Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
File: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft (raw, json)
Hash identifier: 3A+GRf+yzHro3ZN1MeUWP9/ab+dXVcv6UOcoQ6t/4wA=
Subject key identifier: 94:57:49:41:A7:E9:C3:C1:1D:31:51:0D:01:5B:54:86:5F:65:49:D9
Authority key identifier: 5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
Certificate issuer: /CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Certificate serial: 019D3A53EE8D5D17BD1544AFD0A9E8A8A9CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
Manifest number: 13C7
Signing time: Sun 29 Mar 2026 16:01:11 +0000
Manifest this update: Sun 29 Mar 2026 16:01:11 +0000
Manifest next update: Mon 30 Mar 2026 16:01:11 +0000
Files and hashes: 1: 1-rh3SVK_l4oC_Y7ih51PfkV69KE.roa (hash: NJ7OHlFB+x8OrDZE2G7eqZGbDxSKcSz5o8ZkkHAui3k=)
2: 5WVKFC0tIs3qECrATtHYfjSRy9U.roa (hash: 0laLmepgzK3PsoUCQzvdtjbDgKkvW1Qb5dCLcjPTJAs=)
3: DmAsoEh_ftaKPOhVRscVORbXGKo.roa (hash: K5t41X9Sj7F3OsASCaPLgv9lGQLlL9EDWZMrPiqu4D4=)
4: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl (hash: fCA0wV3mBZ4dn8ATiVpwdJ1WoStIFUYIDF89k5a3ybI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:ee:8d:5d:17:bd:15:44:af:d0:a9:e8:a8:a9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Validity
Not Before: Mar 29 16:01:11 2026 GMT
Not After : Mar 30 16:01:11 2026 GMT
Subject: CN=94574941a7e9c3c11d31510d015b54865f6549d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:80:4a:b1:25:20:cd:b5:54:3d:b9:88:54:78:
76:d9:42:31:b0:d1:2e:2c:d0:5e:d6:8b:bc:31:42:
e5:c9:f0:b5:0c:ff:f5:56:1f:39:14:a8:64:19:73:
33:30:2a:22:ca:ba:00:93:93:a4:d1:a4:2d:15:43:
e0:89:2a:7b:cc:bf:7d:7e:60:65:71:06:1e:4e:06:
bb:1a:b2:be:dd:29:16:9b:8c:67:c4:97:d6:c9:a0:
24:30:d1:27:8b:f6:e9:89:82:46:ff:f9:75:d8:20:
5b:e0:f5:a8:52:34:e1:a5:ba:8c:0a:8e:19:51:85:
2e:58:9e:5e:6e:16:7d:0c:0a:ff:fb:4a:e6:49:d8:
20:cf:c2:58:5f:b8:ce:58:f3:ae:d0:1f:35:9c:a2:
50:01:34:4a:49:eb:b9:95:d2:5b:1d:13:66:fa:2c:
ec:5c:48:af:e4:6d:7f:e8:6e:fa:ff:ce:3d:fa:fc:
89:c7:0c:c6:78:ec:82:78:8b:65:e4:39:eb:84:a9:
6a:d7:ad:59:5f:5f:c4:cb:d0:6b:5b:91:89:0e:09:
e7:28:ca:33:09:6e:5c:bf:aa:ba:72:96:5b:6e:f1:
30:d4:bb:86:77:71:66:71:37:ea:64:6a:f5:b3:f6:
7c:8d:b1:cf:13:83:91:9c:66:61:fd:cf:ef:ad:39:
81:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:57:49:41:A7:E9:C3:C1:1D:31:51:0D:01:5B:54:86:5F:65:49:D9
X509v3 Authority Key Identifier:
keyid:5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:77:05:4e:dc:c9:2f:59:9a:69:6d:3c:03:e3:3f:1f:05:7e:
21:93:57:ef:c7:e0:0a:80:fc:9b:30:79:b2:43:01:7a:ce:0a:
bd:7e:54:86:fc:6b:0e:82:aa:3e:c9:6b:41:09:81:d0:6b:4d:
aa:f2:10:44:77:ba:13:71:d7:0b:b4:89:e7:f1:c4:84:60:84:
a8:86:67:50:9c:ff:a7:6b:70:29:9f:26:0f:ba:81:b5:45:c1:
3d:d4:4c:d9:2b:9a:88:59:17:fe:8f:3f:d8:73:16:1a:78:2f:
a7:9a:7e:0c:f1:f8:24:01:3b:0f:0d:be:62:fa:dd:1a:46:b7:
58:54:59:c9:4a:33:98:de:a9:eb:f9:6d:b0:aa:cf:d7:99:dc:
d4:6b:1a:48:25:27:be:46:d8:26:51:e6:41:3c:15:e5:fe:1f:
5d:d7:df:d6:cd:8a:33:05:c2:a3:83:2b:66:4d:da:c8:13:77:
29:b5:81:ae:29:6d:3d:7c:7b:ba:9c:84:5f:da:7c:7a:e0:4b:
99:c0:e7:ef:3d:d7:bf:85:ad:02:86:66:48:a8:c3:10:40:f3:
4b:5d:ac:5e:c2:36:2b:80:39:c1:4b:98:04:17:4a:00:fa:77:
cd:42:82:32:df:af:f7:76:90:7b:e4:8d:5e:c2:32:d8:cc:b5:
0d:1d:c0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:32 2026 by rpki-client