Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
File: _XBhwg1PCXYTrAMTI3pt8rsstdw.mft (raw, json)
Hash identifier: NPJEX2PyOSc7Ecl21EjA7XjALfrHBiuimE71iLaD7r4=
Subject key identifier: 6F:9D:E3:B3:27:4D:B2:86:F6:08:1D:65:31:64:6D:AD:B8:9E:09:ED
Authority key identifier: FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC
Certificate issuer: /CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc
Certificate serial: 019D273AA07625AD7AB231AB64E4FD07CC22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
Manifest number: 041C
Signing time: Wed 25 Mar 2026 23:00:46 +0000
Manifest this update: Wed 25 Mar 2026 23:00:46 +0000
Manifest next update: Thu 26 Mar 2026 23:00:46 +0000
Files and hashes: 1: ON48mzQU_ZkOuAlZyHAa9FLTToE.roa (hash: TGKZsRuel7PSpfKiU9Wd7dmrbOAx1arJ02E3xTpIfM8=)
2: _XBhwg1PCXYTrAMTI3pt8rsstdw.crl (hash: i9jN58g7NqRbCGAVCgdwNvRgRnncDMJCpru+y9S2dME=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:a0:76:25:ad:7a:b2:31:ab:64:e4:fd:07:cc:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd7061c20d4f097613ac0313237a6df2bb2cb5dc
Validity
Not Before: Mar 25 23:00:46 2026 GMT
Not After : Mar 26 23:00:46 2026 GMT
Subject: CN=6f9de3b3274db286f6081d6531646dadb89e09ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:86:85:32:06:60:d8:b8:5c:f9:73:e4:13:91:
d3:35:5e:64:5c:bf:f3:21:82:93:df:f0:e2:2e:08:
20:ad:4f:d7:fd:90:83:fc:ef:3d:df:4b:6b:ad:2d:
f1:fd:68:cf:95:fb:95:1d:05:e6:d2:f2:69:f1:df:
3f:ed:ce:59:67:9e:9f:e9:b7:7b:40:85:e7:9c:ce:
57:f9:21:a7:a6:8b:99:62:f6:dc:8a:11:bc:84:a2:
31:19:a5:f2:e4:f4:ea:51:2b:e8:b1:9b:6a:9b:03:
8d:4a:11:33:f4:f4:cb:90:c6:47:bd:08:a6:95:84:
a9:ca:e5:f7:7e:89:5b:3b:79:fe:be:32:71:f3:22:
06:76:fe:a0:b3:ca:5a:06:ac:46:2c:ac:6b:1e:27:
18:81:06:ca:cd:96:f8:90:c9:42:49:20:9d:fb:a6:
c7:c0:2f:c9:50:5f:74:96:11:47:3d:24:c6:b7:62:
08:95:61:09:34:25:bc:5c:1e:f9:cc:be:de:9c:c8:
ab:c0:4c:ae:a7:c2:4a:56:1a:62:3a:24:d5:68:ac:
e3:a9:2a:8d:ec:01:8f:09:45:7d:f6:0b:51:6c:a8:
b1:75:90:41:a4:df:73:9a:f4:fb:67:50:7a:e8:d6:
40:eb:5c:cd:21:4d:29:ce:5a:08:7c:2e:69:87:66:
0c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:9D:E3:B3:27:4D:B2:86:F6:08:1D:65:31:64:6D:AD:B8:9E:09:ED
X509v3 Authority Key Identifier:
keyid:FD:70:61:C2:0D:4F:09:76:13:AC:03:13:23:7A:6D:F2:BB:2C:B5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XBhwg1PCXYTrAMTI3pt8rsstdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/32e3d3-9a8d-4653-94fa-a2019988330f/1/_XBhwg1PCXYTrAMTI3pt8rsstdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:d3:d7:13:07:ae:ee:2c:2f:89:fa:a6:57:92:02:b3:ee:b2:
78:1d:9d:ff:64:5e:63:b9:08:a4:ac:c5:c4:4a:2a:da:79:2f:
2d:54:54:4b:bf:0c:6f:2f:ec:d7:99:d4:b8:af:04:69:fb:e1:
4e:94:3c:3d:f6:e2:fd:87:f8:d2:ba:54:42:a9:f6:ee:c9:b3:
52:e6:7f:82:d8:9e:c8:d1:71:a8:f2:e0:d2:45:7a:cf:fd:46:
43:78:86:3f:b2:0e:f8:aa:a4:e9:1d:37:19:33:0a:76:eb:71:
5c:50:fe:9d:30:cf:88:de:89:45:3f:96:43:d1:af:42:b9:d9:
d1:ec:85:3a:00:e8:fc:70:02:9e:9f:a6:36:69:e0:a6:5e:0c:
16:c6:6c:06:1f:86:55:05:7c:28:a3:27:1e:65:5a:fe:5f:5a:
7b:e4:1d:06:bf:59:65:be:54:ec:3b:f6:3c:f6:9f:95:ff:ba:
ab:d4:c0:ac:8e:1d:1f:56:be:28:0d:3d:cf:81:15:2f:00:6b:
98:54:95:85:63:92:b7:b8:77:36:fc:80:f4:bc:69:89:f9:5f:
71:52:fb:d7:ea:37:d5:ae:94:f6:de:fc:3d:f0:50:6c:44:fb:
f2:49:7c:e3:2f:1b:cd:62:76:12:46:b4:92:6b:e6:a6:7c:fb:
cc:0b:fb:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:38:51 2026 by rpki-client