Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
File: XWlT20hASwxmoV8Npu-n-sCpNp4.mft (raw, json)
Hash identifier: snIVvZxxNhDLzX3I9D1zR/6CP8PwetOjbX5/ucSOwjA=
Subject key identifier: AA:38:54:49:65:44:73:FC:57:F1:15:F0:AB:56:B6:24:3C:54:68:BF
Authority key identifier: 5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E
Certificate issuer: /CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e
Certificate serial: 019D2816F05355E19FCCAD977006D7074ABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 03:01:25 +0000
Manifest this update: Thu 26 Mar 2026 03:01:25 +0000
Manifest next update: Fri 27 Mar 2026 03:01:25 +0000
Files and hashes: 1: PnV6MRrCbEDbUgZOWZkw0F-5fTw.roa (hash: gpEq7vfgynN+KUY61gV3ilXsbaQKj+P9YjZ3SCCvLxo=)
2: XWlT20hASwxmoV8Npu-n-sCpNp4.crl (hash: 0ynW1rCQzTh6bKjeZYMRT2k15VvLuHWCf0Bwd+yolYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:f0:53:55:e1:9f:cc:ad:97:70:06:d7:07:4a:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d6953db48404b0c66a15f0da6efa7fac0a9369e
Validity
Not Before: Mar 26 03:01:25 2026 GMT
Not After : Mar 27 03:01:25 2026 GMT
Subject: CN=aa385449654473fc57f115f0ab56b6243c5468bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f4:8a:99:f2:71:a2:e9:0b:ea:05:f7:df:48:
41:05:50:d5:58:24:8d:72:2e:ab:73:4e:ff:09:da:
c6:7c:76:37:a8:b7:53:6a:f1:8f:14:17:4d:ae:55:
1c:96:e3:c7:6e:ff:b6:d2:c4:6c:c2:1a:ad:df:04:
47:30:6d:8f:32:c6:10:69:13:20:89:ca:d9:fe:83:
35:80:1f:f3:03:a1:33:8f:a2:27:22:db:0f:c5:1e:
80:f0:1e:a5:8a:71:00:2e:bd:d7:10:f1:b2:96:77:
a6:4a:ba:63:c5:2a:06:32:a5:86:86:45:02:18:9d:
6c:8e:95:81:a1:6b:36:9b:aa:bc:4f:a5:71:1e:22:
61:45:e1:b2:f5:38:2b:2b:72:52:1f:31:b5:50:a2:
1b:dd:b3:11:ff:22:ba:b8:20:aa:3a:60:c6:a9:eb:
79:3d:ef:1a:f7:6d:38:59:2e:de:99:96:2f:c4:53:
78:ca:67:82:05:4b:58:5e:da:71:7d:64:4b:f4:ec:
ab:ba:b2:79:f5:7b:e6:ba:a3:12:3c:94:48:c2:dd:
33:a2:1b:0d:c8:49:8e:02:b0:c8:0e:ad:19:95:62:
0f:13:72:f2:a3:3a:a1:8d:a8:7a:de:65:ee:da:86:
84:2e:4b:01:aa:31:1d:43:3a:3b:97:78:8e:09:36:
d6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:38:54:49:65:44:73:FC:57:F1:15:F0:AB:56:B6:24:3C:54:68:BF
X509v3 Authority Key Identifier:
keyid:5D:69:53:DB:48:40:4B:0C:66:A1:5F:0D:A6:EF:A7:FA:C0:A9:36:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWlT20hASwxmoV8Npu-n-sCpNp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/536fde-a02d-48f5-a75d-fa2fb94da1a2/1/XWlT20hASwxmoV8Npu-n-sCpNp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:84:8e:a9:57:0a:dd:a6:bf:f5:46:ba:4b:a6:39:bc:35:da:
b6:1d:2e:83:cf:e2:d1:bc:3c:40:10:80:bc:61:87:e9:86:06:
1d:04:4a:05:d4:70:59:69:91:69:98:c4:0b:32:fb:90:af:9f:
ce:c9:e4:f8:d1:91:9c:b8:5a:4b:24:69:3f:cb:6c:94:bc:9f:
0a:49:ac:7c:27:63:5e:65:15:38:ea:a4:80:fc:21:b1:3d:c0:
25:12:e7:16:70:b4:e1:42:47:7a:ec:39:26:80:2e:63:62:59:
ef:1e:65:2a:46:81:c0:2f:c7:29:63:d0:9c:c2:9b:4f:d2:7d:
95:35:e9:54:ea:a7:2f:d3:2d:a3:bf:c6:3f:86:ad:69:59:bf:
78:18:ef:73:39:5b:5c:03:63:e7:01:fa:43:09:97:43:51:6a:
50:b3:f6:1c:38:0f:fe:f5:03:2b:41:bd:d3:58:5f:df:75:da:
0e:ae:b5:5a:8c:fe:00:bb:f6:52:f6:47:e0:ca:56:82:18:32:
64:c6:01:6f:47:44:61:c9:00:8a:74:92:a5:3e:f0:3d:b9:f5:
8a:7d:25:5e:88:75:6f:25:9b:e7:14:bf:10:55:5c:b4:6b:f7:
50:17:d1:90:3c:f8:a1:e7:84:f3:5d:de:46:16:a9:f9:dc:10:
5a:76:ff:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:00:57 2026 by rpki-client