Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
File: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft (raw, json)
Hash identifier: xgQTSeOCpTaGZAcYxQOtLTHkog6Xx0LoCKWhYYnU31E=
Subject key identifier: E5:E9:62:53:21:E4:06:8F:DA:07:24:99:21:45:90:D4:5A:E6:6C:02
Authority key identifier: 5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
Certificate issuer: /CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Certificate serial: 019D389C631AD9C99D8770ABEC552037B155
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
Manifest number: 178E
Signing time: Sun 29 Mar 2026 08:01:06 +0000
Manifest this update: Sun 29 Mar 2026 08:01:06 +0000
Manifest next update: Mon 30 Mar 2026 08:01:06 +0000
Files and hashes: 1: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl (hash: OOfbDBeflhwxLcaf7D4i6gNUSEawHjHmQ0PbpCxZYiQ=)
2: kk41E9wK0dMNp3UzVD82jZ-Xu_A.roa (hash: uelRjQS+f/j8WooWIB3/Gzm3JA/8BAj3iz0X2FN7kXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:63:1a:d9:c9:9d:87:70:ab:ec:55:20:37:b1:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Validity
Not Before: Mar 29 08:01:06 2026 GMT
Not After : Mar 30 08:01:06 2026 GMT
Subject: CN=e5e9625321e4068fda072499214590d45ae66c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7f:95:bf:7d:b4:4c:44:5d:22:9d:94:f9:c7:
03:73:e6:b1:5e:e2:b9:ff:7d:99:9a:92:3f:99:51:
bd:46:bb:9f:b6:7b:fa:e8:86:f4:ed:31:97:cb:95:
37:64:6b:a4:36:b7:cb:44:7d:8c:3a:f1:2c:a8:79:
0e:d8:55:19:30:db:34:39:b9:0c:a8:6d:c2:d3:45:
59:76:96:8c:1d:47:d5:d6:84:08:3e:f4:3c:dc:47:
32:70:df:55:47:c3:77:5f:d3:ad:b7:70:48:8c:4d:
52:eb:8e:8e:a3:a8:e1:a3:dc:bd:88:61:92:d8:16:
e0:8b:cf:6b:af:91:d8:c8:60:7e:90:cb:82:06:e0:
bb:9f:7a:c6:98:2e:eb:14:a8:cc:ed:50:28:7e:16:
78:b5:e3:77:97:e8:42:9e:95:db:45:03:43:4a:cb:
be:95:4f:80:6f:98:e9:9f:4a:8d:9d:c4:5e:f0:27:
52:94:d4:51:c3:59:4a:c7:0c:07:8e:30:ec:f1:17:
5c:4f:0d:0b:d5:c1:60:0b:4c:68:11:d5:71:ea:e5:
82:37:58:c5:26:18:52:33:4b:82:56:81:6a:2b:26:
2d:09:0f:27:93:eb:bd:d2:f9:51:bb:d9:94:d4:30:
59:d8:0a:0b:d8:d2:27:6c:00:e6:c4:0e:fd:32:5b:
b9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E9:62:53:21:E4:06:8F:DA:07:24:99:21:45:90:D4:5A:E6:6C:02
X509v3 Authority Key Identifier:
keyid:5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:c4:da:45:10:14:82:e6:43:40:c9:d8:ea:c5:8d:7a:19:df:
18:b4:c4:f1:ae:d1:2f:0b:25:a1:e1:b1:46:a6:26:db:a7:22:
3f:cd:bf:91:63:72:a9:fb:95:f1:19:fa:0a:bc:fd:59:5c:cc:
77:1c:1c:1c:4d:43:c9:c0:b0:17:83:49:e5:f4:51:02:b9:fd:
b4:b2:3d:80:4f:9e:2d:a0:a6:df:6c:02:39:ff:bc:68:b2:8c:
89:dc:c7:78:20:a3:59:03:43:b0:6d:ec:87:b2:7b:2b:97:de:
c9:37:cf:cd:65:b1:7a:68:6e:1f:83:82:77:e9:36:fb:e4:20:
6c:71:88:62:c4:5c:11:f3:ff:fb:fc:94:e8:5d:ca:b3:80:8a:
10:fd:74:a7:82:8b:1e:6e:73:e6:c9:06:56:fb:89:d8:c4:52:
51:45:37:3a:93:d0:1e:93:f3:48:a7:c2:3a:31:4b:c4:89:c5:
a8:0b:02:41:83:64:2e:4f:c5:74:63:f8:6d:bd:db:f7:f9:c5:
8b:22:95:f8:14:24:d1:b4:3e:0b:04:79:54:b7:50:c8:62:86:
43:71:f1:41:d9:80:d5:82:34:50:25:48:c3:4c:93:a8:55:e1:
f6:31:d8:7c:89:f1:5f:df:d8:d7:f2:f9:64:04:fb:2c:40:10:
e5:76:f6:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:56:47 2026 by rpki-client