Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
File: xndznw-VRrTwJXcsXCsXl4WSOFI.mft (raw, json)
Hash identifier: dnVFdF3pmATELkcLQ2Wx7aMZf5LOSm2v9TheFiuCpXo=
Subject key identifier: 72:63:0B:A9:14:33:99:C3:4D:20:1B:6D:BB:F8:EE:4C:65:D8:4B:DB
Authority key identifier: C6:77:73:9F:0F:95:46:B4:F0:25:77:2C:5C:2B:17:97:85:92:38:52
Certificate issuer: /CN=c677739f0f9546b4f025772c5c2b179785923852
Certificate serial: 019D25BA3F1CE817521446C0F3B898821FC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
Manifest number: 1697
Signing time: Wed 25 Mar 2026 16:00:56 +0000
Manifest this update: Wed 25 Mar 2026 16:00:56 +0000
Manifest next update: Thu 26 Mar 2026 16:00:56 +0000
Files and hashes: 1: xndznw-VRrTwJXcsXCsXl4WSOFI.crl (hash: kjqZjvytSBc4ue8nC2Yd3n8eae6f5Q5Fpt1T+swvDTA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:3f:1c:e8:17:52:14:46:c0:f3:b8:98:82:1f:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c677739f0f9546b4f025772c5c2b179785923852
Validity
Not Before: Mar 25 16:00:56 2026 GMT
Not After : Mar 26 16:00:56 2026 GMT
Subject: CN=72630ba9143399c34d201b6dbbf8ee4c65d84bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:68:f9:00:d3:fd:f8:a3:fd:cf:11:97:d7:e2:
cb:70:a0:14:8a:a6:5c:88:95:0d:35:10:96:43:93:
0e:f4:6f:22:62:42:40:a0:55:2c:19:5d:ca:d5:91:
70:2a:04:8a:5c:b0:48:49:40:d9:ab:3e:a4:ec:e6:
4a:96:e5:da:ed:84:12:0a:d5:ef:cb:4a:01:68:89:
d6:4c:8a:13:12:6b:65:63:60:cd:b9:5b:f6:14:50:
18:89:de:9b:be:1c:51:7f:b1:2e:aa:75:75:42:7c:
b9:eb:22:af:9f:26:d7:f8:d7:1d:41:23:5a:19:bc:
ed:59:75:f4:08:f9:31:ec:cb:a7:4c:f4:da:4d:e9:
05:8c:18:48:46:c3:be:49:9d:9d:87:44:d0:11:bb:
60:05:72:4a:34:8a:c4:04:3b:09:24:82:aa:92:22:
5b:36:1e:43:29:94:fc:c8:a2:72:87:f1:bd:e8:aa:
55:99:17:af:3f:ee:8f:23:ca:06:48:0f:d1:eb:34:
dc:7c:69:53:12:bc:ac:4a:01:1a:63:1e:c8:19:3a:
14:47:86:2e:ce:28:36:ec:7d:3c:f4:a3:e1:0e:b5:
ec:ad:cd:4d:02:be:27:9f:f2:4f:ea:9f:a5:8e:bd:
49:41:ca:2e:d8:32:a5:57:fc:69:d0:0a:7f:9a:be:
7a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:63:0B:A9:14:33:99:C3:4D:20:1B:6D:BB:F8:EE:4C:65:D8:4B:DB
X509v3 Authority Key Identifier:
keyid:C6:77:73:9F:0F:95:46:B4:F0:25:77:2C:5C:2B:17:97:85:92:38:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xndznw-VRrTwJXcsXCsXl4WSOFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d60291-d840-4901-a85d-c685fa916b07/1/xndznw-VRrTwJXcsXCsXl4WSOFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:e6:e6:49:7c:1f:e7:64:39:3f:30:35:26:9a:35:cd:c1:8e:
03:f0:61:75:d0:18:88:70:c3:93:0c:67:98:ba:13:93:46:e5:
ff:97:08:65:1e:aa:a6:37:19:1a:1f:ee:df:e5:17:ee:29:ae:
ab:00:95:b2:d0:7d:f4:19:f0:fa:5a:c6:bc:58:f7:be:41:c8:
fe:30:11:ee:60:de:37:7c:43:6f:d8:67:c7:0d:45:70:95:8f:
1a:bc:83:cc:3c:d7:7b:b2:0c:ba:4b:5c:4c:80:69:e6:4a:19:
ae:aa:50:b9:a5:5b:5f:3c:dd:ad:ca:a1:38:3b:21:df:f9:82:
89:37:bb:81:25:8a:c9:50:6e:f3:87:e8:0c:95:c7:e6:30:af:
91:6f:ac:58:60:4d:59:5c:34:2a:77:a1:b5:03:e7:cd:4c:26:
68:6c:a0:14:82:40:67:3e:21:98:eb:06:89:f1:21:cc:4b:0c:
67:79:5e:55:41:cd:4a:8a:f0:af:f8:fc:44:b9:a4:a6:10:68:
ca:d8:88:04:46:1e:03:7b:f4:b7:ef:49:8d:44:dc:93:13:af:
91:fb:c4:41:26:46:b9:43:5d:af:53:4b:5b:6b:5f:46:ab:9f:
95:46:ac:19:2c:0d:4b:d2:ce:45:06:7d:76:ef:bd:df:30:30:
44:01:9e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:38 2026 by rpki-client