Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
File: XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft (raw, json)
Hash identifier: FykA780r4IvxvQzyuJg2uQLUaWec7va4u1tsCqKNicY=
Subject key identifier: F2:4F:09:94:8E:8A:F5:26:F4:C9:94:3D:27:0C:0F:AE:91:00:13:E5
Authority key identifier: 5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
Certificate issuer: /CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Certificate serial: 019D277202688B821B15996206F77702B50E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
Manifest number: 17F3
Signing time: Thu 26 Mar 2026 00:01:16 +0000
Manifest this update: Thu 26 Mar 2026 00:01:16 +0000
Manifest next update: Fri 27 Mar 2026 00:01:16 +0000
Files and hashes: 1: XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl (hash: t2aJDczk0vn6sBHdB/y1GYH38Z0GidzHBh+aQAYTkLM=)
2: vIEeMsOgyhAbHtdasH9clWdBUoM.roa (hash: LNPknqC7GAKoJKuLl2I8NQhITu9vWI4/MB5dCdNLtbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:02:68:8b:82:1b:15:99:62:06:f7:77:02:b5:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Validity
Not Before: Mar 26 00:01:16 2026 GMT
Not After : Mar 27 00:01:16 2026 GMT
Subject: CN=f24f09948e8af526f4c9943d270c0fae910013e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1b:07:81:f9:a5:a7:51:82:32:02:82:31:e0:
b7:36:d1:47:6b:66:39:4d:aa:b7:27:14:59:ca:55:
f4:7c:42:53:c2:ca:ab:f2:0c:3f:25:08:cb:26:09:
46:73:c2:5b:93:93:69:0f:94:0d:ae:8b:2c:06:22:
a6:46:ec:22:32:ae:8f:90:1c:53:eb:0b:50:66:97:
82:e0:75:ba:55:57:e4:b7:02:1e:28:dc:58:e6:11:
e6:9f:64:7c:64:6e:85:56:da:41:70:b7:d3:8e:87:
f5:26:74:4a:86:4e:58:61:fc:30:9b:e7:36:d7:01:
f3:92:4f:a9:f7:83:14:9f:b4:13:f3:39:47:e8:58:
71:ae:34:7d:2c:36:dd:ed:a5:8e:ac:b3:53:dd:b4:
cd:59:02:44:9b:db:10:dd:54:8c:ec:37:62:98:8c:
01:86:6f:b7:97:db:1f:0c:5f:f3:c9:53:7d:01:40:
ce:23:fc:64:7c:42:8e:08:3f:dd:94:9d:8c:27:06:
e1:92:c8:e1:68:2f:32:8c:c0:ad:9d:9a:e9:26:ea:
3d:20:2f:47:be:5a:11:b7:56:b1:38:80:ef:21:32:
6b:f3:e3:2f:c4:e3:f2:1e:e0:64:7d:e4:bf:9b:05:
e3:01:24:a3:12:a9:c2:2b:93:d5:58:78:7b:29:87:
4e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:4F:09:94:8E:8A:F5:26:F4:C9:94:3D:27:0C:0F:AE:91:00:13:E5
X509v3 Authority Key Identifier:
keyid:5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:4b:a1:16:a8:2f:56:67:fd:98:f0:d0:a7:df:60:7e:80:75:
ad:a5:c0:b7:57:ed:d1:98:b2:97:5b:0d:60:fd:22:70:9e:9f:
75:a8:54:f6:c5:a5:1a:8d:9a:2b:70:06:68:83:bd:25:bd:09:
92:09:31:4b:10:fe:e7:11:56:af:f2:94:12:3b:4d:5e:6b:a6:
d6:a6:1f:a3:e8:ee:9a:cc:27:cd:37:9e:ba:94:a5:21:f1:8a:
48:cd:11:db:66:1d:a8:df:64:3c:c6:3f:4a:a8:98:85:8e:fa:
36:32:0d:b9:bf:49:ca:fa:69:b4:67:ee:0f:15:76:cf:51:6b:
86:1d:c9:9a:8f:d0:64:7e:c2:a1:3c:f3:55:c1:5c:cc:e8:11:
a7:28:42:e5:ce:69:6a:7a:6e:2e:84:51:c5:b1:75:0b:a2:d8:
ea:e8:dc:c0:c7:39:69:36:4a:3f:7c:06:ef:13:e3:9c:47:20:
76:8b:43:1e:12:35:8c:bd:37:a5:9c:76:80:f8:6c:9a:0d:c3:
e0:8c:34:a0:2a:e5:c2:93:aa:2d:12:88:79:5f:c6:c3:99:78:
a4:2e:a5:36:d5:f6:4a:ab:cd:a9:8a:1a:2a:c8:e9:93:fa:1f:
d5:dd:fc:19:54:3d:81:4a:8e:16:53:5b:97:0b:d3:8f:c5:ff:
7c:c2:84:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:04:14 2026 by rpki-client