Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
File: XeYTaCVSAQKY86aUoA18WQYGC5U.mft (raw, json)
Hash identifier: jI9UvXy2Twh7ESYDd/9IjBK8ZXB4/wQYomP/fv9V/jA=
Subject key identifier: C6:B9:2A:D8:D3:91:3B:DE:87:EA:27:34:1C:24:DC:18:F3:B8:C4:9B
Authority key identifier: 5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
Certificate issuer: /CN=5de613682552010298f3a694a00d7c5906060b95
Certificate serial: 019D382DD846BF5733564D497D8E9B91B089
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 06:00:21 +0000
Manifest this update: Sun 29 Mar 2026 06:00:21 +0000
Manifest next update: Mon 30 Mar 2026 06:00:21 +0000
Files and hashes: 1: 8E85CKuNqBtAq_mQnEGUCCO3R10.roa (hash: CgmtiE0mp6q+6KobblRjrSYw7pd0zVbtE+o0y7MhUQQ=)
2: XeYTaCVSAQKY86aUoA18WQYGC5U.crl (hash: ECOUqBozk8DsNYZZFF4nFxBnxLyZWZTeKsvw97wD3bU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:d8:46:bf:57:33:56:4d:49:7d:8e:9b:91:b0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5de613682552010298f3a694a00d7c5906060b95
Validity
Not Before: Mar 29 06:00:21 2026 GMT
Not After : Mar 30 06:00:21 2026 GMT
Subject: CN=c6b92ad8d3913bde87ea27341c24dc18f3b8c49b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:30:05:31:c3:ff:ff:d3:de:f2:04:58:86:f5:
8b:90:43:c0:ab:6c:f9:80:a6:19:00:ef:8c:ae:34:
f2:de:e3:68:0a:34:82:88:ef:c9:61:6a:1f:d2:68:
05:39:9e:de:3e:42:f3:3b:58:97:85:84:19:8f:17:
e8:80:44:b6:4b:31:63:c7:72:a8:b9:77:98:a3:d7:
8f:71:d9:c1:98:af:d3:43:90:46:ea:48:49:c2:9c:
60:52:ae:16:6e:39:0b:e2:7d:ea:c2:d7:40:7c:e7:
60:1d:07:8d:12:12:51:7b:07:44:ec:39:3f:71:b5:
08:93:4c:96:93:ab:f8:8b:fd:d3:11:7a:aa:a5:25:
83:fb:e6:93:ee:3a:a0:4e:75:83:f2:95:1f:49:8d:
bc:eb:bd:9e:1d:52:ad:66:88:f6:24:1e:2d:2c:ca:
64:82:36:54:1e:ee:ce:2f:3f:80:7b:fc:e5:ba:1f:
84:4d:ed:c0:5f:15:df:68:60:ae:fd:f2:70:07:e6:
02:f0:3b:e3:af:cd:a3:65:20:28:1a:28:60:67:24:
bb:44:18:e2:ba:ad:5c:6d:22:d8:d5:68:73:c1:5f:
b9:cb:ce:14:bc:dd:a5:7b:67:3c:21:41:6b:7f:c9:
3d:e1:34:8a:be:0f:18:4a:20:94:0b:fe:b8:40:70:
8f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B9:2A:D8:D3:91:3B:DE:87:EA:27:34:1C:24:DC:18:F3:B8:C4:9B
X509v3 Authority Key Identifier:
keyid:5D:E6:13:68:25:52:01:02:98:F3:A6:94:A0:0D:7C:59:06:06:0B:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XeYTaCVSAQKY86aUoA18WQYGC5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0c2320-ba95-4531-8c81-22295df12b27/1/XeYTaCVSAQKY86aUoA18WQYGC5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:f7:8c:02:cb:60:8a:87:3d:ab:70:b1:c0:e1:f0:98:09:99:
aa:84:c4:50:20:24:3b:da:3c:c1:93:d6:af:4c:a0:41:c7:c1:
81:d0:4c:bf:6d:01:57:47:56:c7:b2:ec:da:4b:af:4b:55:d8:
51:d4:6a:5b:f5:e4:bc:30:ec:57:30:42:04:8f:93:31:91:db:
c1:3a:87:1a:52:e0:39:23:f9:09:50:5f:5a:e6:3d:ed:11:ff:
32:21:14:bb:0f:60:8e:86:fc:2a:32:67:ea:2c:49:5a:8f:44:
17:94:5c:c0:6f:c3:b0:ea:22:d7:f8:c2:06:57:56:27:f9:60:
62:0b:84:98:73:0e:76:b9:6f:12:16:6e:a7:41:59:d1:fa:4c:
69:4f:ac:90:4d:19:19:aa:e9:be:4e:a5:1e:5f:f0:49:55:ef:
53:2c:7c:d1:5d:cc:a4:60:f5:ec:17:d2:5f:1c:a5:bc:72:31:
74:d0:42:d8:0f:c0:7a:68:7d:4e:2b:ea:75:08:a6:99:d6:8b:
60:f4:24:6d:6e:c1:40:b5:82:e6:d7:2a:56:48:93:1a:fa:27:
ee:51:e2:9b:73:30:be:a9:15:4a:72:a5:a4:16:2f:86:06:61:
90:20:3b:1d:17:76:b0:3f:e3:09:25:27:24:64:f4:84:03:87:
62:2a:0b:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:25 2026 by rpki-client