Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
File: xZttw7wi9sNqA5hVU0stQauxJCM.mft (raw, json)
Hash identifier: M52lYy1brdx624h2L7jz78xtCJDM3PbudKU+soy45mg=
Subject key identifier: 68:58:74:C0:36:22:A9:C7:6D:F3:51:64:A0:98:5B:61:8D:53:17:4A
Authority key identifier: C5:9B:6D:C3:BC:22:F6:C3:6A:03:98:55:53:4B:2D:41:AB:B1:24:23
Certificate issuer: /CN=c59b6dc3bc22f6c36a039855534b2d41abb12423
Certificate serial: 019D3752C6EB4E7B2C07B592D946AA937FEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 02:01:04 +0000
Manifest this update: Sun 29 Mar 2026 02:01:04 +0000
Manifest next update: Mon 30 Mar 2026 02:01:04 +0000
Files and hashes: 1: XddFO1_V4vw4BFewS5a4h464RsI.roa (hash: 6STZFqkc7/OsVyHseLRUMCPEN6uwIoKNwxdIv1/YIe8=)
2: xZttw7wi9sNqA5hVU0stQauxJCM.crl (hash: j1XMWOaqBgSEEZAU1T4gw/vlV57hq799lwOvcDsitIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:c6:eb:4e:7b:2c:07:b5:92:d9:46:aa:93:7f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59b6dc3bc22f6c36a039855534b2d41abb12423
Validity
Not Before: Mar 29 02:01:04 2026 GMT
Not After : Mar 30 02:01:04 2026 GMT
Subject: CN=685874c03622a9c76df35164a0985b618d53174a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ca:df:de:ab:f5:ca:8e:ab:92:5b:66:62:b4:
2d:58:c4:3c:e6:c6:65:91:ed:a9:f7:e4:ad:4f:07:
7b:f9:74:ab:c0:61:d3:62:19:97:c4:66:5f:d8:93:
73:01:2f:96:d2:01:80:5d:71:5c:a0:98:5f:6b:84:
a1:1c:7f:c7:05:e6:f4:6b:c6:f9:3d:15:3f:d7:b6:
c6:8b:a0:5d:07:3e:66:02:2f:fb:f4:d4:56:17:05:
3f:39:9d:8b:f7:b3:ae:40:7b:5a:59:2f:00:c3:5d:
28:1d:92:1a:18:a1:7a:06:a8:d1:99:91:79:d1:a5:
68:fa:64:44:65:7f:81:23:d1:f4:d1:23:92:40:d5:
ee:cc:96:5d:2f:bf:63:c2:63:dc:f3:3e:32:34:99:
85:0a:8f:59:23:d0:75:8e:1e:a7:03:60:8e:1d:b7:
cb:6e:8f:bc:0e:48:38:cd:1b:d5:19:2c:f1:cc:b8:
0d:82:11:05:af:94:f4:4e:5f:f9:67:2d:40:5d:01:
d5:63:55:15:c8:f6:2d:93:08:d0:b9:04:83:ef:6b:
5f:06:19:2d:62:ce:b0:71:31:f1:bb:b1:14:e5:cf:
1b:47:45:73:8f:b7:3c:d7:30:5b:5f:cc:06:1e:57:
be:b6:6a:5d:82:b2:a2:ce:a2:da:62:4b:7e:56:76:
80:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:58:74:C0:36:22:A9:C7:6D:F3:51:64:A0:98:5B:61:8D:53:17:4A
X509v3 Authority Key Identifier:
keyid:C5:9B:6D:C3:BC:22:F6:C3:6A:03:98:55:53:4B:2D:41:AB:B1:24:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZttw7wi9sNqA5hVU0stQauxJCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f0efe3-413c-43d2-bb69-d2f40de049b7/1/xZttw7wi9sNqA5hVU0stQauxJCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:0b:31:d3:26:e9:e6:ee:29:62:d7:81:6d:91:2f:94:fe:53:
eb:cf:f3:3c:fb:47:80:6e:b3:49:5e:8b:0e:37:31:54:68:44:
80:71:b3:18:65:c0:a3:e8:96:e3:16:53:6a:d0:0c:aa:46:9b:
63:38:80:31:66:2d:c5:f8:db:7b:ea:e2:4f:60:2a:ec:b3:36:
d1:22:d6:ab:d6:a8:c1:b9:70:67:40:08:b7:f5:45:7e:ef:aa:
2d:18:a9:f9:07:e8:c8:c0:e5:04:d9:9e:7d:c3:f9:df:0d:10:
96:fd:3a:23:1d:fc:65:21:31:a7:1e:2f:f9:64:79:d3:1b:6a:
b2:bc:2b:e1:86:6a:5a:f3:a1:1a:74:bd:c5:cc:dc:0c:97:28:
6a:6e:42:47:0b:b3:4f:4c:68:9b:1b:39:16:f6:fb:52:13:bc:
60:47:3e:91:6d:c0:c3:7c:e0:73:fb:58:0e:04:69:73:71:61:
a8:5f:c1:b4:1b:dd:98:2b:f0:c1:f3:e2:37:fb:11:be:36:8d:
82:88:66:31:62:4f:55:8e:12:59:b8:0e:04:55:28:ac:c6:1d:
9b:7e:d5:23:ab:ef:0c:b2:d2:36:95:10:7c:62:f4:a6:a5:3d:
2b:b7:99:3f:44:85:2f:12:4f:93:b1:e0:7a:03:fe:f1:30:9f:
3f:eb:cb:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:34 2026 by rpki-client