Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
File: XYJmcuaPPaXbUO2ButuNM73M0ro.mft (raw, json)
Hash identifier: Qgu8Hm1gUamlCh79Kxje7dx3ggz/hh2BVeF/8+iLMQs=
Subject key identifier: 81:B2:DF:89:19:86:C9:9E:81:4A:BD:C9:89:8D:53:95:1A:23:6F:4F
Authority key identifier: 5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
Certificate issuer: /CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Certificate serial: 019DCF75FB85A7BAC1DB8FB50E2EB1458309
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
Manifest number: 1519
Signing time: Mon 27 Apr 2026 15:01:48 +0000
Manifest this update: Mon 27 Apr 2026 15:01:48 +0000
Manifest next update: Tue 28 Apr 2026 15:01:48 +0000
Files and hashes: 1: XYJmcuaPPaXbUO2ButuNM73M0ro.crl (hash: qVIMWKIDozdwDWqR2txsouGk/Kc8TqDOaZhOHsb6FV8=)
2: fDzIkCC4HQZF8d8gvy277WuuRYM.roa (hash: TzMFdxwnyUIL4oJ9MUVrNEjKX81ekLEZoq92hFxo3V4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:75:fb:85:a7:ba:c1:db:8f:b5:0e:2e:b1:45:83:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Validity
Not Before: Apr 27 15:01:48 2026 GMT
Not After : Apr 28 15:01:48 2026 GMT
Subject: CN=81b2df891986c99e814abdc9898d53951a236f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:26:83:d9:4b:8d:a0:97:55:e3:7b:4f:25:c8:
fa:a9:0a:4a:dc:88:c8:e3:21:65:13:e9:fc:2a:3a:
ad:6c:2f:e9:99:57:58:10:f1:04:2d:3f:b1:5c:74:
8e:ef:23:9b:ea:0a:ae:61:b0:f5:3b:d9:ae:97:9d:
a3:6e:58:25:d4:f9:10:05:27:9f:7b:d1:cd:d0:40:
7e:94:d8:5e:5f:29:4b:3f:ad:c2:a8:0b:cb:1d:84:
3d:af:d9:af:34:2c:11:eb:c6:3e:d3:1d:2b:0e:3f:
76:6a:01:51:f1:2d:d7:d0:bc:64:c6:f7:a9:bb:21:
c1:c0:94:1b:8c:22:e0:dc:37:82:56:5b:04:a0:55:
c3:50:0b:e2:a6:b6:2f:b6:c8:1f:ae:be:a7:6c:1a:
a2:6a:0d:1b:36:60:65:f7:b2:4e:3e:a2:83:d7:c0:
02:09:57:6c:bb:a4:d3:40:2f:76:91:a9:3b:c6:00:
82:13:44:3e:53:41:cd:41:ca:50:e9:6a:c9:2b:6d:
42:1f:b9:ef:a6:d2:43:7e:b9:63:85:da:71:d7:6f:
e1:6d:91:4e:69:9e:da:fc:b7:44:e2:c5:9d:07:ce:
23:6f:f4:72:be:62:55:c4:2f:cd:82:4e:9a:2e:eb:
25:a3:73:c7:1c:ea:55:16:d4:1a:f7:15:42:d7:f9:
11:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:B2:DF:89:19:86:C9:9E:81:4A:BD:C9:89:8D:53:95:1A:23:6F:4F
X509v3 Authority Key Identifier:
keyid:5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:c8:8a:9a:01:0d:7a:2e:a4:69:61:1a:38:0d:be:35:01:05:
56:f0:0c:98:c7:18:47:46:cc:5e:6f:1d:26:08:99:b5:ca:36:
05:a2:17:d1:02:a1:fb:98:0c:a0:c1:81:64:47:d5:3b:af:93:
71:48:d9:3e:05:37:8d:6a:4b:a6:21:a3:64:2a:b2:96:d8:86:
31:5f:fa:ae:fc:39:c5:0a:68:d5:2a:e5:b7:25:e5:db:be:81:
7e:5f:6e:27:a8:65:a5:91:e7:e5:bf:93:40:1b:20:9b:e9:8f:
c8:bf:52:24:df:ec:b2:15:6f:61:f0:76:e8:3c:33:87:ed:7e:
f1:da:c9:22:82:06:56:ea:e9:f7:c0:5d:af:75:51:2c:ae:53:
12:b2:57:39:89:dd:51:63:13:90:ea:9f:07:2c:ae:55:7e:82:
1d:06:9a:c1:67:c1:5a:20:68:b2:f1:75:2c:c1:c8:48:6e:c8:
b4:57:c1:64:fc:26:fb:fc:af:69:3d:dc:a7:02:ee:e7:0e:97:
46:22:33:f6:02:3a:5c:32:4e:f2:54:a5:ad:9a:ac:c9:1a:e7:
e7:e9:ae:d9:a9:92:38:b8:a5:e0:dd:76:f7:04:67:09:0d:97:
7b:68:bc:a4:45:a7:6a:ba:27:45:81:54:9d:2c:d0:96:e1:a0:
56:16:fb:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 17:16:22 2026 by rpki-client