Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
File: xmJhwznF7fjYxIPwjka4SAqAXvE.mft (raw, json)
Hash identifier: QbZ/V1hrVtp0LfWqU0tX0tesULTKMX/NzM/GFZxYtQk=
Subject key identifier: 03:5A:61:7B:72:0A:E9:E7:35:6B:C1:3A:66:58:EA:BC:F1:A9:AB:5C
Authority key identifier: C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
Certificate issuer: /CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Certificate serial: 019D265FA133D412686D688FF802431D107A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
Manifest number: 17C2
Signing time: Wed 25 Mar 2026 19:01:34 +0000
Manifest this update: Wed 25 Mar 2026 19:01:34 +0000
Manifest next update: Thu 26 Mar 2026 19:01:34 +0000
Files and hashes: 1: GkysysiUBXozBtdhxp6l182WpJ8.roa (hash: VR1FnjecjyRiwX08EOHPvLrD5A0SMs3OVYweJtUa454=)
2: xmJhwznF7fjYxIPwjka4SAqAXvE.crl (hash: d+vwzRX8VbNJI9izL3RO2LB1JQrdN0LQArBf5pzAHiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:a1:33:d4:12:68:6d:68:8f:f8:02:43:1d:10:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Validity
Not Before: Mar 25 19:01:34 2026 GMT
Not After : Mar 26 19:01:34 2026 GMT
Subject: CN=035a617b720ae9e7356bc13a6658eabcf1a9ab5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ff:c4:44:4c:f3:a5:5b:d1:07:86:4b:d2:78:
33:9b:3d:39:a6:75:0d:5d:49:4a:8a:d6:2d:44:94:
de:4f:1a:05:fd:7b:a3:0f:1d:f8:e1:c2:0e:d4:a9:
52:51:c3:2d:91:d3:c2:e5:0d:87:ee:f7:77:dc:aa:
29:ce:9b:aa:bf:28:1d:9f:a4:65:31:da:ae:be:d2:
ee:b3:37:50:4c:32:c7:3d:d4:51:0d:25:2f:0e:8d:
cb:b8:8b:f9:5d:6f:b0:d2:d3:fa:02:46:3e:84:18:
2f:d3:40:da:c7:8b:29:11:f9:cb:e3:91:7d:4d:56:
63:d4:51:ea:8d:14:b3:c3:3c:17:00:b9:e9:b2:64:
35:f9:d6:fd:cd:4c:3a:86:b8:eb:07:af:a9:d6:73:
09:47:5e:fa:b7:89:dd:98:58:55:75:c3:29:24:21:
cb:8b:4f:12:29:25:93:67:86:e5:52:cd:94:4a:93:
2a:f8:db:d4:04:91:a3:a1:6c:1d:47:87:ae:f8:32:
b1:4b:47:6a:df:15:99:b9:26:74:d3:0c:51:bc:64:
1c:a2:da:86:d2:83:c5:6b:b8:be:45:8b:62:81:97:
18:27:f0:19:73:bf:9b:9c:0c:fd:90:70:51:92:8c:
d3:77:79:14:5f:11:6a:94:88:82:2c:b8:f0:ed:a8:
de:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5A:61:7B:72:0A:E9:E7:35:6B:C1:3A:66:58:EA:BC:F1:A9:AB:5C
X509v3 Authority Key Identifier:
keyid:C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:e3:c5:41:55:23:05:5d:f2:f4:78:2c:54:18:33:16:ad:30:
83:92:08:28:75:17:74:75:a0:d4:74:23:66:c2:75:d0:5e:26:
0a:cc:05:5d:b9:cb:a3:39:72:90:2a:1c:3a:f6:cb:fd:24:10:
59:22:62:d5:d1:bc:97:6f:c1:e9:cd:2a:e2:77:61:06:59:4d:
56:3d:b3:aa:f8:c9:55:b4:aa:c6:aa:b3:9e:25:f0:85:01:05:
38:a0:83:e1:20:89:74:6f:b9:14:07:b6:e4:e6:67:81:1a:d9:
fb:89:cf:92:8f:c4:e5:90:eb:07:be:25:e9:62:5d:ec:ca:af:
f7:81:1c:59:1b:22:6b:fb:44:a7:66:78:c8:5d:45:f4:9d:7f:
f1:8c:20:05:3c:7c:0e:fd:4c:f6:a1:4b:b1:7d:ff:c7:03:cf:
56:80:ef:ad:e1:9a:ae:a8:f9:59:9e:f7:c9:b8:e6:0d:5b:95:
01:60:1f:bb:5e:95:d6:8c:ae:de:d6:83:9b:1b:12:10:b2:f5:
17:f2:bc:26:77:1e:1f:96:0a:53:c9:29:53:b6:f1:d4:8a:0c:
46:63:e3:67:52:72:cc:6f:f3:47:19:2c:df:a2:09:66:59:41:
c5:fe:e3:b6:37:bd:86:91:ea:b8:79:4b:f6:ea:23:44:6b:9c:
fe:29:40:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:55:58 2026 by rpki-client