Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
File: XpNr6hsMOiCKuifYsQsnXkdN3iw.mft (raw, json)
Hash identifier: fhyS/oTgcU4ToSRqLZ3lvFHH/MqcmiO/fxQaxJ3TV18=
Subject key identifier: CA:7A:DD:79:63:B5:A6:EC:07:D4:A7:4C:24:4B:61:49:20:A6:FA:5F
Authority key identifier: 5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
Certificate issuer: /CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Certificate serial: 019D2996CEB447C02541D268CEC67880FA62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 10:00:42 +0000
Manifest this update: Thu 26 Mar 2026 10:00:42 +0000
Manifest next update: Fri 27 Mar 2026 10:00:42 +0000
Files and hashes: 1: I4H-h-0IvTFBhVPDqjS4bNj_Ebs.roa (hash: sH+OJNMuVDP+q4KSVOmVWCp6qFy7xvvRbWmFSeE0ZQA=)
2: XpNr6hsMOiCKuifYsQsnXkdN3iw.crl (hash: nUV15m+WIXOa8zGSpwyL2+GiF4X5VcUr5eOjkNtzwUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:ce:b4:47:c0:25:41:d2:68:ce:c6:78:80:fa:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Validity
Not Before: Mar 26 10:00:42 2026 GMT
Not After : Mar 27 10:00:42 2026 GMT
Subject: CN=ca7add7963b5a6ec07d4a74c244b614920a6fa5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fd:22:3b:83:9c:df:64:2c:fb:ba:88:eb:23:
0e:52:02:db:0a:12:35:21:c2:44:f9:84:e4:df:3f:
5e:8a:80:1a:fc:41:4e:fa:7f:3b:56:c3:22:51:d1:
81:d6:60:8d:74:16:a7:ec:61:43:e4:10:86:8d:f8:
fa:07:8f:94:93:21:07:bc:18:e4:d4:23:71:0f:dd:
36:12:c4:29:c9:eb:8d:5b:0b:0a:93:dc:b5:64:50:
88:16:a1:03:7d:52:2c:fe:53:8b:f8:5d:ba:4b:42:
27:83:1c:5e:af:71:6c:d6:43:be:6b:ce:5a:8a:e4:
a6:6a:ce:b6:f3:73:db:34:65:dc:aa:84:3d:84:6d:
db:dd:60:fa:18:c3:1e:94:9d:5f:c5:ce:be:84:4c:
95:ee:0f:6d:da:39:dc:57:97:09:0e:6c:ef:02:dc:
71:e7:3f:70:25:8a:67:e5:de:63:5e:bc:01:34:57:
b5:bb:1f:e7:bb:a0:ce:a5:1b:9e:74:16:db:82:cd:
6b:45:7a:df:39:a3:04:ac:3e:74:1c:a4:4f:30:3a:
0f:53:ec:e4:fd:20:61:0e:a9:7d:d3:9d:23:48:75:
13:e8:cc:1a:09:c0:48:0a:d7:17:9f:55:d5:3b:3d:
67:3d:80:a1:6a:61:e6:0f:85:7c:36:91:99:b5:95:
74:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7A:DD:79:63:B5:A6:EC:07:D4:A7:4C:24:4B:61:49:20:A6:FA:5F
X509v3 Authority Key Identifier:
keyid:5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:99:6c:7f:05:b0:a1:1d:2c:9c:bb:a0:8d:39:db:9d:1a:6f:
d7:f7:83:d4:c5:8b:07:bc:6e:93:c6:6e:93:39:2d:28:ae:a2:
3f:25:26:3d:6d:d2:c5:8d:64:3e:3b:f7:99:71:89:cb:01:ea:
9e:14:13:c6:68:ca:50:32:c5:03:4d:15:7e:20:db:d4:3a:56:
ce:26:7e:7a:0c:fa:af:74:16:e1:3f:82:7c:2d:ef:bc:26:f0:
15:15:2d:ed:73:98:71:32:65:30:cf:94:29:f8:33:ea:f9:07:
3e:97:4e:3d:77:d8:8f:84:ad:fa:76:0f:6a:21:51:28:a7:fb:
06:ce:5a:16:13:15:92:82:b0:1f:ac:de:82:df:3f:59:5b:0a:
9f:fe:f8:3d:49:98:e5:6b:1c:7a:9e:a9:e6:5a:d9:a7:5c:c0:
6a:42:3d:91:40:77:a4:01:94:95:3e:41:c3:5e:1e:52:1c:ec:
f7:37:3f:12:2a:01:d2:84:be:0a:7e:fc:b3:9f:29:7e:17:96:
d7:88:11:17:68:95:66:d2:e7:6d:e9:9c:32:78:c2:46:09:7a:
d8:98:eb:17:78:76:6a:6f:bd:5e:25:07:a2:8f:6e:a8:c3:73:
30:0c:dd:2b:2a:26:6a:19:40:22:67:7e:49:1e:91:60:3a:c2:
ec:2a:10:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:46:21 2026 by rpki-client