Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft
File: XK56oVlNiZKbERo3Hw_ybyAvWOI.mft (raw, json)
Hash identifier: +nT+IHS1EzlGb1t9CFuq1EfKB/fFPj0VXfxeBJ07QS4=
Subject key identifier: 1A:A6:90:A6:1D:72:80:50:72:6E:34:DB:90:C2:87:3A:4F:5B:DB:A7
Authority key identifier: 5C:AE:7A:A1:59:4D:89:92:9B:11:1A:37:1F:0F:F2:6F:20:2F:58:E2
Certificate issuer: /CN=5cae7aa1594d89929b111a371f0ff26f202f58e2
Certificate serial: 019D382E3759A0C847335CF361B588ACF042
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft
Manifest number: 1780
Signing time: Sun 29 Mar 2026 06:00:46 +0000
Manifest this update: Sun 29 Mar 2026 06:00:46 +0000
Manifest next update: Mon 30 Mar 2026 06:00:46 +0000
Files and hashes: 1: Oanj9HZBO6pjmAia4pctaEcwILk.roa (hash: XGqLRhTKxqFHvcnOJ1VVsX5xFgoIImSw0HHatVrIKYA=)
2: XK56oVlNiZKbERo3Hw_ybyAvWOI.crl (hash: d3TPM+74x++yvYe7PQoXppI3sjq8stJFC5vOkbqq5Jw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:37:59:a0:c8:47:33:5c:f3:61:b5:88:ac:f0:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cae7aa1594d89929b111a371f0ff26f202f58e2
Validity
Not Before: Mar 29 06:00:46 2026 GMT
Not After : Mar 30 06:00:46 2026 GMT
Subject: CN=1aa690a61d728050726e34db90c2873a4f5bdba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b7:b4:bf:3e:8f:9d:71:f1:c6:2c:ea:8d:c8:
43:e0:50:47:36:be:91:0f:25:0d:83:c6:24:26:3c:
59:17:c2:b7:4d:a1:76:41:b2:5d:2d:a0:58:19:24:
d6:0b:1e:f2:32:86:e9:be:10:aa:29:0c:fa:e6:90:
27:06:a3:8d:21:84:3f:4b:ed:ab:79:6a:db:d7:a9:
89:6f:9e:cf:23:d3:44:a1:42:c2:0d:18:84:91:3d:
28:92:fe:75:ca:eb:fc:8e:cb:43:65:92:6a:89:a1:
39:0b:8e:98:aa:b9:5e:02:d3:a2:3b:60:4d:be:b8:
69:56:34:d1:05:79:33:ef:4f:94:4b:cc:e4:2c:40:
d5:d9:db:6d:ca:96:ff:e1:43:c4:f1:cb:8e:45:e9:
9c:ea:33:d8:61:55:1c:0d:36:9d:82:22:f3:30:f1:
e8:dd:14:8d:04:82:db:58:b7:cd:6d:e4:d0:b5:37:
93:4f:d0:a1:11:e3:a2:ec:26:93:3f:ba:21:58:bc:
40:e1:20:1d:4e:65:d2:d5:f3:a5:3e:01:1b:4c:c6:
b2:7b:67:37:79:9b:b8:a4:7c:0e:8a:a4:15:b1:df:
09:62:9e:60:d1:03:cf:50:cc:ee:9b:c6:3e:cc:cb:
80:5a:67:35:76:83:fd:2a:ce:3a:34:f7:11:92:b9:
87:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A6:90:A6:1D:72:80:50:72:6E:34:DB:90:C2:87:3A:4F:5B:DB:A7
X509v3 Authority Key Identifier:
keyid:5C:AE:7A:A1:59:4D:89:92:9B:11:1A:37:1F:0F:F2:6F:20:2F:58:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XK56oVlNiZKbERo3Hw_ybyAvWOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5e6bae-962f-4057-8ec5-279f594b3a2f/1/XK56oVlNiZKbERo3Hw_ybyAvWOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:c3:73:05:f2:12:48:13:cb:38:e7:f7:2e:2d:6c:48:61:46:
2c:e9:a0:5e:5f:a9:32:f0:64:ac:ad:57:96:93:e7:4b:fa:ef:
cb:05:9a:ae:f9:63:94:21:06:03:31:8b:8f:0c:75:b5:de:09:
d9:f1:e0:6b:a1:07:7c:82:15:ea:93:81:2a:5c:2a:d5:a9:09:
12:71:1e:63:f3:b3:97:ae:00:b5:8c:f2:99:77:a8:f5:49:f2:
28:1f:d8:dc:47:df:04:06:51:52:89:55:2e:41:fc:ac:2a:a0:
ec:d4:ef:df:2c:32:dc:de:1a:63:c4:56:ea:f0:43:fd:3e:bd:
68:91:3b:31:cb:92:f1:28:23:4e:b6:5c:11:23:d1:9c:da:d0:
75:e5:e8:78:4d:36:79:96:f0:97:99:33:d3:1e:78:51:ef:df:
55:d9:30:63:2d:c6:8c:14:c4:a6:99:c9:28:fe:16:d7:c0:59:
dd:89:fa:92:a4:d4:69:aa:e5:12:18:8c:ad:2d:ea:1f:db:f2:
ea:e0:fc:f6:42:c9:de:6c:84:c5:45:9b:f9:3b:6d:d6:08:bc:
f6:96:6e:d2:cd:d9:e7:6b:fe:61:60:c4:9c:26:86:7b:b3:d6:
1f:1a:5f:b0:04:c8:88:47:54:11:bf:fd:1b:30:f6:18:d9:20:
7d:cb:f3:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:47:33 2026 by rpki-client