Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
File: XYJmcuaPPaXbUO2ButuNM73M0ro.mft (raw, json)
Hash identifier: 27cu/p2cENuam8e9P4YfPCr7VOQZJk9kR2MDGYi+Qhs=
Subject key identifier: 94:DE:F5:ED:76:0D:8D:64:95:2C:8A:99:1C:8E:4B:1F:23:75:AE:9F
Authority key identifier: 5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
Certificate issuer: /CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Certificate serial: 019DCD8742E797AC41509084DBC0BFA211B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
Manifest number: 1518
Signing time: Mon 27 Apr 2026 06:01:26 +0000
Manifest this update: Mon 27 Apr 2026 06:01:26 +0000
Manifest next update: Tue 28 Apr 2026 06:01:26 +0000
Files and hashes: 1: XYJmcuaPPaXbUO2ButuNM73M0ro.crl (hash: /PH+lSh0O8nJsCzAuAMAl+z0ITN+rpz+u7dWjprderg=)
2: fDzIkCC4HQZF8d8gvy277WuuRYM.roa (hash: TzMFdxwnyUIL4oJ9MUVrNEjKX81ekLEZoq92hFxo3V4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 06:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:87:42:e7:97:ac:41:50:90:84:db:c0:bf:a2:11:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Validity
Not Before: Apr 27 06:01:26 2026 GMT
Not After : Apr 28 06:01:26 2026 GMT
Subject: CN=94def5ed760d8d64952c8a991c8e4b1f2375ae9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a2:4c:c4:fe:68:c7:a7:17:56:27:05:b5:db:
97:b6:bb:2a:b7:27:73:82:36:73:0d:49:e6:99:36:
98:98:22:50:7c:9a:d5:99:72:5d:da:cd:be:92:72:
46:6a:49:0b:90:84:6f:9b:11:dc:f7:05:56:18:16:
3f:2c:e1:64:0d:c6:ca:ca:9a:89:03:d9:89:43:73:
c0:8c:69:a9:c5:b5:2d:0f:4e:75:a4:03:2f:da:cb:
24:67:93:2c:ac:20:33:91:20:81:04:61:31:81:3e:
fd:f6:ad:04:93:0b:a9:04:52:c5:cb:dc:a9:1c:32:
ab:01:ad:b9:08:be:b9:48:c1:f6:2a:95:10:6e:30:
80:62:df:b4:18:a7:87:00:5c:32:0a:c7:dd:3b:bd:
d9:17:22:15:be:39:55:6a:cc:68:91:94:48:bf:0d:
50:e3:47:80:ec:20:d8:94:c5:55:4f:97:3d:15:e4:
d9:ef:79:b4:64:eb:c7:32:40:a2:a5:52:94:e0:62:
62:81:a0:30:98:79:73:63:20:5e:a9:2c:e7:08:42:
17:6d:c7:5a:8b:73:06:88:1e:9f:d0:c1:47:99:c6:
03:96:1b:7d:f2:17:c9:e6:8e:bc:92:1f:ff:be:6b:
ac:ef:93:08:c4:4d:f5:cd:64:64:f9:a0:6e:a3:84:
a5:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:DE:F5:ED:76:0D:8D:64:95:2C:8A:99:1C:8E:4B:1F:23:75:AE:9F
X509v3 Authority Key Identifier:
keyid:5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:17:8e:8e:fa:f6:62:1b:01:e4:6c:16:59:7e:52:1b:ac:8f:
dc:f2:0c:c0:40:97:6c:e6:1c:29:be:72:05:84:91:90:96:61:
a8:fe:ac:d3:89:b8:ad:e4:d1:d5:bd:8e:50:df:59:97:33:56:
62:78:d3:f0:50:94:82:b0:36:15:1c:ea:a8:c1:2c:02:59:10:
d5:dc:51:28:36:e2:3e:95:7d:79:19:15:32:f2:81:a7:c5:28:
9b:33:8e:3f:34:36:56:a6:1c:64:1a:8f:20:64:0d:c8:bf:88:
b0:59:49:70:7e:7c:02:cf:37:53:6a:ca:ea:e2:b0:ea:63:90:
da:bb:03:80:18:2b:5f:0a:be:b2:cf:51:f9:ff:7c:9b:d4:f9:
19:d9:4a:4b:61:62:80:35:00:dd:f3:b2:2b:59:45:27:af:f0:
af:d5:51:c5:76:14:c1:3b:f9:b5:39:78:74:eb:60:b8:0b:89:
76:b7:62:f1:b4:02:cf:10:26:36:67:a6:2c:3e:d5:04:e0:1b:
02:ca:3b:78:00:e3:8e:8d:55:86:32:ad:fc:fe:8f:cb:fa:63:
45:c3:1a:5b:f5:29:48:f2:78:37:8c:dd:03:3a:4c:09:77:85:
44:60:b9:36:5a:92:64:e5:26:e9:93:4f:02:31:80:48:7a:b1:
12:25:1a:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 15:00:05 2026 by rpki-client