Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
File: XigJUGU6fsWMUzhdALOB77tGWCQ.mft (raw, json)
Hash identifier: UpxNwF7VUcpl9GlVDla0UIATnzsxvrf1eo6rhZlplQ4=
Subject key identifier: 7B:5F:FA:28:38:00:60:FD:74:34:5D:66:B8:2A:85:AE:2A:9D:4A:D7
Authority key identifier: 5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24
Certificate issuer: /CN=5e280950653a7ec58c53385d00b381efbb465824
Certificate serial: 019D2772C5A1B38A96ABD7B07A6D595C47F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
Manifest number: 0847
Signing time: Thu 26 Mar 2026 00:02:06 +0000
Manifest this update: Thu 26 Mar 2026 00:02:06 +0000
Manifest next update: Fri 27 Mar 2026 00:02:06 +0000
Files and hashes: 1: 1-N-Z3cPVFu_Om0GHK2AgOkgXdoM.roa (hash: fr16WHaKP/dmz7kwPH4GVwwXFVV/SyIEEVY49/wQV+U=)
2: 1aw8Nv97xOelgCP3-YnwnaxEm5Y.roa (hash: jy29WIgwdNl8op/0r93ONPzqQSdB42DU8p3Gs7efZY0=)
3: 2PxDuTNSWd2nVBQOyZp7w-a3G48.roa (hash: nuRMk74zjQwmTzVhehj6QjrkhW4+qo+fGCHLFEBJBC0=)
4: XigJUGU6fsWMUzhdALOB77tGWCQ.crl (hash: CDGC+H+iGFoekTy344ulkb77x0wsAaxFI+ZJ9qd6sVU=)
5: c9R4pyYEgXuth8LibhVlQrijaqw.roa (hash: GjJoF2AKi6roB+eJMggN2owFvnp/FEnfdBtdPLGnDgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:c5:a1:b3:8a:96:ab:d7:b0:7a:6d:59:5c:47:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e280950653a7ec58c53385d00b381efbb465824
Validity
Not Before: Mar 26 00:02:06 2026 GMT
Not After : Mar 27 00:02:06 2026 GMT
Subject: CN=7b5ffa28380060fd74345d66b82a85ae2a9d4ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:bb:80:6d:8e:6b:66:37:2c:1b:b8:21:31:c6:
94:e9:56:02:0a:36:db:24:6e:fb:c3:79:44:3b:b5:
cf:10:ad:0b:3a:a1:7c:68:49:c0:59:6f:be:e3:16:
89:0d:a2:c1:08:25:61:38:10:51:41:aa:d2:b3:e3:
d5:f9:60:31:5d:08:a6:a8:f0:68:0a:2f:3a:ec:b6:
4a:ac:35:38:1e:6a:39:fa:a6:7d:13:1b:db:cd:50:
c8:02:2b:3e:39:4c:21:6e:bf:d3:83:00:16:6c:bf:
f5:44:a8:c7:6a:a2:a6:ae:c3:c4:1c:fc:9b:a2:2b:
70:24:c6:44:40:c6:22:5e:14:ce:ce:e1:80:80:5f:
70:c7:d2:e7:ba:72:84:39:0e:3a:0d:65:5f:c2:e0:
e7:7d:1b:6a:9c:a7:14:ce:a7:e7:c1:83:6b:9d:80:
b1:71:da:a7:c7:ef:6b:51:1d:4e:2d:f3:69:3b:bc:
01:44:97:f6:94:8b:42:e6:1f:90:12:f1:40:7c:b2:
77:cb:87:a8:4d:e3:3f:1c:10:e3:3e:97:8a:bb:4c:
ee:06:ca:40:b6:00:56:ed:e7:9f:8e:30:5e:ad:3f:
5e:29:0f:73:09:3a:12:7b:c4:8f:df:b2:bc:6e:33:
8b:06:b9:f1:20:51:d7:5e:0d:2b:e6:41:b4:10:f2:
2a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:5F:FA:28:38:00:60:FD:74:34:5D:66:B8:2A:85:AE:2A:9D:4A:D7
X509v3 Authority Key Identifier:
keyid:5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:d1:ed:e7:6f:71:67:e9:a9:c5:75:67:7c:12:5c:90:f5:71:
25:dc:56:e5:2d:2d:9b:a3:6d:74:be:7b:60:d0:ad:6e:61:e0:
22:b1:59:bd:9d:76:9b:ba:2c:39:78:4c:ff:a2:af:64:8b:e1:
f1:06:11:e7:d6:4d:b3:ea:9d:23:91:b5:1d:05:70:05:1b:11:
07:81:ef:2f:b8:8f:6a:7f:a5:6b:8e:33:84:d7:1b:e1:92:f7:
13:d5:d8:71:63:08:c0:37:cd:d4:4f:4b:a7:d6:c0:6a:9d:8c:
a4:f1:97:ac:86:2a:9c:40:08:c6:fc:f2:b1:51:05:58:27:d2:
95:e3:4c:14:7d:ea:04:87:d3:48:30:4f:02:ee:13:6d:fa:7a:
b4:f3:72:1b:ad:cc:59:08:0e:f0:e6:b3:75:5e:2d:74:c2:8c:
82:3a:2b:d8:9e:fa:a8:cc:f5:c7:c0:10:8f:47:b4:f6:29:24:
4e:15:8b:d6:84:2b:39:1d:20:e5:77:d1:fd:88:9a:b2:5f:36:
3a:ac:2f:e8:23:ae:e1:06:c6:2b:8b:8f:70:f3:4f:2d:94:57:
be:8e:25:77:07:01:6d:42:77:11:59:20:35:5e:c7:7a:a8:71:
fd:e7:67:07:8b:c1:a2:1c:1d:23:00:ae:d2:3c:8f:57:78:85:
21:cf:e1:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:01:41 2026 by rpki-client