Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: DsovlFvZGyhmCEAvByzCez8ARgtK2Hm8QK6tf7EG3Ac=
Subject key identifier: 87:4B:08:6F:51:EC:9B:B9:8E:A3:40:10:C5:DC:12:B1:4F:AC:9F:87
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 019D3752F96B9AAAA2BEB425A648FBB6C67B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 1239
Signing time: Sun 29 Mar 2026 02:01:17 +0000
Manifest this update: Sun 29 Mar 2026 02:01:17 +0000
Manifest next update: Mon 30 Mar 2026 02:01:17 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: wMGJ2Dc78zCEvdA9JoDx/P90AD0FV85nXf1PB5UrvG0=)
2: xJQkEE-myuee2xusX84h4jOXGkk.roa (hash: bgfimRITzgygmGvHr8W4DzraqoP9/oX3mukFAiSIHn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:f9:6b:9a:aa:a2:be:b4:25:a6:48:fb:b6:c6:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Mar 29 02:01:17 2026 GMT
Not After : Mar 30 02:01:17 2026 GMT
Subject: CN=874b086f51ec9bb98ea34010c5dc12b14fac9f87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:94:aa:22:09:09:18:b7:d8:77:1f:6e:da:40:
19:81:82:0d:83:46:9c:87:2c:92:37:85:72:86:33:
51:e7:82:c4:56:9e:de:17:54:4c:49:3c:8c:2f:48:
ab:e7:05:3c:c5:b0:10:44:da:5f:71:30:3a:5a:8b:
c5:62:ba:19:81:a5:6e:f5:98:4e:61:aa:6e:25:a1:
29:bf:24:a9:6f:af:fa:9f:d9:d4:06:10:8d:7f:fa:
cb:7f:ac:ac:f8:88:03:b1:ae:2a:b2:bb:53:43:0b:
68:40:c2:ff:75:1c:4f:36:f6:20:99:84:8d:15:a9:
d7:29:8b:b5:43:38:dd:10:a9:7f:0b:33:7d:a8:1e:
87:41:1b:e7:b9:c5:49:c9:00:11:b4:00:46:9a:c6:
43:ef:fb:e4:a8:be:9b:12:71:8f:62:7f:5c:92:69:
a8:5d:58:91:9e:59:45:ff:cc:3d:fa:25:ea:01:93:
1a:b7:c3:78:04:15:a1:47:40:ff:15:ca:16:ea:7e:
2a:be:36:85:bd:31:92:4e:3a:30:bb:b0:be:a0:ec:
a8:7e:64:44:22:34:60:9e:9b:03:f1:51:e2:39:e7:
ad:a2:a7:8d:df:38:e6:8d:ba:65:d3:6c:79:2f:66:
66:af:44:20:36:3c:63:0b:06:b2:28:c8:4b:82:0c:
61:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:4B:08:6F:51:EC:9B:B9:8E:A3:40:10:C5:DC:12:B1:4F:AC:9F:87
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:b3:af:4b:9b:f6:08:dc:7f:ff:e9:5b:7b:37:e3:43:fd:0c:
e7:d1:ff:af:05:00:14:4a:f2:56:51:22:18:22:03:b5:84:85:
65:00:2b:c4:ad:b2:8e:8c:0e:b7:15:ca:47:85:f6:20:3f:86:
95:6b:6d:42:20:c4:77:b8:29:be:14:36:ad:ee:50:35:b4:2f:
0c:69:1e:46:28:21:be:9f:3c:a6:6d:b3:6d:3c:c7:fb:2a:ae:
b8:6c:b0:63:c6:db:46:e6:a5:fc:ce:4b:17:e0:68:29:dd:b3:
67:1e:e6:42:d9:0d:79:fa:36:52:11:e5:06:a5:77:55:6c:ba:
94:cf:7c:6c:68:4b:88:82:7e:5c:c8:74:d4:e5:1b:50:66:74:
1a:cb:46:a8:06:28:48:a9:b6:c6:67:04:e7:38:5b:fd:4a:f4:
d3:24:30:d7:70:bc:f6:a5:17:90:33:cf:08:d8:6a:7b:b9:c0:
f1:4a:3b:15:06:61:44:95:0d:aa:d5:31:5a:d5:ec:0a:5b:76:
f3:fd:d8:3f:f5:80:0e:81:0b:7c:12:3d:92:4a:b6:70:18:1b:
22:c3:22:f6:6f:ff:91:c2:60:f9:1e:19:3e:1f:f7:75:54:88:
25:67:ca:96:48:78:6b:24:68:be:0f:0c:10:3b:77:4d:73:85:
61:d3:51:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:19 2026 by rpki-client