Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/d71ef8-4b98-400a-89ee-c61bf7749df5/1/XEXOsYsUpzcoK3WvC6Fs_9emq64.mft
File: XEXOsYsUpzcoK3WvC6Fs_9emq64.mft (raw, json)
Hash identifier: fEwSYi9GEn0Ec42kvZWn6mt+TuxP2Iy9jHWHZ6gfFFI=
Subject key identifier: 89:B1:26:61:DE:EE:24:0B:FC:19:88:69:6F:5E:38:89:84:C2:60:A7
Authority key identifier: 5C:45:CE:B1:8B:14:A7:37:28:2B:75:AF:0B:A1:6C:FF:D7:A6:AB:AE
Certificate issuer: /CN=5c45ceb18b14a737282b75af0ba16cffd7a6abae
Certificate serial: 019D37F76E98D8A26A3ACE2A28837B58BF9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEXOsYsUpzcoK3WvC6Fs_9emq64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/d71ef8-4b98-400a-89ee-c61bf7749df5/1/XEXOsYsUpzcoK3WvC6Fs_9emq64.mft
Manifest number: 0F27
Signing time: Sun 29 Mar 2026 05:00:55 +0000
Manifest this update: Sun 29 Mar 2026 05:00:55 +0000
Manifest next update: Mon 30 Mar 2026 05:00:55 +0000
Files and hashes: 1: XEXOsYsUpzcoK3WvC6Fs_9emq64.crl (hash: RLR2e7ZRIzBldw8Y8hipLoZdDqFuq8BAbKcL+xftrOg=)
2: eBNuMo07R9Rok08GU5ID6cj0SjA.roa (hash: j6Q0bMuqq65JKWtLWZGUVMSHVDu2JJZS79yRoP4Slq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/d71ef8-4b98-400a-89ee-c61bf7749df5/1/XEXOsYsUpzcoK3WvC6Fs_9emq64.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/d71ef8-4b98-400a-89ee-c61bf7749df5/1/XEXOsYsUpzcoK3WvC6Fs_9emq64.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEXOsYsUpzcoK3WvC6Fs_9emq64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:6e:98:d8:a2:6a:3a:ce:2a:28:83:7b:58:bf:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c45ceb18b14a737282b75af0ba16cffd7a6abae
Validity
Not Before: Mar 29 05:00:55 2026 GMT
Not After : Mar 30 05:00:55 2026 GMT
Subject: CN=89b12661deee240bfc1988696f5e388984c260a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ef:07:d3:9b:31:c5:95:01:4b:ad:f6:76:2c:
f9:98:d4:f5:9f:67:04:73:9d:0a:e0:8a:57:ac:77:
59:dd:4a:64:df:b9:83:dd:78:69:a7:3f:84:0f:d1:
6d:34:59:2d:b3:98:a4:6b:4d:1b:d1:71:73:7a:dd:
22:8c:75:ba:c2:a8:22:50:f9:8e:73:f6:ec:09:39:
61:82:14:06:88:2c:6e:cb:e9:5b:07:36:97:c1:1b:
77:5b:a2:8a:11:50:cd:ff:6d:13:e9:c4:97:a1:b0:
c7:5a:39:bc:55:27:ba:b5:3f:40:14:47:4f:08:67:
38:d6:5a:ad:d3:0d:ec:d2:c2:92:85:e3:d9:b9:8e:
67:9f:4a:f9:4d:02:f5:42:27:ea:39:ff:d5:d4:16:
e4:72:cd:6e:52:d3:d6:9b:c8:df:fb:e3:7e:42:e5:
af:d9:6b:14:99:57:ed:a5:39:6c:e8:65:60:1b:bb:
c0:af:97:98:d3:d7:76:3c:df:9a:34:ce:1e:69:ae:
15:04:f0:a4:20:c8:9d:5e:bb:ad:9e:9e:dd:6c:0e:
b4:bd:9f:aa:09:c2:64:cd:f8:d4:cf:44:68:b8:72:
f4:f0:cd:4a:63:08:c5:da:7d:04:29:fd:69:05:66:
8c:76:b5:23:e0:4a:1c:40:95:90:9a:ef:4a:d1:54:
7d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B1:26:61:DE:EE:24:0B:FC:19:88:69:6F:5E:38:89:84:C2:60:A7
X509v3 Authority Key Identifier:
keyid:5C:45:CE:B1:8B:14:A7:37:28:2B:75:AF:0B:A1:6C:FF:D7:A6:AB:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEXOsYsUpzcoK3WvC6Fs_9emq64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/d71ef8-4b98-400a-89ee-c61bf7749df5/1/XEXOsYsUpzcoK3WvC6Fs_9emq64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/d71ef8-4b98-400a-89ee-c61bf7749df5/1/XEXOsYsUpzcoK3WvC6Fs_9emq64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:40:51:b2:5b:9c:f1:b5:84:9c:58:0a:86:8e:e0:38:ba:ad:
22:f6:0b:25:0b:ce:46:fa:5f:93:2b:0e:cf:f6:88:d3:71:42:
8b:86:0f:2d:60:d1:70:93:69:8f:0d:c4:8a:c9:27:1b:22:7e:
d6:ab:dc:4e:1e:bc:b1:af:b3:40:97:4b:2e:13:96:6c:46:96:
80:70:97:16:05:c3:d7:9d:1a:e5:2e:0f:c6:f8:a4:8e:7b:b5:
f3:89:94:ec:d3:6e:d3:7d:4d:4e:02:f9:5b:a3:c5:7b:4c:3a:
50:c2:85:9e:68:bc:9a:d4:6b:85:a8:52:97:c5:05:26:4c:f9:
b8:8b:53:94:ea:dc:12:22:37:fc:e4:b5:37:9c:db:fc:67:e7:
07:59:db:18:ce:6a:c9:b5:3e:99:b7:9c:81:9b:a4:e0:b4:24:
8f:03:b8:7d:b4:d2:de:8e:99:aa:f5:4c:0d:20:8b:9b:10:82:
11:f4:55:2d:36:fe:27:e5:93:00:25:63:c9:67:a5:0c:ff:44:
64:86:d1:27:93:03:7a:f9:ba:af:f6:81:0f:0b:63:8f:5e:4c:
0f:03:35:d6:3c:39:56:d7:b4:51:96:aa:25:60:68:9f:40:aa:
b1:13:d5:3b:dd:8e:b1:a9:0f:3c:5a:34:6a:97:34:94:98:bd:
52:11:0f:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:41:35 2026 by rpki-client