Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
File: XaWsO7omBTjDM-bIYPI2ASyYZ10.mft (raw, json)
Hash identifier: NjAICn+Yse3YXDiOBjSFcPbCm5V6KbaTuaNWLusLPHQ=
Subject key identifier: 75:6A:08:6C:82:18:AB:0D:A8:1C:FF:96:91:29:47:ED:AC:8E:4A:B4
Authority key identifier: 5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
Certificate issuer: /CN=5da5ac3bba260538c333e6c860f236012c98675d
Certificate serial: 019CE3A2DC71764124274775748F2674F906
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
Manifest number: 12BE
Signing time: Thu 12 Mar 2026 20:00:27 +0000
Manifest this update: Thu 12 Mar 2026 20:00:27 +0000
Manifest next update: Fri 13 Mar 2026 20:00:27 +0000
Files and hashes: 1: GqfcLrP9OkUTy-GX1d-k-vfcOX8.roa (hash: XFhkOuqDVaUrmegmAPvZHJBMmOe4H8O6VpNvMvQVK4k=)
2: XaWsO7omBTjDM-bIYPI2ASyYZ10.crl (hash: bDRr2PRvm8qxDEoZD+X25TCif+jHPBNp90uPSA3A7kE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 20:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e3:a2:dc:71:76:41:24:27:47:75:74:8f:26:74:f9:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da5ac3bba260538c333e6c860f236012c98675d
Validity
Not Before: Mar 12 20:00:27 2026 GMT
Not After : Mar 13 20:00:27 2026 GMT
Subject: CN=756a086c8218ab0da81cff96912947edac8e4ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bf:11:e7:92:7a:37:c2:80:0c:cd:2a:f5:07:
61:81:43:04:38:42:28:59:af:53:3a:d3:2e:50:7e:
21:e0:a1:91:8e:80:fe:9d:66:8e:20:50:40:55:38:
c2:60:b0:93:cd:28:25:08:d7:13:26:f5:4a:38:70:
4d:b0:69:20:3f:a1:e6:2f:69:a4:ed:b9:b2:1d:c9:
09:1f:60:21:33:54:e6:f6:ca:bc:d8:ad:b0:52:08:
60:55:f0:df:b6:ef:8e:b7:43:52:70:1c:80:e2:e2:
05:c5:ca:d4:b5:24:2c:5d:a8:1d:5a:4e:1b:d1:1f:
94:ec:28:7f:f1:fc:49:27:92:d9:01:06:a2:78:74:
be:e9:a3:f1:6c:62:e2:9d:47:6c:35:9c:65:3e:cb:
38:38:53:10:77:1d:11:c0:78:c6:10:7b:9a:7d:65:
ee:43:ba:15:c6:3e:ba:60:70:39:a1:5f:b2:1a:d3:
84:13:b8:31:82:5d:bc:7f:0b:69:7f:b3:a4:ff:a0:
09:e4:4a:07:a3:26:cb:6d:1e:2f:ad:a0:9c:6a:6e:
d8:02:f4:be:40:a2:da:a3:d3:56:73:37:b0:6c:a8:
23:f9:cd:f4:23:93:f1:88:17:34:d7:cf:55:43:64:
fc:1e:8a:e9:4b:1c:ee:84:17:e5:8c:0a:b7:4d:a5:
00:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:6A:08:6C:82:18:AB:0D:A8:1C:FF:96:91:29:47:ED:AC:8E:4A:B4
X509v3 Authority Key Identifier:
keyid:5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:7a:6b:7d:88:82:3b:81:27:4a:32:ef:62:c3:ee:d3:91:f5:
91:47:b9:09:86:f5:f9:e3:d3:ce:d8:31:70:cb:24:67:6e:e8:
a5:f7:35:a5:42:06:1b:31:5f:5f:0a:25:c3:b5:8b:4e:b1:12:
c1:af:3d:bd:e1:2b:35:ab:52:66:7b:4f:34:f8:ef:77:4f:83:
cf:30:28:fb:3d:55:fb:0a:d6:57:a6:1b:a6:b5:76:c6:ae:66:
ac:37:0c:66:e8:4f:3f:89:a0:d3:0e:75:7f:d8:a7:82:f9:fd:
42:af:94:c2:a6:11:13:f6:43:dc:76:40:dc:32:b9:10:e2:c2:
dd:e6:64:f4:bf:58:d6:95:4d:7e:ac:c4:7b:5e:bd:c4:e5:b1:
2a:02:72:f5:a4:a0:60:d6:77:8c:d3:60:aa:45:f0:15:f8:37:
5e:e1:35:8e:f2:b9:fa:76:ff:d6:3e:b1:72:b0:6b:fd:3f:85:
bf:c7:eb:a3:4b:79:4c:f5:79:55:58:6b:19:c7:f5:3f:c8:21:
66:41:c5:c8:e3:0b:08:b3:c6:2d:14:53:32:90:6f:d9:39:b8:
ea:c2:b5:51:9c:b0:77:30:58:82:88:89:61:ad:67:6e:5a:2f:
6b:4f:f4:12:03:02:21:96:9e:4b:8b:64:f2:a0:bf:cd:ce:9b:
a1:d9:aa:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 01:31:20 2026 by rpki-client