Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft
File: XtGkql_QUBs-ptafQzwvFkIRYIk.mft (raw, json)
Hash identifier: csvA7fsp3MIBeNot1E1bU/2rRcMCLaqE5wld7lpvFsY=
Subject key identifier: 12:55:93:03:97:B6:F5:B9:45:56:12:2D:2A:74:F0:AF:2B:8A:AE:3E
Authority key identifier: 5E:D1:A4:AA:5F:D0:50:1B:3E:A6:D6:9F:43:3C:2F:16:42:11:60:89
Certificate issuer: /CN=5ed1a4aa5fd0501b3ea6d69f433c2f1642116089
Certificate serial: 019D2772C33D2A1937FB46959FE8A6F33FCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft
Manifest number: 1881
Signing time: Thu 26 Mar 2026 00:02:05 +0000
Manifest this update: Thu 26 Mar 2026 00:02:05 +0000
Manifest next update: Fri 27 Mar 2026 00:02:05 +0000
Files and hashes: 1: XtGkql_QUBs-ptafQzwvFkIRYIk.crl (hash: nndYvu7sNO+0sQrZPk1STi3XgDNZk8WUTGrjiBEccls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:c3:3d:2a:19:37:fb:46:95:9f:e8:a6:f3:3f:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ed1a4aa5fd0501b3ea6d69f433c2f1642116089
Validity
Not Before: Mar 26 00:02:05 2026 GMT
Not After : Mar 27 00:02:05 2026 GMT
Subject: CN=1255930397b6f5b94556122d2a74f0af2b8aae3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f7:51:c2:90:bc:c1:de:5d:05:f3:21:dc:32:
bf:4f:42:93:25:2a:5c:4b:5f:23:2b:71:c2:fc:82:
84:2b:66:ca:c5:56:39:49:2d:f5:b9:55:4b:b3:da:
f7:72:40:a8:a3:e0:e4:de:46:4d:a1:67:20:aa:1b:
1d:e9:a8:9d:0e:48:3a:6e:1b:4d:49:ca:1d:77:4f:
8a:c0:b1:b1:6a:1c:56:70:52:e0:f3:26:5f:27:ef:
8a:5c:4c:37:e5:ab:45:c1:31:9f:68:5b:78:fb:3c:
34:ea:c3:9d:f5:16:39:43:53:71:8b:89:91:83:5d:
4e:cf:e5:e7:08:6a:df:29:47:a7:b7:41:12:a9:bc:
d9:f1:e7:8f:fc:b4:d8:b0:8d:d7:b8:dc:34:e0:eb:
b3:2c:b1:b7:76:38:4e:e3:cb:d9:16:40:bf:7e:62:
fb:d4:90:69:7c:e2:dd:93:83:79:9b:4d:70:5e:2d:
82:93:ad:c5:eb:f5:4a:29:50:d1:7a:24:39:aa:53:
9a:ef:b6:c8:e7:11:48:04:86:00:d8:ca:eb:58:ea:
34:4c:f7:07:0e:46:3a:5c:09:2e:43:6a:0f:9b:68:
90:95:32:e7:4e:4c:49:be:1b:5d:b1:af:26:26:31:
06:b5:2b:fd:3c:81:82:fb:01:57:55:7b:01:94:28:
44:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:55:93:03:97:B6:F5:B9:45:56:12:2D:2A:74:F0:AF:2B:8A:AE:3E
X509v3 Authority Key Identifier:
keyid:5E:D1:A4:AA:5F:D0:50:1B:3E:A6:D6:9F:43:3C:2F:16:42:11:60:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtGkql_QUBs-ptafQzwvFkIRYIk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9c7703-8d14-4bc0-88a9-b9a86ac3e8be/1/XtGkql_QUBs-ptafQzwvFkIRYIk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:ff:c4:71:8b:7d:38:84:be:9e:fe:bc:21:14:57:83:11:ae:
b4:e8:bd:36:dc:54:02:fd:c3:53:6a:60:42:3a:be:27:3e:87:
ad:3e:30:c1:29:bd:35:aa:16:26:2a:2d:ab:13:9a:07:99:f3:
01:87:61:bf:da:de:ac:1f:44:bb:b0:29:9c:5b:0d:11:54:b5:
58:d1:eb:20:c4:42:8c:bb:30:c1:48:9a:c4:2a:be:f1:59:fc:
a7:61:00:0a:0f:c7:7e:47:c7:0b:c1:80:2e:d4:41:a7:b2:73:
d7:0e:bc:8b:ea:89:a5:09:68:22:9c:1f:3c:62:e7:5e:03:c8:
8a:72:f3:a1:11:7c:9e:90:13:6d:eb:13:e4:cb:ef:24:24:7c:
2f:7c:aa:18:d4:f3:c6:e6:ff:7c:1d:44:8a:20:c5:c1:b5:5a:
e4:ea:94:e3:ec:04:5b:3c:c9:92:84:bf:80:f1:24:24:c2:1e:
60:31:18:d3:62:2c:d3:45:2c:8e:07:42:82:27:02:b5:3e:ce:
36:d9:44:4d:13:ba:aa:6d:17:e1:4b:28:d0:18:f6:66:43:d0:
6f:f2:d5:c6:cf:2f:63:1e:af:43:97:fa:00:ce:97:3c:48:29:
f9:67:91:db:be:98:a2:0d:08:e8:29:74:5d:d6:b8:10:73:19:
b2:0b:6a:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:53:46 2026 by rpki-client