Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft
File: XYbEfabZB5NHtg8E7VxVV_6YPrg.mft (raw, json)
Hash identifier: /MPGl+urnrg4A5v5SmEjoXcJizw/kdB8r3/Wb0xX6qQ=
Subject key identifier: 21:71:E5:B6:2E:47:07:6E:91:80:DD:B0:3A:0E:A9:15:F8:67:FA:43
Authority key identifier: 5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8
Certificate issuer: /CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8
Certificate serial: 019D16EC4360816BD35C0F9D98038C188756
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft
Manifest number: 0947
Signing time: Sun 22 Mar 2026 19:01:15 +0000
Manifest this update: Sun 22 Mar 2026 19:01:15 +0000
Manifest next update: Mon 23 Mar 2026 19:01:15 +0000
Files and hashes: 1: HhZLJKHTDSxUIKRb-RQDIpmwb2c.roa (hash: a/gPxO3vEuqfCp70KpDQq2lcCKuUQZuTopPVCy8m4LA=)
2: PLVDJ7dkDU--d-zDM1gbGBw8XBs.roa (hash: 7fFDeno1llfmG5xw2+UhwO2bFxAsVyxjb17vnpRCoYg=)
3: PfU-pIQUztpuCpjeK4PA6M387xY.roa (hash: IxKP4N/sSJx4IV1KMlr0VGqT7A6A6/R7M00aHJnoW/w=)
4: XYbEfabZB5NHtg8E7VxVV_6YPrg.crl (hash: YD8VGj2a1A1wkrJw7/JhyGl1Iax9XkFLzcZSTJFj6Es=)
5: _BWqmK6mrfBuguQtqF75TBClGMs.roa (hash: uZ7P5xdR1guWm1uC7RQ3bBaQOHT/pKp/etCCjtf5eTs=)
6: mUrwLBSn-6OABt-a8CWyid9HQT0.roa (hash: QLR5JTAjIM5uhR1YB984cbq/Umms9s9InAJMrrGnnxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 23 Mar 2026 17:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:16:ec:43:60:81:6b:d3:5c:0f:9d:98:03:8c:18:87:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d86c47da6d9079347b60f04ed5c5557fe983eb8
Validity
Not Before: Mar 22 19:01:15 2026 GMT
Not After : Mar 23 19:01:15 2026 GMT
Subject: CN=2171e5b62e47076e9180ddb03a0ea915f867fa43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0d:eb:8f:26:94:26:0d:6f:83:7f:f4:85:1c:
34:7a:c6:08:b0:1b:77:0f:a3:03:53:26:f3:2d:92:
8d:9e:5d:3b:ce:b6:ac:3d:49:0d:a8:fc:5c:a3:76:
6c:42:86:91:f7:67:b2:1a:bf:3e:7b:77:47:63:06:
0c:3e:7b:5f:c5:5f:ff:33:4e:5a:4b:63:ca:83:74:
53:82:a1:48:ac:5c:e7:38:ba:cf:d5:fc:16:7e:e3:
77:7a:60:ea:13:ec:5f:cc:55:89:ef:b1:82:c3:92:
09:e6:87:ae:73:b3:72:a8:f8:31:d0:2d:da:60:23:
dd:f1:1c:dc:c1:58:72:e2:9b:21:95:66:c4:2d:1e:
a8:0a:27:0e:74:fe:46:01:c2:08:06:eb:36:d9:bc:
72:1f:f2:7a:f4:e3:e3:91:a7:b5:27:91:1d:93:77:
40:21:6f:12:58:29:04:69:62:56:4b:43:33:b6:38:
5b:80:cc:39:ec:70:6e:e4:26:a4:62:6f:bc:75:0f:
89:22:ca:64:78:03:dc:81:14:7a:74:f3:3a:9f:83:
8d:cf:f5:c3:de:c8:fe:35:54:af:61:aa:18:a0:fc:
6d:d3:67:01:13:19:44:a7:b9:1b:24:5c:86:d9:ca:
8a:c4:34:35:dc:c6:29:11:a0:cd:27:03:e9:57:41:
29:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:71:E5:B6:2E:47:07:6E:91:80:DD:B0:3A:0E:A9:15:F8:67:FA:43
X509v3 Authority Key Identifier:
keyid:5D:86:C4:7D:A6:D9:07:93:47:B6:0F:04:ED:5C:55:57:FE:98:3E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYbEfabZB5NHtg8E7VxVV_6YPrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/df66a0-c958-4e5c-a6df-fc632841ba3e/1/XYbEfabZB5NHtg8E7VxVV_6YPrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:29:11:08:ab:5f:a9:62:31:10:74:d3:ef:b4:d9:70:f8:14:
19:38:8b:49:51:78:1d:91:af:d0:75:64:af:7f:e8:c7:4d:70:
15:74:94:a4:83:ee:5d:6d:0f:4e:20:82:f7:ce:fc:a4:db:13:
05:13:1a:d5:92:0f:ea:af:ba:b5:15:b4:e2:35:58:33:69:0f:
db:46:3e:a3:5f:fe:11:97:02:9a:3b:68:48:5e:02:10:30:de:
85:05:81:79:8c:65:9a:fd:b6:18:9a:a3:6c:3d:bd:7a:7b:56:
c1:2d:38:fd:e4:d7:db:af:07:c8:13:31:11:97:7c:f8:ef:7d:
bb:a9:82:05:d7:03:fe:fa:1d:29:b4:ce:06:55:af:10:ef:d9:
eb:56:14:7a:91:39:f4:93:aa:c3:0d:a4:bd:40:89:29:8d:01:
a0:f7:f9:5d:22:72:08:03:12:b2:d6:34:86:b9:36:f8:c4:76:
9a:fb:6c:1c:a0:4e:0c:2e:7c:c5:12:28:b5:82:bb:75:c1:2f:
ab:ae:2f:ca:74:2d:f5:ca:85:9c:f0:69:36:46:21:b3:93:b0:
b3:f8:6b:ff:f0:92:9f:9d:71:6d:ac:ff:3a:3f:39:28:9f:7b:
6b:65:44:11:67:5e:0b:46:95:27:ea:bb:f2:84:28:8e:94:13:
f6:e4:58:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 23 02:51:36 2026 by rpki-client