Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: v36KqN+06vVqjxqk1fi3v32a1yOXIheoLV4K6+EXy4k=
Subject key identifier: 30:53:7B:DA:93:F0:3F:E6:D2:79:E4:7C:86:FE:78:08:11:04:6A:7A
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 019CE523B1B74653DE60E892CB740516EC96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 0D74
Signing time: Fri 13 Mar 2026 03:00:47 +0000
Manifest this update: Fri 13 Mar 2026 03:00:47 +0000
Manifest next update: Sat 14 Mar 2026 03:00:47 +0000
Files and hashes: 1: Fnr8UBCRPeUQhRVFOAHVctCKPfo.roa (hash: PgOyYUmMG9zgljOcOgtP5byxd2cN3HfKRRt85MDBTwk=)
2: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: dY0vKTwD7H9YlBdlsGs86LRFEwWr5F5Rjv4Bcz5x7tI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:23:b1:b7:46:53:de:60:e8:92:cb:74:05:16:ec:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: Mar 13 03:00:47 2026 GMT
Not After : Mar 14 03:00:47 2026 GMT
Subject: CN=30537bda93f03fe6d279e47c86fe780811046a7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:82:26:9d:27:b3:80:49:84:0f:8b:b5:e5:6a:
7d:e9:9f:ed:94:60:66:82:5b:22:d3:98:75:99:0a:
7b:9d:ed:a9:03:8f:e3:30:d0:30:55:4f:58:21:42:
04:e1:88:be:44:3c:a0:07:cd:6f:07:06:37:b0:c1:
19:11:03:4d:e4:90:cc:f4:e3:6d:97:6a:54:f4:db:
8c:4a:93:33:62:0a:00:74:7a:c1:da:8c:e7:a3:80:
03:75:34:05:42:b2:e5:28:c6:b0:dc:25:7c:22:19:
d8:63:de:ea:49:f5:04:c4:e3:2e:00:47:cc:a8:8f:
d3:54:51:5b:b8:40:b2:95:ce:17:90:2e:81:15:e2:
48:19:e9:1d:bb:40:ec:0d:24:64:53:6b:73:08:57:
f3:64:63:04:a0:61:89:82:b0:58:ea:ea:59:4d:c0:
5b:52:88:92:ec:a5:75:6b:94:10:aa:a4:05:26:cb:
71:0c:17:69:4e:e1:92:c6:23:3f:11:80:ce:86:5c:
31:74:c3:38:5e:8c:2f:b0:2e:c1:70:2b:63:48:6f:
d6:7a:c0:1a:55:60:45:9b:f4:65:b8:32:31:36:66:
43:a9:ab:5f:c4:2a:3b:a3:42:53:cd:8e:12:42:51:
c5:b1:cf:05:3e:61:af:4f:1c:5f:7d:36:ad:df:0c:
5a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:53:7B:DA:93:F0:3F:E6:D2:79:E4:7C:86:FE:78:08:11:04:6A:7A
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e6:ec:28:f7:2d:b1:f5:be:d6:1d:3f:05:3d:9d:fe:a4:4c:7c:
f2:71:24:30:5d:0b:68:03:90:cc:90:ba:6a:86:64:4d:43:15:
b8:69:db:9d:85:5e:98:46:64:8d:9c:f0:3c:3c:fb:c0:bd:ea:
25:c6:e3:ab:0b:69:86:a1:79:7e:79:ab:dc:88:6b:82:49:54:
1f:20:1c:bc:3b:12:41:77:d6:a0:71:d6:70:bf:b1:7f:47:ba:
cc:3b:98:e5:b5:28:fc:ee:a6:2b:db:c4:c5:fb:6a:7a:fa:42:
50:ec:c8:10:e9:7e:ff:2f:84:7f:19:49:41:05:69:c7:3b:17:
3d:25:96:20:da:44:50:bc:c1:20:b3:4f:0e:e0:84:5e:a5:f9:
86:84:01:cc:6d:e9:39:99:5a:a4:a5:72:1b:71:31:af:4f:84:
27:7d:d7:5e:af:d7:4d:32:dd:be:d0:78:e2:21:80:c8:d9:c2:
b1:c8:cc:33:bf:45:03:01:b1:f0:40:75:fc:69:1c:9f:a2:d2:
ba:0a:dc:cb:a6:2d:e5:cb:cb:3f:ad:33:87:e1:71:73:71:a4:
70:49:63:28:71:87:d5:3b:a4:50:52:66:73:09:62:16:58:36:
22:5f:04:ef:3d:af:10:7e:d1:3e:62:d3:e6:88:4a:6f:84:92:
cd:7a:35:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 07:48:06 2026 by rpki-client