Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
File: 1XgxwfXmACVCvOut7yQSithG6vk.mft (raw, json)
Hash identifier: fg/MviTVKK41P96NqQvn3vpxPfTH+d+/v/9+F9gPgvo=
Subject key identifier: FF:FA:F3:7E:1E:DB:5F:C4:9C:73:A5:51:AA:C2:AC:B6:7A:03:3A:7E
Authority key identifier: D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9
Certificate issuer: /CN=d57831c1f5e6002542bcebadef24128ad846eaf9
Certificate serial: 019E1D904D2397B0F433DCC07D85076B2F90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
Manifest number: 03C9
Signing time: Tue 12 May 2026 19:00:56 +0000
Manifest this update: Tue 12 May 2026 19:00:56 +0000
Manifest next update: Wed 13 May 2026 19:00:56 +0000
Files and hashes: 1: 1XgxwfXmACVCvOut7yQSithG6vk.crl (hash: UCZC1h47sbcoW4E61vxuVagaQEq9HnZHSvEwvEHZIDk=)
2: edoHN6_JsP-n0lJvF27iJ8eI6P4.roa (hash: 8NDkYnaMysyzTRQRKzPfGA1yeZmwSTwDWWtshuRs65s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:4d:23:97:b0:f4:33:dc:c0:7d:85:07:6b:2f:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d57831c1f5e6002542bcebadef24128ad846eaf9
Validity
Not Before: May 12 19:00:56 2026 GMT
Not After : May 13 19:00:56 2026 GMT
Subject: CN=fffaf37e1edb5fc49c73a551aac2acb67a033a7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c1:de:36:68:f9:8e:31:b3:e2:9b:e2:bd:5c:
dc:62:e6:f0:eb:e8:1c:d5:96:b1:35:fd:81:b3:df:
d5:7e:48:5d:96:a2:be:17:28:a6:97:5c:f0:b7:4b:
05:e9:8b:58:3e:c2:bb:dc:7b:47:32:79:22:50:1d:
83:7c:40:6a:e0:52:99:f8:b6:83:3f:b9:ff:ec:15:
e8:85:5b:5b:98:a7:7a:e4:95:4f:89:72:38:8e:1c:
5a:7e:12:31:d1:58:b1:91:67:ce:51:13:45:e2:85:
70:b6:36:ee:91:bd:43:e7:2c:61:b8:38:5e:cb:ca:
9b:f5:72:0e:73:ac:6f:1f:63:6f:ce:8e:bc:36:54:
3f:7a:1a:e0:84:e8:d7:40:ab:35:10:5a:6c:4d:a4:
8d:74:7f:df:a1:92:01:46:b3:5a:c9:75:d7:fd:d5:
88:6f:53:2b:58:04:aa:38:95:cb:62:36:27:b7:8c:
3f:2a:bd:ab:93:70:5a:b9:95:b6:78:46:92:6c:4b:
91:d8:ef:b3:41:da:43:7c:9a:7b:7a:98:05:cf:8d:
cc:a4:cb:2d:8b:7e:dd:2a:ee:55:f8:c0:91:68:4b:
f8:48:4f:8c:c8:30:1c:06:f3:d5:01:fd:a8:39:19:
c8:a7:29:4a:25:02:de:1c:42:8c:73:61:95:9a:be:
69:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:FA:F3:7E:1E:DB:5F:C4:9C:73:A5:51:AA:C2:AC:B6:7A:03:3A:7E
X509v3 Authority Key Identifier:
keyid:D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:56:a2:dc:a1:2d:f1:b0:e8:09:0e:94:29:78:b4:ac:fa:69:
4b:f3:23:e4:a3:8b:8c:90:42:f5:67:46:f6:e6:89:71:b1:ce:
54:46:1d:f3:c8:2f:bb:3d:c7:ae:8e:ff:e7:2f:4b:cd:4d:84:
5a:3e:f7:d4:2c:0a:ec:17:69:e4:3c:0e:db:25:d9:a6:fc:61:
31:af:01:c7:eb:73:bb:08:7d:9b:bd:c2:89:2d:6e:91:5c:7d:
89:f7:d0:9f:b5:eb:0c:c0:32:b1:2c:5e:df:ac:ee:e8:79:a9:
f2:d5:ea:23:72:fc:4e:ff:f8:f5:29:01:ca:e0:a8:b2:aa:5e:
28:e0:4e:98:d5:84:d5:21:ca:5a:1f:00:c6:70:a6:b2:47:c1:
25:2c:65:f7:59:eb:11:77:6b:58:4b:1c:29:e6:04:4d:c4:a1:
15:12:64:db:0c:15:ab:7c:1d:53:9d:9c:5c:a9:cc:3e:7b:82:
81:a1:e7:1f:1c:3f:9b:36:81:2d:a1:1a:31:e9:86:0e:54:3d:
ec:ab:c9:5f:99:84:9d:4a:24:b3:b6:d3:22:48:d3:27:b9:e9:
11:a0:0c:8b:b7:10:74:18:36:08:88:76:b9:ce:3f:02:b7:94:
fc:d5:9f:e7:92:8d:00:ef:78:f8:eb:fc:f8:2c:3f:8b:f2:1e:
f1:6c:68:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:18:04 2026 by rpki-client