Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
File: XTJb79i36F40cQQgbYwKuKbg-04.mft (raw, json)
Hash identifier: I9cK7luqGnHmYsFztWw/KPnpa5AlJA9Tq71BfKHknvg=
Subject key identifier: 87:04:AF:EE:EF:A0:E0:81:2A:EF:BE:15:C5:B9:D7:7E:FC:40:DA:6D
Authority key identifier: 5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
Certificate issuer: /CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Certificate serial: 019D2AA9217EB06AB556469D42CDA8E20F53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
Manifest number: 1662
Signing time: Thu 26 Mar 2026 15:00:20 +0000
Manifest this update: Thu 26 Mar 2026 15:00:20 +0000
Manifest next update: Fri 27 Mar 2026 15:00:20 +0000
Files and hashes: 1: PzMpMCVPdUDUUH8GTuka9keIPNQ.roa (hash: IKEP0LVD3JdV2nQIZoc3FzX3XZlJgMd0mFQnJDaVjxI=)
2: XTJb79i36F40cQQgbYwKuKbg-04.crl (hash: OdPXOlhjjh08LR/9+Hc9nheOIBWRcozK3o1xtcBBs5A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 15:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:21:7e:b0:6a:b5:56:46:9d:42:cd:a8:e2:0f:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Validity
Not Before: Mar 26 15:00:20 2026 GMT
Not After : Mar 27 15:00:20 2026 GMT
Subject: CN=8704afeeefa0e0812aefbe15c5b9d77efc40da6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0b:b9:f0:b5:f7:59:af:c6:94:d3:e2:e2:12:
72:78:66:81:33:a1:5f:c6:44:fb:bf:d3:ed:f9:e7:
3b:8a:44:7f:93:3f:5c:b5:03:27:09:41:57:09:29:
f3:ec:82:ed:8b:fa:bb:05:45:10:8a:87:71:68:47:
9c:59:e7:c0:39:66:0b:5e:eb:17:64:4e:f1:38:84:
b7:c5:80:96:8a:c6:da:ac:8c:25:31:d0:93:3f:db:
ed:ee:d4:01:fd:d0:36:9d:19:c2:92:a5:21:da:64:
ef:74:20:77:3c:18:5f:42:54:13:6d:90:2d:21:c5:
b2:3a:6a:c7:40:14:89:60:e0:9b:10:e8:67:c6:57:
60:66:f9:a1:1d:25:8b:53:c7:48:82:29:18:29:65:
1f:d2:7e:b9:2f:5c:8a:07:c1:d4:c2:2c:26:7a:99:
dd:74:f2:7a:1e:b4:bd:4a:9a:c0:2a:ef:a7:17:ea:
b0:1f:50:e4:52:1d:25:13:5c:3c:bc:ad:27:bd:e2:
8a:85:03:5f:28:19:03:bb:10:55:81:3e:e3:60:0d:
56:23:2b:10:24:99:6d:d9:3f:48:86:d7:aa:3e:31:
46:23:1e:c5:9d:d0:06:3a:9a:0a:1a:25:ab:1b:26:
ee:fb:e5:41:83:6d:4e:68:58:65:65:cc:d4:0e:15:
05:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:04:AF:EE:EF:A0:E0:81:2A:EF:BE:15:C5:B9:D7:7E:FC:40:DA:6D
X509v3 Authority Key Identifier:
keyid:5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:40:87:a6:2f:e1:81:df:6c:8c:2f:3a:60:24:c3:f8:f6:df:
d3:a7:f5:20:40:54:a2:b1:cd:d6:39:1f:d6:e2:92:7e:39:f2:
91:c0:bf:60:0d:5f:91:be:33:c9:2e:6f:2d:37:b1:c2:63:83:
67:f5:86:95:82:e1:a8:f4:e9:83:cf:a3:37:73:1e:98:b5:7f:
92:5e:81:4f:f4:a1:4b:84:e8:8f:55:2a:1b:e2:15:ad:fd:99:
71:8a:0d:86:f1:af:9a:8f:e3:c4:d5:27:b5:1e:5c:3d:d3:71:
8f:77:0f:68:e5:ae:bd:15:87:40:17:05:d1:9a:1d:ce:4e:df:
74:54:23:55:31:f7:7f:88:c2:70:91:93:b2:09:e9:92:f0:a8:
a3:47:5f:5b:4e:bb:aa:b3:cc:c7:49:02:56:68:2e:e3:50:e3:
a8:58:14:dc:70:ef:fe:5d:b2:52:45:ca:7f:72:1c:ab:ed:a6:
f8:ac:3e:6e:2a:fc:3c:ca:83:54:c8:4c:a2:c6:92:c4:e1:70:
10:c9:1e:b4:09:13:e2:77:c5:18:a6:f2:4e:fe:2d:74:7a:69:
7a:b7:3b:7d:30:99:12:5e:61:e1:a3:10:ac:e6:dc:3f:77:f7:
4b:39:84:00:82:4d:a0:55:c7:40:2c:5a:e7:ea:ed:8a:40:9b:
5c:e0:6e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 22:31:45 2026 by rpki-client