Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
File: XbdXv1dG8moHySCHAbDVS2m8M2Q.mft (raw, json)
Hash identifier: 11RGZ84Xrl+PzJebPy++B02OnpQDDSZMl1QH+l3iz00=
Subject key identifier: CF:B4:30:6C:99:A3:E5:12:31:3F:FE:B5:AA:38:B6:84:B3:CD:81:77
Authority key identifier: 5D:B7:57:BF:57:46:F2:6A:07:C9:20:87:01:B0:D5:4B:69:BC:33:64
Certificate issuer: /CN=5db757bf5746f26a07c9208701b0d54b69bc3364
Certificate serial: 019D2583D9D594E297EDD6F2781EF77E23A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
Manifest number: 0751
Signing time: Wed 25 Mar 2026 15:01:31 +0000
Manifest this update: Wed 25 Mar 2026 15:01:31 +0000
Manifest next update: Thu 26 Mar 2026 15:01:31 +0000
Files and hashes: 1: XbdXv1dG8moHySCHAbDVS2m8M2Q.crl (hash: Ayy8B4N54JcIdKEaKsyNxAT/QGXnBZjCSn48+ZYIpBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:d9:d5:94:e2:97:ed:d6:f2:78:1e:f7:7e:23:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5db757bf5746f26a07c9208701b0d54b69bc3364
Validity
Not Before: Mar 25 15:01:31 2026 GMT
Not After : Mar 26 15:01:31 2026 GMT
Subject: CN=cfb4306c99a3e512313ffeb5aa38b684b3cd8177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:64:46:39:df:b0:89:c7:bc:08:40:62:9b:a7:
54:6f:58:80:70:1a:c8:0c:a7:99:59:aa:9d:19:b8:
30:84:5d:7a:7f:e3:41:84:da:1d:b9:ca:bd:c4:1c:
e6:f9:ba:5b:b6:3e:1e:6b:2a:e4:81:c0:f3:e4:66:
43:5d:97:63:ce:46:40:19:4d:6a:df:ff:52:b8:cb:
a8:55:c0:71:1f:d5:0f:8f:84:bb:78:b7:c7:89:a2:
a2:3e:48:3d:45:94:40:57:a6:6a:bb:82:99:18:ae:
cb:8c:c0:49:3b:60:38:6b:b1:e4:3a:23:4c:44:bb:
b4:45:9d:26:c8:de:01:0a:f3:66:83:46:1d:0f:44:
8f:9a:ef:ff:ca:06:8a:30:b0:ef:53:dd:01:e1:5b:
cd:4d:a8:be:c9:67:ec:f7:ae:88:ca:8c:17:a5:68:
2f:92:ab:f0:5b:3b:e4:28:3b:04:a8:a2:92:26:3d:
7d:2d:b9:6f:cb:a2:3b:e7:4c:37:b3:3e:42:d7:87:
ed:3f:e9:c6:79:a8:a1:ea:a6:08:54:bb:c0:f5:fa:
25:7c:ff:72:43:20:0d:96:5b:0b:a3:ac:e9:a9:5e:
c6:00:7a:56:19:cb:91:40:ce:07:fd:4b:aa:30:e7:
55:29:a0:8e:1f:61:92:36:2f:81:b5:6a:3e:7c:8a:
86:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B4:30:6C:99:A3:E5:12:31:3F:FE:B5:AA:38:B6:84:B3:CD:81:77
X509v3 Authority Key Identifier:
keyid:5D:B7:57:BF:57:46:F2:6A:07:C9:20:87:01:B0:D5:4B:69:BC:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:33:f5:0d:5f:47:fe:79:58:cd:5c:4c:63:b1:6b:a7:93:f4:
00:5d:e9:9c:d9:46:c6:af:3c:9e:12:44:4e:4e:74:0c:8f:7a:
95:98:9e:5a:3b:e6:a1:c1:e3:2a:49:06:ea:4f:c0:19:01:8b:
d2:14:3c:55:68:5f:ab:08:ff:da:fe:3c:d0:5f:da:0a:54:54:
a1:45:9a:1a:bc:ec:3e:4f:48:e9:9b:97:45:60:ce:e6:bd:16:
2d:ed:43:68:40:78:bc:0c:28:5d:49:ec:7a:e9:b2:d4:7b:a6:
bf:96:24:f9:27:7c:be:4e:ca:d9:95:0a:66:df:5b:59:eb:b1:
42:7f:04:a2:1c:bc:74:3b:3f:a3:dd:04:6f:0d:6d:29:bb:b5:
f9:86:a8:7d:91:24:0e:8e:8d:be:27:cc:13:4a:4b:11:ef:94:
26:a5:55:ed:3b:ca:27:89:91:cc:fb:5b:d2:51:07:20:f7:cb:
d6:85:63:93:53:b3:6b:77:35:a0:99:77:d2:2a:49:aa:be:1e:
98:e2:fd:ec:8a:eb:dd:0e:59:8d:e0:1a:05:31:f6:da:11:60:
72:83:29:48:bb:bd:6e:f7:f7:05:1b:ce:37:3a:22:2f:67:94:
0b:b1:64:53:a3:b5:b8:4a:52:4a:17:1f:ad:07:d7:ad:21:02:
3c:fd:c8:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:35 2026 by rpki-client