Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
File: xT4qugUV7JDRCREGD88pI2123d8.mft (raw, json)
Hash identifier: kGPoicQQkYGsQ+m8f4kgoOVCj0NSdYUFco2XjvzIt2o=
Subject key identifier: B1:F8:6F:47:3F:9D:AD:20:01:D3:37:5C:2F:32:B4:8A:B6:0A:5B:FB
Authority key identifier: C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
Certificate issuer: /CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Certificate serial: 019D382E547E117FBB7A1493E66DACAAAD10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
Manifest number: 1045
Signing time: Sun 29 Mar 2026 06:00:53 +0000
Manifest this update: Sun 29 Mar 2026 06:00:53 +0000
Manifest next update: Mon 30 Mar 2026 06:00:53 +0000
Files and hashes: 1: ub7YR9axa9vWtz1X_qFq5fbsHkk.roa (hash: JE4qOMRm4xEBU/PFIJ8QsUIFvLyYeHz3Zc+xrGXyYyQ=)
2: xT4qugUV7JDRCREGD88pI2123d8.crl (hash: YApd7EDu5ujmCkxd89OEaGqWGN7XnrnXjCCyxxUyDwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:54:7e:11:7f:bb:7a:14:93:e6:6d:ac:aa:ad:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53e2aba0515ec90d10911060fcf29236d76dddf
Validity
Not Before: Mar 29 06:00:53 2026 GMT
Not After : Mar 30 06:00:53 2026 GMT
Subject: CN=b1f86f473f9dad2001d3375c2f32b48ab60a5bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b5:28:9c:06:cf:96:0d:37:f7:c6:e4:fa:ff:
31:bc:64:7c:43:2e:9f:02:5c:e3:fb:c4:d9:69:36:
42:43:06:46:5e:48:9c:1d:eb:98:69:c1:49:22:39:
7d:47:d2:ca:10:bd:33:ad:04:04:08:5d:bd:8e:44:
4d:f0:b1:a3:57:3b:fd:7a:09:7c:6d:10:a0:f8:a6:
36:a3:ea:52:36:49:4e:dc:d2:7e:3d:f7:83:ad:07:
02:cc:9b:61:7a:ef:40:01:77:e0:a7:c0:0e:0a:6b:
9d:23:25:21:46:37:48:c8:9e:ea:01:01:71:21:4f:
d4:71:2b:d3:0c:34:21:74:2e:04:23:4a:35:9c:5a:
0f:71:fa:93:39:70:3b:a5:ca:2d:58:ca:70:41:5e:
3b:82:db:74:93:53:d5:c5:8d:36:7c:0a:56:f7:b2:
b3:ae:ff:23:3d:d0:3d:bb:a0:b3:23:07:23:1c:48:
3a:2b:b2:d4:a3:e4:b4:31:96:3f:8d:d2:74:fb:45:
bc:98:be:0e:eb:62:ac:b4:51:c1:8e:c3:6a:1a:74:
c4:7d:c5:e5:9c:fc:e1:d6:c4:0d:ba:62:e7:1c:2b:
34:8a:db:fb:97:3e:4a:0a:c2:0b:0d:ec:da:3d:b6:
32:24:9e:72:d5:33:58:31:dd:c5:ba:2c:0d:24:c6:
dd:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:F8:6F:47:3F:9D:AD:20:01:D3:37:5C:2F:32:B4:8A:B6:0A:5B:FB
X509v3 Authority Key Identifier:
keyid:C5:3E:2A:BA:05:15:EC:90:D1:09:11:06:0F:CF:29:23:6D:76:DD:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xT4qugUV7JDRCREGD88pI2123d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/908a62-f4e0-4985-9e34-12053ade9faf/1/xT4qugUV7JDRCREGD88pI2123d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:d9:ae:02:a2:2b:a4:f4:2a:d5:36:10:10:c3:9f:69:eb:7e:
a0:a4:19:b2:01:d6:4f:60:eb:90:46:37:7d:79:a7:69:4f:ef:
07:cb:89:56:7f:90:a4:e0:c3:a2:7a:0d:08:42:1f:9d:a7:7b:
b4:78:69:78:36:ac:cb:49:6b:5e:59:d4:56:9f:13:d7:b9:6d:
b4:1c:b0:b1:43:00:7e:5b:2c:93:aa:0e:bb:0c:ae:38:2d:46:
fd:b9:d7:9e:f7:1c:7f:1c:91:82:ca:6b:f9:53:9b:00:0b:1d:
4a:30:a4:ae:b5:a7:9c:c3:8d:31:3e:6f:4e:61:dc:d8:03:7c:
87:fb:af:9f:d8:33:4b:1c:a0:0d:40:d2:b4:b8:dc:2a:2a:2c:
13:36:55:34:b8:73:79:99:86:e6:0c:67:ac:ce:c6:57:65:50:
9a:73:99:a7:4b:08:cf:04:31:66:ad:bd:c0:5c:88:2b:5b:db:
ce:a8:ed:a8:4c:85:18:04:f6:e8:d1:be:b1:f2:3c:ba:1c:e2:
0c:2f:e4:92:b2:bc:28:f5:ae:02:21:fe:94:9f:bf:f7:2f:8e:
24:1c:ff:ad:6f:10:7a:36:7f:df:05:57:f3:92:c4:c4:8e:fb:
f1:32:cd:01:50:49:0f:6a:a1:e5:e9:45:59:c4:82:86:d0:1c:
bb:9c:bb:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:42 2026 by rpki-client