Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
File: XWU9B97R6Nf08uoEvTaELFsS8V4.mft (raw, json)
Hash identifier: bA0N2fYexxHBKnM/5tYHlkpTm3BjmWhzCpWO5+SiCvs=
Subject key identifier: E5:93:BF:30:D1:46:B8:84:54:AF:91:2A:55:91:68:CE:DB:09:09:90
Authority key identifier: 5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
Certificate issuer: /CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Certificate serial: 019D37525E0EE24816E88A5712F79444F353
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
Manifest number: 10B7
Signing time: Sun 29 Mar 2026 02:00:37 +0000
Manifest this update: Sun 29 Mar 2026 02:00:37 +0000
Manifest next update: Mon 30 Mar 2026 02:00:37 +0000
Files and hashes: 1: XWU9B97R6Nf08uoEvTaELFsS8V4.crl (hash: 4yxBi4CaFo64KAIvNG+U/9mnzcIYqqrE4mNx90zWLNs=)
2: y8aS9NjGoMwtiWTSfAPqlGnxCWs.roa (hash: ZuvgKYnV+P1b5dUwqqoJerGmgiPYibNQHqD2j8CfPTc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:5e:0e:e2:48:16:e8:8a:57:12:f7:94:44:f3:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d653d07ded1e8d7f4f2ea04bd36842c5b12f15e
Validity
Not Before: Mar 29 02:00:37 2026 GMT
Not After : Mar 30 02:00:37 2026 GMT
Subject: CN=e593bf30d146b88454af912a559168cedb090990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:80:7c:78:78:a7:de:2d:9d:51:58:de:05:2e:
36:56:ed:b6:48:36:07:24:c9:ca:a2:aa:24:00:85:
ad:f2:26:97:7b:21:35:be:39:5c:b0:53:58:0a:aa:
19:a3:9a:e4:30:08:8d:df:95:11:7d:fc:34:3c:ce:
d6:d8:ad:12:ea:8e:d5:8d:3c:a6:b0:a2:84:34:d4:
a6:54:1c:28:d9:af:65:3d:6e:ec:72:76:95:52:b5:
b1:d0:ad:96:5a:50:97:c1:a1:e9:b2:ed:11:5e:9a:
e0:7b:47:70:cd:7f:5c:a5:03:91:f7:60:d0:e7:3d:
79:2e:3e:4b:4c:70:84:9c:3b:e9:87:f7:91:6a:d6:
c2:29:fc:ba:80:0a:03:19:73:13:76:52:d5:d7:01:
b2:30:8c:60:19:08:37:ae:e3:47:18:4d:1e:62:3b:
f5:08:d8:85:6d:e2:13:44:8b:fd:03:54:e6:0b:60:
14:66:28:9b:6f:40:6f:a6:9a:94:ab:cb:98:4d:c5:
95:2f:c4:bb:18:23:fd:c5:4a:bb:d5:91:54:ba:dd:
66:c1:27:f0:63:da:03:a5:b8:39:ad:20:0c:96:58:
28:d5:77:d2:fc:d1:ad:c8:1e:7f:5e:dd:b2:a6:5a:
66:76:a9:d8:bc:e0:dc:58:f2:ff:f8:6f:1b:02:8f:
84:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:93:BF:30:D1:46:B8:84:54:AF:91:2A:55:91:68:CE:DB:09:09:90
X509v3 Authority Key Identifier:
keyid:5D:65:3D:07:DE:D1:E8:D7:F4:F2:EA:04:BD:36:84:2C:5B:12:F1:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XWU9B97R6Nf08uoEvTaELFsS8V4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a0475f-ca97-4b16-96db-2145ca75e383/1/XWU9B97R6Nf08uoEvTaELFsS8V4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:b0:9a:2d:5a:49:69:c5:37:9d:0c:77:e5:1f:95:7c:54:d3:
ee:64:5f:b6:54:4c:65:dc:55:3e:44:8b:58:60:e7:06:2b:03:
bf:65:38:e0:ac:85:c4:a5:51:0c:56:2e:a0:26:7c:a1:2f:d5:
c3:e6:22:44:b6:22:d7:7f:c8:7d:ee:a0:0b:ba:45:78:39:21:
7b:28:c1:f5:a8:5c:53:7a:6f:d8:ed:b4:5d:a0:9a:a7:53:1b:
b3:ca:18:3b:53:91:81:b0:48:71:05:c6:f5:dd:fe:01:8d:ff:
6a:55:ea:ba:b4:57:cb:86:4a:36:15:e5:91:8e:f2:8c:07:94:
cd:05:b6:68:4c:29:1d:d4:84:5e:ce:83:5a:7c:7e:0e:70:d5:
6e:e1:2b:b5:0a:db:76:95:ed:47:c3:9b:c1:39:1c:74:a8:30:
65:bc:c0:0d:38:82:4b:de:9d:04:a0:a8:8d:1c:6b:fc:bd:93:
b2:33:99:65:b7:3e:69:a9:d1:31:3e:f8:97:0a:99:e4:08:d6:
25:e3:5e:fe:a9:65:a9:43:c9:a8:25:78:50:dc:4e:0c:b9:cf:
a7:c2:08:2e:23:5a:2e:51:4d:d1:89:69:bb:f2:cc:ce:c9:6b:
54:d1:52:91:fb:b9:3b:41:aa:3f:dd:21:65:fc:c8:66:e2:f4:
d9:7c:2a:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:16:52 2026 by rpki-client