:ac:56:0c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6c00c553a54da05b93635a654cada03c6d9df2b
Validity
Not Before: Mar 25 21:00:49 2026 GMT
Not After : Mar 26 21:00:49 2026 GMT
Subject: CN=3e59d9ebec2f8a4ff228e56c1411e3c8e64a1707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5e:ac:1d:0d:b0:6b:da:99:71:13:11:7d:19:
14:8f:4b:da:1a:5b:57:ec:be:a4:64:ca:8a:45:35:
c7:56:0a:89:08:ba:5b:e4:9a:4b:a1:fa:4b:83:b8:
c3:f5:d7:cb:96:e7:2d:70:de:d3:46:dc:fb:35:64:
d8:20:7b:a8:12:0e:fd:4d:00:5d:d2:19:64:cc:fa:
f8:6e:95:65:a8:19:21:10:4b:b1:fd:c0:1f:8b:67:
f7:35:b7:93:1d:22:a0:40:80:46:2b:47:15:e7:c5:
83:c9:66:e8:2c:dd:2a:a7:22:67:0f:e8:59:f9:0b:
36:86:2e:59:bf:ca:c0:02:a6:0d:db:04:8b:2c:2c:
b5:e5:a8:e1:94:ff:b0:40:d5:e4:a0:e6:79:69:70:
30:76:93:a5:bd:6d:e5:77:11:db:c2:79:0f:d9:c1:
4b:fd:54:5c:01:66:0d:e0:b0:78:12:5d:0a:7d:93:
ad:f2:b4:82:28:c8:8d:cb:ea:10:e4:8a:bc:35:28:
c8:61:a1:f0:f1:7e:31:16:6a:11:cb:27:ec:4b:72:
26:84:86:0f:2f:70:aa:36:59:d3:0f:75:97:77:b0:
fe:a0:d3:6c:6a:43:89:75:f3:65:78:44:1a:4e:05:
52:6e:3b:69:6d:a7:61:62:d1:e1:eb:46:20:6f:ce:
7a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:59:D9:EB:EC:2F:8A:4F:F2:28:E5:6C:14:11:E3:C8:E6:4A:17:07
X509v3 Authority Key Identifier:
keyid:C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:eb:df:98:14:d7:c4:5d:c7:46:8e:66:dd:17:a7:7b:d7:19:
16:e1:58:a6:e6:15:06:bb:fd:5a:2d:d2:48:39:fb:bb:8a:2f:
70:b6:3a:17:83:17:24:2f:1b:0e:5e:62:e7:cd:9f:bf:b2:e0:
4a:29:b2:4b:73:d4:e3:27:52:2d:f4:77:5c:6f:50:88:3c:2c:
e5:e9:4c:bf:b7:ef:ae:7c:40:da:09:db:3d:b4:07:38:29:ec:
6b:2a:bb:a1:36:5d:74:54:01:ba:ea:48:39:03:0d:8a:14:17:
a8:a3:8f:17:a6:f2:fa:c7:8b:4f:9b:a1:97:7b:63:a5:90:34:
d5:2b:25:ba:88:93:63:d8:a6:a1:97:73:b0:26:23:b7:88:80:
14:fb:2d:77:9b:f0:f2:fa:99:23:68:ed:22:90:7c:41:bc:06:
84:5f:eb:ad:61:8c:44:e9:89:8f:6c:c1:39:8e:c8:36:a7:d9:
84:3a:ca:71:0a:3a:23:90:02:4c:7e:63:97:20:cb:32:a7:6d:
a7:6e:53:34:64:d7:f7:9c:f0:9c:8e:f2:d1:20:df:d1:79:7c:
f1:3f:25:26:db:c2:67:f8:f2:7b:52:72:73:0f:dc:bc:7d:1b:
12:d2:79:b6:89:6d:81:ab:02:be:36:80:3f:69:4a:fb:a4:d1:
b9:24:98:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:02:51 2026 by rpki-client