Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: pZB6vpNpP9Yr9QGC971Gq5/DybQSShZ7sL7yiL9qzlk=
Subject key identifier: 20:08:E7:C0:8C:4A:34:9A:6F:CE:48:59:99:7E:47:B4:A5:2A:BE:DE
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 019D265FE15A47D952CBDCA3232656585DE0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 0784
Signing time: Wed 25 Mar 2026 19:01:50 +0000
Manifest this update: Wed 25 Mar 2026 19:01:50 +0000
Manifest next update: Thu 26 Mar 2026 19:01:50 +0000
Files and hashes: 1: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: ShEVtWXLlGdvCzy2sVx43esHcxqjTPECcaXX7RK6Cis=)
2: yt6RWY6KGJ0emTVe0oqz88MCdCQ.roa (hash: bM/4s1Z9MxV2DL76ljpJ5UL1Z/n6o4GYGrAbLT9qX9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:e1:5a:47:d9:52:cb:dc:a3:23:26:56:58:5d:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Mar 25 19:01:50 2026 GMT
Not After : Mar 26 19:01:50 2026 GMT
Subject: CN=2008e7c08c4a349a6fce4859997e47b4a52abede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:59:9a:0c:50:bf:76:87:5c:63:0d:56:ec:be:
ec:08:a2:f4:38:a4:0e:e2:04:61:a0:94:43:24:f4:
f3:e3:86:9a:94:68:de:32:e5:b2:06:87:9d:e8:52:
a4:49:e3:97:5f:f0:8c:61:98:f1:62:f1:7a:17:4c:
36:26:28:d1:a4:d6:2f:84:c5:d8:63:95:c6:23:0e:
59:b2:f4:91:5d:ad:05:31:6f:3b:a1:1a:2b:b7:5a:
3c:1b:c5:0d:89:01:23:b8:e0:82:5d:74:aa:b2:06:
2e:79:93:95:c7:39:a1:f5:aa:c0:bd:5c:d0:6f:61:
83:e0:cc:0f:1d:7e:56:3d:80:f4:c2:a2:2a:97:d9:
36:da:83:20:b1:29:c9:11:64:a7:43:ab:e6:5e:94:
ba:34:1c:c2:c8:5d:b0:39:01:da:7b:46:2b:3a:6d:
8f:f3:54:98:01:e2:77:4e:86:73:31:45:1a:f1:b8:
f0:d4:39:bc:2e:a3:c4:3d:c1:6e:72:fa:96:1a:ed:
33:6a:fa:f0:6a:83:49:38:43:ac:a5:cf:a1:49:4b:
2f:3b:ca:1c:8a:af:8b:5f:9e:95:88:9a:bd:29:bd:
76:e5:8b:15:43:e9:a6:02:7c:98:97:10:a1:1e:0f:
0d:b7:85:a4:9f:ea:66:3a:42:1e:9a:b6:8e:2b:1d:
2f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:08:E7:C0:8C:4A:34:9A:6F:CE:48:59:99:7E:47:B4:A5:2A:BE:DE
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:8f:ce:75:e4:75:ce:61:15:06:33:18:07:8a:43:ba:5a:8f:
2d:0a:c8:d0:a7:1e:07:6c:e1:dd:13:16:bd:19:2e:5b:dd:88:
10:f9:45:ec:84:05:8f:d6:3b:49:c1:02:8a:12:85:c0:40:20:
07:66:02:1c:c1:46:fb:3d:44:b9:47:8c:60:36:f4:a3:74:55:
a4:8f:a0:27:8b:8a:fb:9f:e1:ae:a1:69:ab:96:4f:78:f0:db:
8d:32:af:cf:2c:8f:0a:63:23:6b:1d:9c:cb:89:11:05:b4:23:
98:2d:fc:69:06:8e:96:b3:c8:39:ab:92:0d:f8:cc:0f:76:58:
2d:f1:09:60:22:77:eb:a5:87:10:38:f0:62:1f:34:18:93:54:
d0:96:9a:65:a6:a0:4c:c2:2d:7a:25:ac:44:94:62:ae:8f:3c:
7d:54:e3:fb:cf:c9:91:0f:3a:c0:06:04:18:44:e3:15:67:b6:
d7:ab:fc:7f:32:b0:fc:be:07:2e:ee:78:0e:2f:62:44:27:1a:
72:6b:81:85:11:30:11:c6:54:59:1b:7c:89:27:db:7e:8b:f1:
b9:ce:ed:be:8e:f8:6e:b4:3a:07:49:29:fd:82:ed:82:73:bc:
df:11:a6:ff:a5:9b:53:bb:9e:20:19:76:1b:f7:88:ab:f5:12:
6a:cc:c9:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:59:00 2026 by rpki-client