Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
File: x0at2Nr-mfan14fUR5VFpkb23tg.mft (raw, json)
Hash identifier: JPbNxGYpR2Q7dxmq98LoVX0k++/Cy+mNiiDuqOWyaLA=
Subject key identifier: 99:6B:67:FC:38:0C:05:AD:19:63:C8:4E:94:D8:64:AC:F1:F7:D4:0F
Authority key identifier: C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8
Certificate issuer: /CN=c746add8dafe99f6a7d787d4479545a646f6ded8
Certificate serial: 019D27049FAC1E047FB5AE182FE42F45BB37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 22:01:47 +0000
Manifest this update: Wed 25 Mar 2026 22:01:47 +0000
Manifest next update: Thu 26 Mar 2026 22:01:47 +0000
Files and hashes: 1: 5SqsuyoErucRezmQTfvpY2XQz9g.roa (hash: 2gIJFCrAFvF4esdLzO2MxH+s496fv76stiFCWqMIITM=)
2: x0at2Nr-mfan14fUR5VFpkb23tg.crl (hash: 3M7uWiRMiDtYqCx0OrsvEQAZ3XmhhQ+2CEF1UWB9MY0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:9f:ac:1e:04:7f:b5:ae:18:2f:e4:2f:45:bb:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c746add8dafe99f6a7d787d4479545a646f6ded8
Validity
Not Before: Mar 25 22:01:47 2026 GMT
Not After : Mar 26 22:01:47 2026 GMT
Subject: CN=996b67fc380c05ad1963c84e94d864acf1f7d40f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e6:79:08:3e:02:60:1b:b0:06:2e:75:4f:dc:
7c:a9:b2:cd:4e:67:fb:4c:5d:71:83:81:ba:95:4b:
75:13:0d:d5:7f:9f:8c:2b:ac:f0:c8:71:81:54:4f:
36:dd:68:5a:ce:cd:e0:ba:30:1b:c1:4d:ac:b6:f2:
e4:af:c4:9e:5f:4c:70:f0:3a:2c:b2:ba:9e:e6:75:
6b:27:00:66:a1:0d:80:cf:78:66:5b:d7:a1:f8:7b:
66:ac:ad:3a:b8:51:62:04:71:8c:31:70:68:bc:f0:
71:0a:b3:d4:e2:aa:88:50:5a:cc:bb:06:55:e0:fa:
54:69:9e:db:bf:5d:34:4d:0f:00:93:d8:b0:dd:54:
72:82:05:84:db:f4:a8:04:e0:f8:fc:26:29:f2:d0:
fb:50:dd:7c:35:01:e9:31:05:f1:9f:19:04:d2:4e:
97:60:db:7b:92:7c:fb:23:65:6f:39:d6:a3:e1:05:
0d:79:6b:ec:f3:e5:58:72:58:5a:67:d4:d8:48:5c:
7d:06:d3:18:67:10:3c:7a:21:75:7f:87:24:2b:f5:
cb:cb:1b:31:18:bc:95:da:7c:8d:70:bc:71:2c:b8:
e6:0b:ff:b5:fc:4d:23:24:b9:d1:df:08:3e:80:bd:
ad:1c:5b:9b:4a:9c:11:b2:2d:f9:3a:1e:d6:ce:de:
46:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:6B:67:FC:38:0C:05:AD:19:63:C8:4E:94:D8:64:AC:F1:F7:D4:0F
X509v3 Authority Key Identifier:
keyid:C7:46:AD:D8:DA:FE:99:F6:A7:D7:87:D4:47:95:45:A6:46:F6:DE:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0at2Nr-mfan14fUR5VFpkb23tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/372aaf-5062-4147-877b-7cbfe737a827/1/x0at2Nr-mfan14fUR5VFpkb23tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:8c:1c:85:ad:4b:14:f5:43:5e:87:ca:41:b4:25:53:31:7e:
22:c0:6a:08:2f:2f:9a:dd:e4:41:77:fc:db:67:d7:3f:18:7c:
18:54:07:4b:9d:2a:8a:65:e6:ed:6c:1d:ee:20:22:3d:be:66:
1d:8c:e8:15:fb:cd:28:98:2c:5a:ec:d5:6b:2f:05:d7:76:05:
65:16:de:33:71:47:12:9f:6b:1d:ff:6e:e8:98:0b:b4:01:60:
7a:6e:20:59:5b:48:32:a3:fe:43:9a:60:50:4a:07:bb:47:70:
99:d7:47:ee:d2:c1:fb:fe:a2:97:f9:d9:68:02:42:3e:fa:a6:
17:8a:92:78:81:82:c4:02:88:48:fb:51:a6:cd:54:12:87:6b:
92:6b:4a:de:85:ea:18:36:cb:06:7a:7f:37:78:fa:c5:f6:a0:
30:98:1a:9b:ea:b2:0b:3e:fc:51:0e:23:d5:d8:f5:cc:ab:48:
31:31:bb:fd:70:b3:ea:f9:11:6c:a9:37:cd:c3:aa:32:32:95:
78:60:aa:10:a7:1c:34:30:85:5e:c6:f8:59:c9:02:d1:6c:2a:
a5:06:4b:e8:c4:4c:e3:b7:d1:be:a9:9c:12:a4:68:35:cf:00:
71:2d:43:b6:cf:04:1a:ab:3f:ce:91:4a:dd:83:79:13:b5:c7:
d7:69:52:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:52 2026 by rpki-client