Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
File: xfFStqDQBGJ9KF2Hmqg-WEYast8.mft (raw, json)
Hash identifier: fc9dLHf0LIU26jLMSASBxe5C1zg76aQrHX20ww/tgGk=
Subject key identifier: CE:90:90:6F:53:54:76:61:A8:79:63:B8:D4:8D:57:48:D1:DB:A4:EA
Authority key identifier: C5:F1:52:B6:A0:D0:04:62:7D:28:5D:87:9A:A8:3E:58:46:1A:B2:DF
Certificate issuer: /CN=c5f152b6a0d004627d285d879aa83e58461ab2df
Certificate serial: 019D3977D2F0A16DAED45ABAA9A295CD26CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
Manifest number: 14B4
Signing time: Sun 29 Mar 2026 12:00:47 +0000
Manifest this update: Sun 29 Mar 2026 12:00:47 +0000
Manifest next update: Mon 30 Mar 2026 12:00:47 +0000
Files and hashes: 1: NwvDc-yJwXeNivsjoY0gJyIcmR4.roa (hash: FEVqQwQ9gr8Xh59AeGfQNtLNsq4t+I6eMLo4jtBSrFY=)
2: xfFStqDQBGJ9KF2Hmqg-WEYast8.crl (hash: vClh/x/SR/nC8TfHGS05nhvuSRMXfLJTfH3Hfu5YL94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:d2:f0:a1:6d:ae:d4:5a:ba:a9:a2:95:cd:26:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5f152b6a0d004627d285d879aa83e58461ab2df
Validity
Not Before: Mar 29 12:00:47 2026 GMT
Not After : Mar 30 12:00:47 2026 GMT
Subject: CN=ce90906f53547661a87963b8d48d5748d1dba4ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5a:42:64:78:81:98:aa:1d:cc:88:c9:2d:6c:
22:b9:dc:55:8c:6d:40:9a:11:fc:91:50:42:b8:02:
52:b4:82:69:c5:5a:e1:ec:ee:ec:c3:a9:54:0a:a5:
a4:d8:26:f2:e0:6d:93:59:3e:11:97:17:34:ad:d7:
a2:53:5e:fb:5d:8f:f1:76:8e:c3:8a:4b:ec:87:78:
1a:bb:89:f8:a6:38:e1:dd:b9:06:ac:07:78:00:f5:
d2:b6:d7:f1:ff:31:d3:f7:b3:4f:f0:af:65:80:97:
ea:0f:e2:0a:41:65:e9:4a:4a:9d:63:7e:9f:f1:ab:
74:bd:3b:ed:26:c7:42:79:e9:6f:4e:c9:3b:7c:07:
2e:d0:c6:de:db:0a:ad:45:03:4a:32:30:f5:2c:33:
fb:59:eb:ca:b2:36:c9:92:5c:a0:b3:7f:5f:fb:f6:
08:f4:ec:41:15:25:25:85:40:55:c5:b8:72:41:79:
ed:3b:72:8e:bd:98:d8:fb:69:f0:6b:b3:cf:39:84:
9f:61:8a:63:a8:1a:9c:b4:f0:47:c9:68:f0:ed:6b:
a6:bf:7d:02:94:5f:c2:18:bf:72:6a:d5:c5:d8:b4:
69:da:c6:90:fb:99:57:92:0a:1c:bf:74:80:bd:4d:
fe:12:1b:a2:66:64:7b:bf:e2:ed:92:d8:bb:2e:ec:
b1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:90:90:6F:53:54:76:61:A8:79:63:B8:D4:8D:57:48:D1:DB:A4:EA
X509v3 Authority Key Identifier:
keyid:C5:F1:52:B6:A0:D0:04:62:7D:28:5D:87:9A:A8:3E:58:46:1A:B2:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xfFStqDQBGJ9KF2Hmqg-WEYast8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/53ad5a-0a37-4f65-a6c6-737e78c87012/1/xfFStqDQBGJ9KF2Hmqg-WEYast8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:7a:50:49:7f:ae:79:1e:24:10:f8:49:0f:88:5e:4a:7f:44:
6a:a4:77:f9:5c:0e:90:2e:5d:12:7e:ca:1c:c8:18:b6:8e:d4:
1e:ac:b0:6e:07:71:7d:df:88:37:c0:ef:0d:5d:ff:86:a2:6b:
fe:cd:11:7d:d1:b0:97:a2:8a:f9:73:c9:74:b5:ce:8f:e4:be:
80:3d:ac:4d:81:40:36:31:e5:a1:f9:e8:be:dc:e5:4a:92:dd:
01:83:a3:76:71:67:f3:b6:13:1e:dd:91:45:03:10:14:50:0c:
87:36:9d:b7:0a:3d:f0:dc:91:8c:7c:f4:f8:8b:6d:ee:74:e1:
3a:b0:b9:a1:74:72:c0:0d:37:f0:88:e1:62:d2:af:88:da:86:
48:4c:e2:8e:2c:90:3a:d3:70:09:ec:e0:2d:bc:4c:67:b0:c2:
e3:29:76:4b:c5:40:89:38:ca:cf:55:8c:cb:a2:2c:4e:db:38:
c6:6c:f7:c4:70:da:15:21:ff:4e:90:ee:fb:73:40:4b:a5:f4:
95:80:f5:97:b3:f7:62:1a:25:9c:52:8d:13:44:04:33:62:62:
e3:b3:d2:2b:63:dd:c3:f8:4b:81:1c:6c:c5:87:e1:be:1c:53:
83:29:81:af:47:b3:af:c1:ff:1e:5b:ad:e2:b8:04:c2:77:e8:
aa:57:e3:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:41:03 2026 by rpki-client