Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
File: XZxbcz-6cemMB-E7A6fFWrhMyO0.mft (raw, json)
Hash identifier: stHTgx6ky6Z2u6LTp71q9t9NZqSaZXrrhNATS0C/8mc=
Subject key identifier: 78:CB:06:72:16:D2:51:3F:3F:42:C8:7B:8E:54:9A:11:95:7F:7E:6B
Authority key identifier: 5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
Certificate issuer: /CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Certificate serial: 019D389BB9C06D6F1C6F6AC4A4C59A840569
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 08:00:22 +0000
Manifest this update: Sun 29 Mar 2026 08:00:22 +0000
Manifest next update: Mon 30 Mar 2026 08:00:22 +0000
Files and hashes: 1: D7RyDh7lTL4H2jBeI3MtODxeB2w.roa (hash: j4FPb00AEU8sTGz7vN2WFChjUdkqXvKYmGt4w0kqQbw=)
2: XZxbcz-6cemMB-E7A6fFWrhMyO0.crl (hash: wp7DUAwq+6r6quVvrBQMfF0tmhsBQZ5X9YONdp2xotU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:b9:c0:6d:6f:1c:6f:6a:c4:a4:c5:9a:84:05:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Validity
Not Before: Mar 29 08:00:22 2026 GMT
Not After : Mar 30 08:00:22 2026 GMT
Subject: CN=78cb067216d2513f3f42c87b8e549a11957f7e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:dd:7c:4a:f3:4d:80:28:ec:e9:0a:23:3b:34:
4c:53:70:b9:a6:c7:9b:dd:85:f1:95:ae:16:a6:e1:
1d:36:fe:11:3e:6c:eb:cd:ba:28:48:bd:68:8b:5b:
6b:68:46:ca:7d:86:63:b6:92:db:46:64:d0:72:32:
aa:fc:1a:3d:6c:a6:c4:e9:ca:5e:83:02:fd:5b:40:
95:24:36:58:36:79:10:62:f0:53:ee:27:cd:47:56:
30:c8:ad:bc:b3:a5:f0:f6:6a:fd:b2:fe:84:3d:a1:
37:7f:99:ac:78:b9:dd:6f:85:54:5c:6e:de:0b:5c:
90:64:07:f2:11:e2:11:24:5d:fb:b5:bf:bd:0a:86:
65:73:b7:33:a1:8a:e0:a4:e2:24:7d:ca:d8:7c:6f:
47:bd:83:0b:9a:0f:9e:50:83:89:9e:7f:07:5b:bc:
03:62:f8:5f:62:8d:c4:6d:db:8f:20:0a:8c:1a:03:
f5:df:13:94:e1:1a:85:94:d4:40:bf:5f:c2:a3:fd:
b9:25:ac:dc:e5:38:02:a9:dd:8f:bc:8a:55:79:53:
95:d0:e5:f3:92:e6:01:61:3c:af:e8:3e:5d:b6:f5:
eb:63:d5:aa:dd:dd:49:3c:4a:f7:10:14:21:18:3a:
bb:ae:ca:84:a6:3f:ab:3d:33:8d:09:08:7d:c2:3d:
47:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:CB:06:72:16:D2:51:3F:3F:42:C8:7B:8E:54:9A:11:95:7F:7E:6B
X509v3 Authority Key Identifier:
keyid:5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:af:86:5c:ac:6d:ea:2b:72:c7:41:a8:40:c3:cf:ba:13:3d:
a7:68:c5:a1:fd:9b:1b:a3:65:cc:95:6a:84:39:94:6e:c6:c9:
90:8f:f7:31:ea:03:1c:78:ce:41:5c:5c:68:95:07:cf:a2:80:
4a:8b:a2:b6:c8:46:82:37:72:b8:50:66:81:16:7f:a5:fc:fe:
e0:cb:ad:3b:86:fd:fd:07:fd:88:fd:dc:7a:ee:81:40:cd:50:
78:32:50:00:7b:2d:75:42:55:04:59:a2:19:f1:72:d7:f0:ef:
bb:f6:b8:8c:d4:87:7b:8f:46:cf:11:bd:65:91:88:5c:69:b0:
6a:e5:d6:a0:69:5f:34:71:29:a9:de:5a:91:e6:9d:7d:97:37:
ce:a2:69:bf:28:ed:25:4b:69:b0:bc:26:8d:c7:69:fc:08:4b:
9e:f0:a2:59:7a:19:55:e8:7a:89:38:8e:9d:4a:75:fe:89:7d:
d8:1a:3d:86:9a:89:46:bb:76:40:27:7c:59:91:f3:69:dd:13:
a9:12:0c:4d:ad:73:99:21:7d:47:98:55:ea:02:9d:b4:b1:4c:
f5:c0:88:44:ee:5a:d8:bc:ff:94:f7:06:80:b7:c7:e7:63:bc:
ab:2d:aa:4e:b8:ce:69:31:7b:b9:77:ba:80:32:3a:f3:4f:f2:
3b:63:39:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:04:11 2026 by rpki-client