Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
File: xdXOafzPDGu44rJmfh44-5QPPSY.mft (raw, json)
Hash identifier: TzD7TLi+0skRA1ooyiov7hEcjQvfObNRvrRispxjR3s=
Subject key identifier: 83:54:2A:E3:A0:68:FC:B5:77:8D:05:69:E1:2C:C7:73:92:25:C8:4C
Authority key identifier: C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
Certificate issuer: /CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Certificate serial: 019D38D38619E2D9C61158C16C9C79E4957C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
Manifest number: 0CFB
Signing time: Sun 29 Mar 2026 09:01:19 +0000
Manifest this update: Sun 29 Mar 2026 09:01:19 +0000
Manifest next update: Mon 30 Mar 2026 09:01:19 +0000
Files and hashes: 1: 1-pMzy3XW1_dYsnUwH5bbwkr_jQA.roa (hash: bK9K2skyngCiWtdJ+6ql0BuVrZBCPHHAO74b5mBhnYY=)
2: xdXOafzPDGu44rJmfh44-5QPPSY.crl (hash: Xg0RIW1ajQkT5duNJpC6AfhMrxumstyDcaK6X+MStyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:86:19:e2:d9:c6:11:58:c1:6c:9c:79:e4:95:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Validity
Not Before: Mar 29 09:01:19 2026 GMT
Not After : Mar 30 09:01:19 2026 GMT
Subject: CN=83542ae3a068fcb5778d0569e12cc7739225c84c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:87:e9:fd:5b:e4:41:99:bc:70:f6:28:43:51:
76:6a:14:37:79:9b:b8:3b:5a:58:12:63:53:99:c3:
1d:79:6e:89:45:1b:15:fe:1d:5b:70:bc:85:2d:02:
09:de:30:6d:30:91:d7:ca:c9:a7:da:27:cd:02:e1:
88:9d:76:78:21:c2:8d:09:c1:80:f0:2b:04:6f:97:
2b:51:b2:b7:ac:f5:b2:6f:d9:74:2a:35:42:ae:21:
ea:d9:78:c1:15:62:7c:a2:e7:b4:33:7c:21:ec:84:
bf:77:83:f1:31:66:be:7e:14:79:22:31:ac:1e:9c:
ec:b2:b4:9e:3b:9a:45:a4:cd:9e:1a:41:ee:55:f5:
3a:f0:e6:c5:8f:02:a1:7f:b1:46:e3:9e:bd:12:11:
4b:d4:7b:e4:d2:42:3d:da:d2:ea:87:9b:1b:2e:73:
99:65:04:67:db:c0:9d:7d:11:96:32:ec:8e:e1:e8:
02:6e:1f:12:34:b5:e4:17:04:e9:dd:4b:75:6a:be:
e7:40:53:b7:75:39:f4:4d:d7:03:9a:c2:f6:4a:8e:
c3:32:27:dd:a2:3f:cf:c4:d0:b8:a2:3b:53:d5:2c:
44:3e:94:08:70:16:12:e7:90:55:bc:7c:a7:61:79:
e2:52:cd:81:6c:d0:da:9b:7c:83:43:1f:ee:5d:c2:
a5:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:54:2A:E3:A0:68:FC:B5:77:8D:05:69:E1:2C:C7:73:92:25:C8:4C
X509v3 Authority Key Identifier:
keyid:C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:ba:4c:7a:4a:58:77:95:5d:21:c8:87:cc:a8:af:1a:31:05:
ba:26:05:41:37:69:79:c6:94:7d:d7:5d:e6:11:3f:6c:0b:ad:
74:9d:d5:c5:41:c0:04:fe:75:91:d8:35:37:58:b2:de:a4:61:
45:24:1d:48:4c:81:b5:4b:0f:51:4e:9a:14:4e:48:43:df:38:
33:f0:c7:cf:3a:be:32:18:75:37:31:f6:b6:fa:0c:d9:87:78:
7d:bb:d3:38:34:76:db:e9:41:a5:fc:c7:68:a7:48:5e:32:ca:
27:7d:f1:b0:25:dd:a8:df:85:d1:f9:ff:fb:e0:5b:08:d6:ca:
94:8f:af:58:61:74:79:24:58:cb:68:58:1b:b3:f4:39:ce:89:
81:35:e2:34:aa:de:5f:bc:22:c0:f3:73:6e:de:3b:d1:74:90:
25:2f:0d:5e:29:2b:3c:53:c7:a9:d9:87:91:6b:51:e5:22:6c:
4b:d0:26:05:07:01:98:7c:c3:47:57:ab:9e:35:6f:b3:4e:95:
75:e1:47:df:a1:24:c1:ed:62:73:9f:f2:59:61:5d:56:32:a2:
63:b6:87:86:b4:b5:30:d6:b8:9a:f8:8a:2f:20:71:37:9a:7a:
ac:e1:f5:e9:21:96:3f:bc:d4:2d:56:30:af:08:f0:7c:d9:dd:
19:33:7f:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:59:55 2026 by rpki-client