Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
File: 1XgxwfXmACVCvOut7yQSithG6vk.mft (raw, json)
Hash identifier: C3VM3YzHGdb3OtlGu7PwSz21nR/6M0Wsp2SUpVNOO+Q=
Subject key identifier: 37:4D:8C:A1:30:FE:75:03:DC:52:40:F7:E6:7B:E9:B2:BA:EE:00:05
Authority key identifier: D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9
Certificate issuer: /CN=d57831c1f5e6002542bcebadef24128ad846eaf9
Certificate serial: 019D265FD47989A29555830BC25061B673E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
Manifest number: 0349
Signing time: Wed 25 Mar 2026 19:01:47 +0000
Manifest this update: Wed 25 Mar 2026 19:01:47 +0000
Manifest next update: Thu 26 Mar 2026 19:01:47 +0000
Files and hashes: 1: 1XgxwfXmACVCvOut7yQSithG6vk.crl (hash: ShfRRZigKXbJZWqQxqwwoXYj9cJHLxgOw+ljc8etIc4=)
2: edoHN6_JsP-n0lJvF27iJ8eI6P4.roa (hash: 8NDkYnaMysyzTRQRKzPfGA1yeZmwSTwDWWtshuRs65s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:d4:79:89:a2:95:55:83:0b:c2:50:61:b6:73:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d57831c1f5e6002542bcebadef24128ad846eaf9
Validity
Not Before: Mar 25 19:01:47 2026 GMT
Not After : Mar 26 19:01:47 2026 GMT
Subject: CN=374d8ca130fe7503dc5240f7e67be9b2baee0005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:17:47:64:42:d2:60:7f:7a:67:6a:a6:08:88:
2d:ae:e7:a0:7d:33:4b:c5:8d:66:74:80:42:94:17:
75:2e:4b:0b:25:03:f7:00:1c:73:c1:75:be:e9:6d:
f4:65:d0:80:ac:26:26:54:54:c5:cb:51:f7:f5:4e:
26:c7:d3:cb:69:4a:f6:3a:9b:be:f5:f9:66:d3:36:
d9:c0:dc:a2:15:b3:4c:a0:c2:bb:fe:17:d9:52:6c:
de:c0:d1:bc:b4:0b:f7:60:ed:51:c4:1e:b7:54:14:
f8:fe:90:1c:30:06:4c:2d:e0:d1:f5:22:f2:9b:23:
ab:83:39:01:e3:47:01:e6:74:c7:ef:44:db:59:15:
9f:a8:e0:9c:35:c3:5a:54:35:3f:40:fc:a4:fb:a3:
c9:9e:39:76:f2:ff:09:0d:56:b7:7f:0a:ef:a0:90:
d6:7c:67:59:19:3c:13:9a:95:23:5b:ad:83:ab:9f:
c6:4c:66:ed:f9:7f:e2:04:26:7d:86:1b:02:28:f7:
73:56:20:7d:71:a2:f0:a1:ac:d3:d1:f5:1a:35:49:
36:44:59:65:cd:58:5e:5b:42:04:0b:85:37:9c:f0:
53:8b:03:48:5c:d5:ce:99:b2:c6:5f:3c:66:64:14:
87:67:7a:64:cb:ee:d4:1d:7b:7b:8b:16:bb:48:63:
db:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:4D:8C:A1:30:FE:75:03:DC:52:40:F7:E6:7B:E9:B2:BA:EE:00:05
X509v3 Authority Key Identifier:
keyid:D5:78:31:C1:F5:E6:00:25:42:BC:EB:AD:EF:24:12:8A:D8:46:EA:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XgxwfXmACVCvOut7yQSithG6vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b1964a-30ae-4482-845d-746365dba5bb/1/1XgxwfXmACVCvOut7yQSithG6vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:59:6c:30:f7:0e:e8:04:1a:fa:f2:b8:19:3b:37:95:c4:66:
60:62:53:2a:77:4f:dd:44:b1:01:4c:00:b4:1f:af:94:da:99:
89:00:a0:02:19:63:9a:6c:7c:f6:fa:2c:0c:ca:0d:e4:a9:07:
94:2f:ae:6e:b9:4b:fe:5a:f1:ae:9a:f3:20:c0:e0:27:cb:81:
6f:54:39:c1:af:7b:18:d0:bd:04:d9:ac:6b:57:19:ff:d0:b2:
ee:b0:81:b1:26:10:56:12:54:ad:91:9f:9b:2d:51:74:e0:c2:
41:f5:e7:a8:af:3c:64:a8:d2:52:26:f6:73:1b:ca:9b:e4:f6:
13:da:00:59:64:e8:a9:98:2f:e6:eb:7c:51:b9:47:0b:36:a5:
40:50:a1:f8:f8:de:08:7b:5c:a6:a1:e6:f9:e7:72:3e:84:13:
bb:89:56:ef:da:18:1b:f2:e2:3c:44:79:8b:c4:ec:12:23:9a:
ce:06:58:9b:dd:cc:1b:42:94:10:48:ed:56:9e:bb:51:27:10:
82:b7:4e:81:1c:50:3f:4f:f8:43:17:03:a9:92:be:5b:db:e9:
64:54:8d:17:a9:67:fc:af:49:e5:0e:5a:68:e3:8a:19:8d:88:
90:6f:8f:7e:6e:fb:d7:38:b5:63:92:96:b5:cf:6c:91:f3:33:
b8:ee:f0:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:05:13 2026 by rpki-client