Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
File: XGGrSm35u5XP3orwdmaKWVs0HeE.mft (raw, json)
Hash identifier: jKL6ycjeaPw+CKZC+9DGA3qDtbF8g1OAFH8B/pnUj30=
Subject key identifier: 6A:17:BE:F7:28:D8:4E:6C:BA:E7:5D:DC:E6:0A:C4:97:D0:73:50:D4
Authority key identifier: 5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
Certificate issuer: /CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Certificate serial: 019CE5FEDF4A1FBA63A0C9DBEBF22C8E4A79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
Manifest number: 054C
Signing time: Fri 13 Mar 2026 07:00:11 +0000
Manifest this update: Fri 13 Mar 2026 07:00:11 +0000
Manifest next update: Sat 14 Mar 2026 07:00:11 +0000
Files and hashes: 1: XGGrSm35u5XP3orwdmaKWVs0HeE.crl (hash: V28pN0nLHke7ChdVkBylDZ+LSvUkpg0HwbvEqKBUkKQ=)
2: d9ad6eSfGOCAtJCyfx5T80LXc84.roa (hash: l8TnxH7nYsbi9OkxC5kgX4fiX1lQ108inFjyeEj/BH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:fe:df:4a:1f:ba:63:a0:c9:db:eb:f2:2c:8e:4a:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Validity
Not Before: Mar 13 07:00:11 2026 GMT
Not After : Mar 14 07:00:11 2026 GMT
Subject: CN=6a17bef728d84e6cbae75ddce60ac497d07350d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:43:21:5d:4c:a8:fe:4f:0c:bc:b7:42:f1:12:
75:28:66:f0:7f:bd:24:14:8c:09:17:08:63:51:6c:
42:01:06:94:e5:e9:38:25:48:27:84:81:98:66:fb:
3a:9b:a1:d1:6f:84:6f:72:a6:83:18:1a:a5:1d:ec:
fa:b1:7b:41:dd:47:7c:b8:84:b8:34:75:87:1b:41:
0b:71:2d:16:0d:09:8c:50:9c:3d:ec:b3:d1:50:80:
36:6c:82:ec:9a:05:85:f0:db:ee:2d:d0:96:3a:d2:
61:94:20:d9:06:7f:a5:26:41:3f:3c:bd:89:28:bd:
6a:af:91:7b:70:d7:17:dd:23:6e:86:cf:7d:48:89:
b6:1a:00:6f:0d:78:bb:e9:eb:89:9c:94:ed:83:be:
f8:f6:02:20:22:44:38:ce:90:de:cc:ce:21:0d:bd:
0b:33:26:f9:e1:42:44:b2:5c:8e:15:13:d6:31:da:
6a:f2:8f:97:81:33:d9:67:31:98:d0:6e:51:74:16:
d4:a4:17:75:65:f3:ab:92:eb:e7:c6:64:94:c7:df:
fc:ce:50:4e:55:8f:95:d5:ce:4c:3c:3d:24:be:a6:
1a:81:d3:a2:7d:31:13:4b:c1:a4:15:8f:9f:0e:21:
34:04:3b:02:ea:a6:59:86:91:b5:43:cc:b6:9e:8e:
48:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:17:BE:F7:28:D8:4E:6C:BA:E7:5D:DC:E6:0A:C4:97:D0:73:50:D4
X509v3 Authority Key Identifier:
keyid:5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:66:72:a5:de:af:44:65:c7:88:17:f1:4d:23:bb:2a:18:b0:
20:5d:3d:3c:2e:17:92:e0:8e:39:5b:46:3b:16:88:09:f2:68:
df:3f:2d:01:39:bd:9e:15:fd:1a:6d:49:57:bf:33:f4:12:1e:
26:37:07:5c:5f:12:56:53:2e:a1:66:b2:36:a6:55:40:72:7d:
3f:3b:37:15:2a:08:f9:bf:9d:20:cd:16:15:93:6c:70:7c:6d:
a5:8b:f8:aa:04:21:d1:2b:2b:4a:f1:4c:c5:72:da:b5:97:05:
8b:2e:1b:9a:9b:2b:7c:7d:d9:df:e8:72:54:75:84:00:a1:95:
e6:62:52:27:bd:56:18:c7:36:5f:5d:94:33:05:be:5a:6d:0f:
29:e7:bc:ea:71:d7:7a:65:ea:4d:5b:18:ea:63:ef:5d:4b:0a:
27:3e:ad:f4:6c:22:cc:1a:9a:a3:d4:35:6f:3c:7a:ca:22:16:
f6:9e:b7:9a:e9:3a:7d:03:0d:9e:75:ee:22:69:de:35:76:69:
bc:96:0a:ff:9d:e2:8e:f2:ea:35:c2:2b:c0:c8:37:75:17:1d:
30:85:4d:cf:96:0e:ee:22:2b:d4:44:21:e9:11:cb:32:4f:e2:
c4:01:51:fa:a5:28:0c:4d:fe:a6:8f:39:c9:c6:59:05:43:fd:
01:01:47:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 11:19:32 2026 by rpki-client