Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
File: XGGrSm35u5XP3orwdmaKWVs0HeE.mft (raw, json)
Hash identifier: g6OYncfvJeQphWz2JwJHU3ATqkMpHKjkVsC3CvNmWuk=
Subject key identifier: F7:32:E1:89:77:49:8C:00:CD:D0:E1:95:7F:1D:B9:F7:72:38:95:9F
Authority key identifier: 5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
Certificate issuer: /CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Certificate serial: 019DCFAC4CF979D420A1AD750A21B89A525D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
Manifest number: 05C5
Signing time: Mon 27 Apr 2026 16:01:08 +0000
Manifest this update: Mon 27 Apr 2026 16:01:08 +0000
Manifest next update: Tue 28 Apr 2026 16:01:08 +0000
Files and hashes: 1: XGGrSm35u5XP3orwdmaKWVs0HeE.crl (hash: jBVZ55ncCtmFheBOfFbvfufhUu8887PNUnn9oEDbsRI=)
2: d9ad6eSfGOCAtJCyfx5T80LXc84.roa (hash: l8TnxH7nYsbi9OkxC5kgX4fiX1lQ108inFjyeEj/BH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:ac:4c:f9:79:d4:20:a1:ad:75:0a:21:b8:9a:52:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Validity
Not Before: Apr 27 16:01:08 2026 GMT
Not After : Apr 28 16:01:08 2026 GMT
Subject: CN=f732e18977498c00cdd0e1957f1db9f77238959f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:14:71:4f:47:a7:6a:bd:03:9d:6f:e6:a3:9b:
6c:dd:58:29:fe:bb:d2:2e:30:1f:51:96:ab:81:db:
cd:d6:12:db:25:25:9c:16:fd:07:00:49:c9:a4:04:
88:92:79:dc:62:b0:d4:bf:fd:17:30:20:96:80:c3:
6e:b5:f4:59:a1:2b:78:88:a1:a8:a5:b2:01:de:55:
d5:42:87:d6:90:c4:37:a3:0d:b8:07:04:4f:99:29:
88:07:f5:36:8c:2f:fd:7f:12:53:9c:98:cc:a7:38:
f6:5a:4c:ba:ec:34:58:31:78:3c:6c:12:e6:e8:28:
13:c2:3a:6d:07:48:c8:1e:29:3d:d6:b7:8e:24:dc:
53:8d:45:be:b7:1a:9b:1e:77:6f:84:02:c8:ac:b1:
b3:8e:fe:64:e9:af:b4:a4:49:c9:32:51:25:a3:1d:
da:52:41:eb:63:8a:07:84:00:25:b0:b9:4c:a0:76:
8b:14:d5:16:67:b1:b2:46:30:6a:66:b7:83:1e:fd:
fb:e0:3a:dc:97:9e:31:d1:b0:84:df:0a:a9:0b:fe:
9d:b5:4b:c4:26:da:33:b4:ca:7f:c6:9e:d5:59:fb:
08:61:42:a9:1a:df:21:cf:e7:7a:ce:ec:d6:1f:83:
7b:14:34:55:9f:00:4e:9f:26:0b:cd:e5:01:be:24:
be:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:32:E1:89:77:49:8C:00:CD:D0:E1:95:7F:1D:B9:F7:72:38:95:9F
X509v3 Authority Key Identifier:
keyid:5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:b2:6a:fc:ab:57:d6:e3:c5:34:bf:35:af:86:28:95:48:40:
3e:a6:82:b5:64:fc:df:30:87:a7:e3:5b:3a:f5:39:ec:85:15:
65:da:69:95:b4:03:66:d2:23:66:7b:73:c5:e7:ac:15:79:4e:
ac:85:fb:d2:62:a0:bc:a2:f6:9f:2f:b5:a4:a8:f2:28:bb:f3:
99:22:a6:20:88:e1:94:b8:d3:5a:00:df:69:ed:7f:3f:88:c6:
59:7d:71:9c:bc:98:0f:84:35:a3:05:4f:66:54:8f:46:7c:2f:
49:39:aa:21:f0:82:6d:41:15:9b:bc:85:fc:b8:89:87:d3:07:
8e:05:5e:92:0b:cd:41:29:12:f7:72:42:88:9c:f9:90:7c:f0:
59:c0:a7:05:4d:db:68:de:47:ea:39:04:a6:82:bd:ac:0b:b5:
4a:24:9b:9c:7b:bc:9d:92:11:78:6e:5d:65:42:e3:c6:51:b5:
c2:15:83:01:f0:b5:ec:05:32:79:9d:8c:12:3e:94:d1:7b:fb:
2f:5d:b4:71:26:09:9e:1a:c2:f6:21:27:e8:55:e7:2f:af:ba:
fc:c3:19:7f:a7:5f:6a:5e:04:c8:ed:21:58:e0:e3:0b:1b:95:
4f:4a:3c:4a:9b:bc:19:fd:a4:41:1f:b2:d8:3f:cb:64:39:37:
cb:18:74:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 18:31:37 2026 by rpki-client