Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
File: xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft (raw, json)
Hash identifier: Y2s0QKRLXdMABPx0Rlck52nVEQjytmAInNEpAsxC5tM=
Subject key identifier: F0:2A:C4:01:3D:AB:C3:58:C7:B8:0A:6B:D5:D9:C0:FF:C7:1D:A5:4C
Authority key identifier: C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
Certificate issuer: /CN=c722ad43471b606bcc853bba11b8ed663c151882
Certificate serial: 019D29973B6F1AB19E976478F2E6D981BECA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
Manifest number: 0F74
Signing time: Thu 26 Mar 2026 10:01:10 +0000
Manifest this update: Thu 26 Mar 2026 10:01:10 +0000
Manifest next update: Fri 27 Mar 2026 10:01:10 +0000
Files and hashes: 1: mLbMcmnO4JRmubQP1AmCwO0ZZgA.roa (hash: vJDJ7XvSOkplRv6UMGVogwJjO5lohuWAIXAROmc7RJg=)
2: xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl (hash: A8uG3/fW609GCJTLB1jhequ3WCEwPrmRyWBs33wFVW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:3b:6f:1a:b1:9e:97:64:78:f2:e6:d9:81:be:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c722ad43471b606bcc853bba11b8ed663c151882
Validity
Not Before: Mar 26 10:01:10 2026 GMT
Not After : Mar 27 10:01:10 2026 GMT
Subject: CN=f02ac4013dabc358c7b80a6bd5d9c0ffc71da54c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:db:c8:6b:e5:43:98:32:5f:26:98:e0:8c:e7:
55:6f:20:51:dd:52:35:c6:fc:d9:9d:2e:b2:cd:98:
75:4c:73:eb:5f:97:a4:1a:8b:39:8e:73:66:30:6e:
6c:b1:78:f8:39:75:2e:77:6f:cf:c7:39:2a:43:0d:
2b:52:ed:af:b5:58:f0:bd:28:a3:23:71:80:f0:8d:
36:d6:97:27:02:78:e9:8b:86:7a:0a:c9:2e:60:3c:
c8:e2:09:fb:82:8d:42:4a:42:6e:83:31:97:4b:25:
d3:c4:3f:cf:7e:66:2f:d0:e1:1a:b3:eb:9e:b0:f7:
40:f9:c7:f0:47:ed:ef:c6:08:32:b4:65:66:62:2f:
66:0c:a1:f1:0d:4c:56:19:9c:b0:63:f9:ed:bb:d6:
63:28:36:fc:f6:de:15:7d:e9:68:88:cf:84:78:d1:
ec:a8:71:7e:72:f9:0d:00:35:fc:1a:85:2b:3c:b1:
99:25:88:5e:c1:4a:56:4e:20:f7:4a:e4:af:50:08:
86:8a:e6:90:65:e4:cd:b9:6e:be:26:3a:51:5f:4e:
94:d1:66:67:24:50:68:76:b1:55:76:6f:66:26:47:
00:a3:00:60:a7:8e:3e:22:24:46:06:45:4c:d8:14:
a8:d3:cc:dd:5c:54:f2:cb:3d:32:8d:7b:e6:b5:11:
83:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:2A:C4:01:3D:AB:C3:58:C7:B8:0A:6B:D5:D9:C0:FF:C7:1D:A5:4C
X509v3 Authority Key Identifier:
keyid:C7:22:AD:43:47:1B:60:6B:CC:85:3B:BA:11:B8:ED:66:3C:15:18:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xyKtQ0cbYGvMhTu6EbjtZjwVGII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d3a0b1-08a0-44dd-8774-066ffefd0cab/1/xyKtQ0cbYGvMhTu6EbjtZjwVGII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:32:02:6c:20:74:85:bb:81:19:23:bd:84:76:29:ff:48:94:
96:4d:76:41:db:ab:23:b7:ef:24:21:17:2c:f2:5c:a5:ce:b2:
c5:5e:db:08:27:b8:85:c1:40:29:d4:86:88:7f:4b:e9:49:f8:
6c:9d:bc:82:7b:61:47:28:d7:21:dc:2b:93:51:44:39:a5:57:
53:48:ab:f6:b3:13:79:00:6b:14:77:8b:4c:89:2a:65:77:75:
39:e9:0d:50:12:de:23:e2:b8:28:85:6d:9c:0a:1c:b0:9e:60:
c8:a9:96:7a:8a:80:91:3b:b1:79:3a:fc:a8:f3:2b:d9:98:80:
20:a5:80:c4:fb:23:e0:ee:88:94:1d:4a:53:3a:68:00:4c:1f:
4e:a3:f9:e4:e9:78:c3:6a:31:b3:ff:ec:b9:c4:79:c6:32:9e:
04:83:19:eb:5f:a4:21:bc:32:ed:fb:82:ce:8c:0c:86:9c:a7:
32:94:5e:11:c2:3d:5d:dc:b6:83:18:16:55:c0:00:47:1c:6a:
e0:ee:94:32:ff:9e:d8:38:f3:39:06:83:c3:ad:94:a9:a7:cf:
8e:f4:a6:c6:87:37:13:4b:b9:49:5b:2b:52:f8:8b:4b:00:d0:
5b:29:66:60:a6:38:ad:0e:8e:15:6c:0a:bd:5c:c2:f8:54:41:
ba:24:98:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:58:14 2026 by rpki-client