Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
File: XEwop1rJaVHcOEAKgPnvOqryqss.mft (raw, json)
Hash identifier: IJrNVufKm0xqR2RX0rzCJARqU/VJEMfFScKLD1MKJQ8=
Subject key identifier: 73:75:0F:8B:C2:3F:1D:7B:18:0C:1A:9F:7F:C5:63:EB:D5:BE:18:E2
Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Certificate serial: 019CE6366EA216C54FD3757E7FCB55C94B70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
Manifest number: 1865
Signing time: Fri 13 Mar 2026 08:00:52 +0000
Manifest this update: Fri 13 Mar 2026 08:00:52 +0000
Manifest next update: Sat 14 Mar 2026 08:00:52 +0000
Files and hashes: 1: 9hnY7Mi-DWWNXT8zxPWlDMpFkVY.roa (hash: KmgeWMyp8Cb4dRrZsFfQDYyQitlhpxsyGtinqL7w4YI=)
2: XEwop1rJaVHcOEAKgPnvOqryqss.crl (hash: gamf9/MUNYXiUt+9Cu2XerOLD/NeHvxFvWWAscZgBjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:36:6e:a2:16:c5:4f:d3:75:7e:7f:cb:55:c9:4b:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Validity
Not Before: Mar 13 08:00:52 2026 GMT
Not After : Mar 14 08:00:52 2026 GMT
Subject: CN=73750f8bc23f1d7b180c1a9f7fc563ebd5be18e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:03:17:e5:84:ff:e4:c4:e4:22:3b:d8:c9:4b:
ac:18:89:a6:f2:bd:80:2c:50:23:85:46:6e:c5:7e:
59:33:d4:12:88:8d:4c:9b:4d:0b:ee:2d:a5:48:b0:
ab:17:f1:6a:15:b0:9c:89:17:e9:1f:70:a0:1e:e3:
00:fe:2c:19:6d:68:63:71:4b:26:18:1f:c9:b6:9d:
47:e1:2f:93:f7:cb:3a:cb:82:94:d5:57:3a:49:f9:
8b:20:c1:35:59:ab:a3:9c:6f:7b:0a:fa:6f:b5:24:
3a:01:ae:b7:6c:c1:b3:46:b6:29:9f:a7:92:d6:1b:
81:c4:dc:3d:a5:c3:97:4e:54:ec:ef:3a:02:53:74:
f9:bb:1a:6e:7f:e2:c3:6f:f4:80:a9:7e:a8:7b:e5:
7f:95:6d:18:64:66:dd:30:bc:53:88:7a:d4:cd:55:
b4:3c:04:6a:b5:b7:85:03:0d:94:2c:9b:4e:ae:c9:
c6:78:ba:6d:f1:6b:fb:ae:37:b7:10:23:82:ae:8a:
8e:f0:78:84:b0:5a:76:53:82:21:38:31:c6:39:eb:
8f:22:3b:c6:5d:88:e3:d8:d5:d7:5d:37:42:d2:81:
e0:67:06:92:f2:f2:d2:3d:c7:51:d0:4b:3b:2c:a1:
a6:50:02:c9:02:a6:01:2a:de:60:d9:31:6c:05:e6:
4d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:75:0F:8B:C2:3F:1D:7B:18:0C:1A:9F:7F:C5:63:EB:D5:BE:18:E2
X509v3 Authority Key Identifier:
keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:71:76:56:fc:42:50:c5:d7:12:c3:87:ee:5a:6b:f3:d8:12:
88:48:11:b8:ac:b0:e5:e4:4a:85:15:30:6b:97:c7:ef:64:51:
6a:06:17:32:d6:3c:70:ad:3b:5f:9a:3e:eb:76:37:e6:e7:79:
4d:a4:56:07:6b:dc:71:98:10:50:4c:f5:e6:d4:07:0d:01:6e:
3a:90:60:d1:04:6c:49:8c:40:34:4a:e3:3f:62:27:c0:78:5a:
87:c3:7d:1f:56:47:d7:a7:c2:ea:1f:e4:ed:b3:a8:e8:95:31:
fb:b5:6f:36:79:c9:d5:1d:ce:1e:d3:41:99:68:45:03:a9:b3:
90:af:e5:fc:3e:01:41:d6:1f:4e:96:22:9b:17:c7:80:28:98:
6f:09:0b:f0:e1:98:e2:b4:ca:52:c1:0f:ef:9e:e1:38:22:e5:
91:41:be:c0:8c:31:e8:98:95:e3:7a:db:a9:35:d9:1c:b6:6a:
fd:9e:ce:b5:d1:d4:fb:95:49:2d:f5:d8:69:3c:b4:f4:24:cb:
18:5e:59:26:ee:4a:11:be:16:e6:2e:3a:05:d9:a8:76:ad:70:
d9:5d:84:e7:79:04:b1:a1:ff:54:bd:71:af:f9:54:91:e0:52:
a1:43:2f:e0:72:b8:bf:62:43:ea:97:9e:51:a6:85:7e:b6:04:
07:27:a9:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 10:40:13 2026 by rpki-client