Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: dd/7ojBmEKjWaRjR3XwsTRrI5yNxqDF/db2xS9z7A8A=
Subject key identifier: 04:67:57:8C:BB:6E:95:EB:49:60:DB:74:1A:A7:4D:56:27:25:60:95
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 019DCECFFABA641DBC9A30CFC312E44A43B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 0DED
Signing time: Mon 27 Apr 2026 12:00:29 +0000
Manifest this update: Mon 27 Apr 2026 12:00:29 +0000
Manifest next update: Tue 28 Apr 2026 12:00:29 +0000
Files and hashes: 1: Fnr8UBCRPeUQhRVFOAHVctCKPfo.roa (hash: PgOyYUmMG9zgljOcOgtP5byxd2cN3HfKRRt85MDBTwk=)
2: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: dCpjLQKMn7bChGVJKKoutBuJzun0DqP7Xh8jWV+2cOU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:cf:fa:ba:64:1d:bc:9a:30:cf:c3:12:e4:4a:43:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: Apr 27 12:00:29 2026 GMT
Not After : Apr 28 12:00:29 2026 GMT
Subject: CN=0467578cbb6e95eb4960db741aa74d5627256095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:40:6a:3c:a1:5e:69:70:1e:17:a2:df:80:fc:
06:5a:77:31:4d:77:4b:07:4d:02:3f:7f:39:62:3c:
b4:70:68:b9:71:e1:0e:fb:bf:50:fd:6c:9c:fd:5b:
87:be:2d:95:aa:39:1a:c0:17:b8:c7:39:8b:b6:b1:
b5:68:5f:03:fd:19:fb:4c:da:b4:65:42:f5:b6:15:
13:2e:e0:a2:1a:de:b9:9a:92:ba:a9:cb:97:f6:18:
96:e4:b1:9f:e3:28:05:77:01:59:01:0f:1f:c2:51:
00:fc:24:e9:e9:8d:00:dd:ca:96:c6:8a:73:b4:15:
b0:79:84:15:53:f5:58:84:0a:24:c0:5a:da:50:50:
ad:65:b4:bb:f2:5c:91:8b:44:75:82:a4:58:53:a5:
e0:b1:e5:74:18:b2:16:1f:4d:b2:e2:66:34:bd:fa:
21:94:35:ae:16:16:5a:9a:cd:d3:c9:7a:a2:2c:c0:
dd:3e:a8:71:63:00:01:ec:b7:fb:9c:6c:e7:e9:83:
9d:37:f9:a4:4f:eb:d1:77:44:30:7c:c1:91:97:3f:
4b:c8:d2:b8:fb:38:c5:2d:43:e8:39:1a:a1:25:8e:
c8:99:a7:25:9b:02:11:92:d8:82:72:52:60:e3:e2:
2b:74:6a:a2:7e:f9:69:28:1b:93:1e:14:19:0a:5f:
61:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:67:57:8C:BB:6E:95:EB:49:60:DB:74:1A:A7:4D:56:27:25:60:95
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:81:34:d2:a3:e8:eb:7f:e0:46:41:bc:c3:e1:2d:aa:b7:27:
76:aa:f9:c9:33:fd:9e:9f:6a:78:c8:d6:23:9f:48:90:32:71:
32:0d:03:4b:63:96:06:45:fc:e2:c3:37:47:0a:31:b9:28:48:
18:cc:55:fd:09:4f:7a:e7:35:26:46:c7:3d:8e:38:fb:64:ac:
18:37:1b:ca:6a:ee:b4:37:bc:c3:a5:d6:fa:5a:20:ab:44:2e:
6b:f0:48:e4:fd:8d:80:25:f1:d0:54:3a:d2:0c:ce:44:f5:6d:
70:80:4e:2e:61:93:31:b2:84:6d:d9:df:03:b3:bb:5e:cb:f5:
1b:96:38:97:b6:61:78:6a:be:f7:92:13:30:93:68:dd:34:cb:
6f:11:36:48:9e:63:61:35:bd:26:62:75:fc:aa:de:21:b4:0e:
c8:ae:85:71:c8:f6:72:09:25:9f:45:14:81:90:d9:ed:dc:11:
e9:51:66:ec:8e:aa:78:98:8e:00:dc:bc:d4:bd:14:4b:81:bb:
db:82:24:87:6e:9b:6b:e0:72:2f:af:e1:91:7f:b4:30:8d:cc:
29:cf:f4:c7:ad:c0:9e:a8:ce:c9:18:80:9d:d4:b9:b7:d2:28:
d5:2b:fd:a3:1b:4c:6a:30:b8:85:5d:e0:48:e2:65:dd:91:ec:
9d:77:ac:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 20:12:29 2026 by rpki-client