Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
File: xcSzrlnZgfJQzIfatZeFSr7XowA.mft (raw, json)
Hash identifier: vX4Z5+3LxEl3VHGf/nsykop4c3Mhd7GzrkQ9wFlq/WQ=
Subject key identifier: 60:49:F5:9A:55:BE:07:1E:BA:7F:94:DC:56:A8:B9:AC:02:02:00:F5
Authority key identifier: C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
Certificate issuer: /CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Certificate serial: 019CE591C830C48FBEEAC3037D7797888404
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
Manifest number: 077D
Signing time: Fri 13 Mar 2026 05:01:02 +0000
Manifest this update: Fri 13 Mar 2026 05:01:02 +0000
Manifest next update: Sat 14 Mar 2026 05:01:02 +0000
Files and hashes: 1: OBYyhiA-o_Lu_Sii3K0csw4HB8Q.roa (hash: losaCS7PxxPceDw56uDFnzA7tz476/wdte0ltw/SmOk=)
2: xcSzrlnZgfJQzIfatZeFSr7XowA.crl (hash: bBJ6KO6baRqCKCpp0E0BamMp+sGDL+Im/gOWMd58VZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 05:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:c8:30:c4:8f:be:ea:c3:03:7d:77:97:88:84:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Validity
Not Before: Mar 13 05:01:02 2026 GMT
Not After : Mar 14 05:01:02 2026 GMT
Subject: CN=6049f59a55be071eba7f94dc56a8b9ac020200f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c0:e9:df:d0:99:22:42:5f:79:d8:3e:9e:31:
54:82:1b:c3:35:35:a4:39:9e:f7:27:49:98:7d:7e:
d6:8b:20:58:18:8b:07:23:e8:9f:45:fb:55:c3:45:
a9:0a:35:c8:dc:47:a5:31:89:9a:da:4b:f6:dc:46:
ba:d1:bd:d9:57:4f:ad:f4:d8:fa:93:9a:22:f5:82:
44:52:72:d6:d6:82:5e:51:5c:9f:82:4f:4d:10:23:
79:da:7e:54:bf:d0:90:ab:b5:79:6a:8f:ed:2d:6e:
90:1c:e9:be:0e:c0:c7:55:52:a9:ae:3a:5f:31:7a:
2f:ac:37:1b:d3:77:39:47:72:3c:ca:1b:85:4f:93:
09:f7:4f:0d:0b:81:5e:b6:5f:47:cf:9c:45:8f:91:
06:9a:ac:51:49:9b:b6:ce:80:d1:1d:58:e0:28:90:
52:72:5f:21:76:a3:58:e9:31:08:50:4b:42:02:b5:
16:86:73:83:f1:fe:c2:13:30:a1:19:23:3e:dc:2c:
a5:f0:70:3e:aa:ad:40:85:e3:7b:05:39:ae:33:ad:
22:a8:c9:4d:2e:57:2d:36:48:67:d9:b2:90:30:6b:
04:a4:43:0d:57:b2:1e:dd:c8:92:49:c8:a7:57:ed:
ec:86:64:bf:c2:0d:2c:2b:7c:83:31:52:e3:a2:18:
cf:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:49:F5:9A:55:BE:07:1E:BA:7F:94:DC:56:A8:B9:AC:02:02:00:F5
X509v3 Authority Key Identifier:
keyid:C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:04:74:6e:58:20:d6:23:a3:b8:41:ec:9d:45:17:bc:23:00:
01:fe:17:f5:6d:6a:00:ad:db:49:e7:69:da:a3:86:a2:ed:d1:
04:c6:f7:75:ee:fb:53:43:41:0e:de:48:b7:27:c1:55:73:8d:
ce:14:c8:48:82:f1:32:3e:aa:2b:8d:b0:d3:4f:fd:4d:8b:d9:
3a:67:03:c8:b2:25:cf:e0:db:62:96:54:1b:99:26:9a:d3:7c:
55:15:9d:c5:f1:ea:6b:92:1f:28:2e:a6:a5:2b:de:d2:d6:42:
f9:03:b0:8e:34:07:38:18:3c:6d:12:d9:78:f7:4d:53:5e:75:
e7:33:fb:4e:53:0c:60:a6:78:c6:90:65:f4:dc:6a:fe:8f:ce:
fa:ab:91:23:e8:f8:96:96:34:47:72:a4:bf:08:55:05:51:64:
6a:42:c2:56:fe:a2:ee:e8:59:f3:d8:91:d2:0f:08:a6:16:aa:
64:a9:fe:a1:f1:49:a9:16:fe:c6:68:54:ca:de:39:a1:f6:9a:
7e:7c:e6:84:ab:64:18:cc:bc:94:99:fd:2b:83:aa:0e:b7:55:
ee:2a:3b:df:6e:25:4e:3c:75:a0:fa:1a:1a:2f:0c:17:81:99:
9e:10:1a:35:42:9f:7a:fe:51:16:d6:21:6a:51:ea:6f:d0:ba:
a7:99:fe:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 11:37:46 2026 by rpki-client