Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
File: X8IN7HFLtUY7Fk4VpfihOYolUF0.mft (raw, json)
Hash identifier: cSoOcVPrEIrBzP0EkL1ZvPz/qRNg3GwCdoDP11YftNo=
Subject key identifier: B6:D6:8E:82:A0:18:6A:24:E1:99:17:CA:10:02:16:BC:24:B7:E5:14
Authority key identifier: 5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
Certificate issuer: /CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Certificate serial: 019D382E5E68A00A53B2F1D0F6E514362B8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
Manifest number: 0588
Signing time: Sun 29 Mar 2026 06:00:56 +0000
Manifest this update: Sun 29 Mar 2026 06:00:56 +0000
Manifest next update: Mon 30 Mar 2026 06:00:56 +0000
Files and hashes: 1: X8IN7HFLtUY7Fk4VpfihOYolUF0.crl (hash: M1P4+dWB+B43OJgdO5tmfwRfCktgX6czRKW+syhLFq8=)
2: uvNf-ODFo6lTEuGrLrORQ7H_M9Y.roa (hash: 5BzdF2coA2UrrcFqyEC8X7uFcWtTvQZa39Bk7bbs6js=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:5e:68:a0:0a:53:b2:f1:d0:f6:e5:14:36:2b:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Validity
Not Before: Mar 29 06:00:56 2026 GMT
Not After : Mar 30 06:00:56 2026 GMT
Subject: CN=b6d68e82a0186a24e19917ca100216bc24b7e514
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c2:fd:87:00:9c:0c:12:74:5d:64:1b:e9:c4:
21:7f:21:99:f3:19:e6:d9:5d:4b:fa:7c:3f:86:c7:
31:44:78:86:8d:48:96:b1:71:8c:fd:b1:72:e0:8a:
fe:88:09:9f:fb:cf:23:4f:8a:d3:d1:1c:d8:0d:f5:
17:bd:ad:7c:ba:16:b7:5c:96:79:cd:05:2f:73:a1:
c3:ae:49:98:38:a4:92:e8:ca:c4:0b:44:f8:43:d3:
56:19:be:26:89:11:97:c7:e5:d6:18:25:9d:2a:fc:
2f:c3:cf:d6:80:ae:d9:9f:99:7b:75:b3:9e:24:ee:
42:50:e0:b5:3b:d8:a4:2e:16:44:aa:13:b4:63:d2:
54:af:4c:3a:f7:bb:77:f0:cf:82:ab:36:47:31:3f:
1a:48:fc:47:0f:7f:c7:e8:8f:1d:ed:4f:fb:87:fa:
b7:89:5f:91:d9:a5:d9:2e:5e:8f:22:ba:c9:7b:49:
65:4d:e9:ee:ed:75:3d:05:40:fb:3d:f2:c1:e1:29:
7c:39:a9:bc:25:86:7d:fe:31:81:3f:11:70:ab:91:
61:09:fc:2a:f4:46:0e:61:59:f8:44:b8:ed:9f:73:
06:85:90:64:fb:77:34:be:1f:82:9b:58:14:0e:e9:
e3:30:a0:38:dd:b4:5d:ab:f3:2e:f6:a0:46:bd:40:
6a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:D6:8E:82:A0:18:6A:24:E1:99:17:CA:10:02:16:BC:24:B7:E5:14
X509v3 Authority Key Identifier:
keyid:5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:63:7b:68:3b:a2:67:8c:1a:49:cc:7c:32:20:e6:91:c1:be:
74:37:d9:2d:94:dc:fe:04:1e:0c:45:2c:97:d8:ab:96:fa:de:
e2:c9:5b:56:2f:e7:80:f7:9a:d4:36:71:6a:f1:80:f3:09:da:
ab:b6:f0:60:b6:61:cd:b6:a5:ac:2d:42:3e:ca:4d:8d:1a:dd:
5c:99:d8:81:6f:10:7c:7f:33:69:30:5a:61:1f:04:86:72:f1:
80:30:02:bc:80:bd:9a:53:8f:16:1c:02:32:6f:4a:82:b6:0e:
51:19:89:5a:63:4d:66:de:62:ab:93:3e:d3:0d:21:12:d5:ea:
e3:98:61:0d:b1:8d:d1:f3:32:76:10:a6:f3:9a:49:fa:8b:d5:
2d:a3:5b:cb:77:29:d6:94:ac:77:8a:3b:20:fd:a7:8a:3f:d7:
87:2c:b0:c8:ea:93:5a:7f:5e:13:83:49:36:d0:13:e7:2d:ba:
a6:33:dc:23:19:3f:6b:05:ec:22:4d:48:47:3f:85:ed:41:e2:
cc:0f:dd:4a:c4:8c:f8:a4:42:e7:fe:70:ea:a1:9a:2c:f0:79:
99:48:f3:f6:94:90:a1:16:64:99:8c:94:6c:eb:a2:a6:fc:e6:
45:29:17:7a:ad:e4:22:44:48:d4:bf:20:95:a5:48:bd:2b:d1:
7b:03:79:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:52 2026 by rpki-client