Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
File: xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft (raw, json)
Hash identifier: pu5A7hZjspynnW3UCKU+3g5In1dHs6N+NMXQvJ3EvR4=
Subject key identifier: 0E:8C:B6:91:CD:33:76:AF:58:17:8D:30:1B:A1:54:8A:64:76:27:70
Authority key identifier: C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F
Certificate issuer: /CN=c596785476efbae77f961d23057057fa036fb27f
Certificate serial: 019D3752E6D795E58D8A914D2EA5384CAAF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
Manifest number: 173A
Signing time: Sun 29 Mar 2026 02:01:12 +0000
Manifest this update: Sun 29 Mar 2026 02:01:12 +0000
Manifest next update: Mon 30 Mar 2026 02:01:12 +0000
Files and hashes: 1: xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl (hash: p/o1Ww+zF7kvwB2f51/fNZdVOKOcNMvM2VDwxR/7thA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:e6:d7:95:e5:8d:8a:91:4d:2e:a5:38:4c:aa:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c596785476efbae77f961d23057057fa036fb27f
Validity
Not Before: Mar 29 02:01:12 2026 GMT
Not After : Mar 30 02:01:12 2026 GMT
Subject: CN=0e8cb691cd3376af58178d301ba1548a64762770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3b:ae:87:60:08:f7:1d:73:53:c1:4d:80:f0:
d9:9e:73:31:b9:7c:94:3d:08:d2:bd:18:2d:47:92:
38:d8:91:dd:7c:c3:dd:15:19:93:92:fb:9a:35:2d:
16:43:f6:71:4a:b7:9e:ce:42:ab:61:b6:b3:5a:c2:
fd:8a:22:6e:90:1a:29:3d:eb:4e:56:b8:8f:57:b9:
f0:d0:d1:a8:1c:aa:28:e8:7c:9d:07:4f:1b:5e:ab:
cd:ac:69:52:25:8f:d1:f1:cb:fb:67:eb:7e:fe:d0:
35:40:e4:61:32:a6:3a:b1:52:be:a0:a8:ad:91:e8:
83:9e:16:c8:c4:ab:fc:dc:51:b7:b8:d6:a5:ff:b5:
58:d3:8e:bc:01:55:be:71:a6:74:38:f6:b2:d5:67:
85:2f:84:2d:c7:ec:7a:ef:2e:f5:8d:f8:94:8f:4c:
bd:a8:da:5a:2a:30:fd:63:c9:1d:30:cd:cf:61:14:
36:f0:53:36:cd:c7:04:0a:2d:96:59:fa:32:d2:7d:
8e:49:86:2e:ed:23:9b:c6:24:24:29:93:55:97:52:
2f:1f:ee:28:0f:c5:ff:3e:4d:c3:74:17:bb:56:e3:
06:98:5e:a6:8b:32:11:8d:5a:23:85:93:61:8f:67:
f1:c8:d7:8b:f4:56:c2:7a:a8:3d:9e:3d:92:b3:da:
d3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:8C:B6:91:CD:33:76:AF:58:17:8D:30:1B:A1:54:8A:64:76:27:70
X509v3 Authority Key Identifier:
keyid:C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:c4:e5:79:fa:fd:4c:99:b7:63:04:aa:3e:fe:a0:71:c2:c2:
5d:b6:85:61:3d:98:7d:b9:0e:23:0c:fc:46:cc:31:a1:f4:16:
00:85:df:a2:d9:67:be:cc:bc:c6:29:cb:6a:b1:bf:d5:ab:36:
30:39:2f:a5:ec:e3:21:ea:f1:5b:2b:3f:73:58:44:68:ab:7f:
92:89:82:fb:9e:07:6b:70:fc:86:88:23:27:12:62:b9:d7:fd:
34:2f:b1:7c:35:df:10:85:13:8b:c0:8e:50:58:da:22:53:b6:
d0:c3:57:7e:13:31:9d:d9:b7:01:71:05:e1:ca:b9:88:6a:89:
51:c6:64:fc:c2:1b:b0:d4:4a:f8:84:aa:0b:f3:8a:53:9c:5e:
1f:3c:4f:da:40:fc:63:79:3a:e9:8d:c7:af:f9:9f:39:ee:54:
54:b3:f4:b0:7a:36:d1:05:aa:94:c9:32:c0:d3:27:b6:6f:49:
12:c7:69:0f:81:66:cd:53:57:ba:55:8d:fc:95:86:4c:33:c6:
23:b5:3a:0b:df:09:a6:be:25:3d:3b:b0:05:6b:83:78:74:4c:
d9:22:f9:77:31:ed:47:6a:2e:00:fb:59:11:df:7a:46:42:69:
53:1b:2f:fa:24:18:91:6b:30:bd:65:82:61:ec:15:8b:93:05:
cd:fd:bc:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:54:01 2026 by rpki-client