Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
File: xTtM8KdHHwAPilagSbFjlnzDvZk.mft (raw, json)
Hash identifier: fGINRG5QYbGX9E1nR3hz1NlcAdexUOmok6j8ukM6dW8=
Subject key identifier: 4A:31:C4:74:10:8A:6F:E6:3D:DC:50:71:5A:EF:3B:73:CB:80:EF:36
Authority key identifier: C5:3B:4C:F0:A7:47:1F:00:0F:8A:56:A0:49:B1:63:96:7C:C3:BD:99
Certificate issuer: /CN=c53b4cf0a7471f000f8a56a049b163967cc3bd99
Certificate serial: 019D394111EB144D39368E53EE243A8C61DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
Manifest number: 17AE
Signing time: Sun 29 Mar 2026 11:00:58 +0000
Manifest this update: Sun 29 Mar 2026 11:00:58 +0000
Manifest next update: Mon 30 Mar 2026 11:00:58 +0000
Files and hashes: 1: 4O_QOhMXcJ0t8sIeKd1mrxtJgYw.roa (hash: TciVqBMkJDUC0ydXbkijfxJoweOnHoMs5V4ucXCEH+g=)
2: xTtM8KdHHwAPilagSbFjlnzDvZk.crl (hash: EtbXjHJOwMMTTVGKaVnNDTfiEgj9W/Nl8YGMdT2oVz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:11:eb:14:4d:39:36:8e:53:ee:24:3a:8c:61:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53b4cf0a7471f000f8a56a049b163967cc3bd99
Validity
Not Before: Mar 29 11:00:58 2026 GMT
Not After : Mar 30 11:00:58 2026 GMT
Subject: CN=4a31c474108a6fe63ddc50715aef3b73cb80ef36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5b:39:f3:12:43:c3:bd:b7:84:95:22:d6:71:
dd:d4:d6:44:8f:a8:67:37:04:e2:48:2a:b6:f5:35:
7d:ee:70:70:e2:ef:5c:41:b9:09:c0:8f:4c:c7:83:
14:33:fb:a9:bd:c5:d2:a5:28:b8:42:fe:ce:e7:20:
a0:c2:25:2c:4c:3f:6f:c5:f0:de:00:06:57:19:8a:
b8:85:f6:1d:d7:94:1c:2c:68:a4:0f:20:93:6f:d8:
1c:c6:54:64:5c:04:9d:49:03:cc:15:23:49:6d:07:
4a:a6:84:55:02:c4:5e:cc:9d:98:3f:b0:81:67:21:
22:5e:01:85:d5:f0:71:58:57:da:e4:4e:7e:8a:1f:
42:17:f5:58:35:84:78:56:66:cf:e4:bd:b5:44:50:
5f:92:80:c1:9e:6d:f6:92:a3:77:5d:ff:12:8c:02:
55:28:2a:63:8a:8c:c9:7f:d5:2e:0a:13:a4:a5:7b:
20:2d:bf:ec:24:da:19:d4:e6:09:c3:5d:37:e7:28:
17:f6:2b:42:98:02:16:4b:42:68:8e:6d:7b:ec:c6:
c5:e2:df:68:85:20:ae:0a:f9:d1:5d:45:ef:98:24:
71:45:0f:76:10:e0:90:c4:cb:ee:44:f6:b3:64:3d:
3e:86:2c:c4:2b:d8:a0:51:8c:d5:c9:18:cf:02:99:
9f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:31:C4:74:10:8A:6F:E6:3D:DC:50:71:5A:EF:3B:73:CB:80:EF:36
X509v3 Authority Key Identifier:
keyid:C5:3B:4C:F0:A7:47:1F:00:0F:8A:56:A0:49:B1:63:96:7C:C3:BD:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTtM8KdHHwAPilagSbFjlnzDvZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/bb2b75-bc02-4a6b-98d6-d84e6d3af975/1/xTtM8KdHHwAPilagSbFjlnzDvZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:58:9a:72:be:df:bd:88:44:89:44:9c:0c:20:50:ff:5a:8c:
24:21:23:f6:f1:0f:21:22:67:48:0f:84:f0:46:32:76:d0:04:
c5:c4:15:55:87:37:d5:41:b7:f5:78:d2:da:b0:7a:72:81:38:
0d:03:da:46:16:ec:06:40:a8:d6:82:fc:89:d7:cb:34:47:6c:
39:16:4e:b2:14:98:2f:21:7b:84:f6:ab:f3:e4:96:8d:7d:a7:
aa:67:bc:fa:cf:36:bd:83:3c:44:53:ae:33:d3:40:a5:f4:6b:
df:20:cb:6a:d2:74:35:8b:6f:e0:2d:24:b0:48:1c:c5:eb:10:
fb:fd:3a:4e:7a:46:41:3c:04:4f:6b:8b:4d:3d:1a:a8:8c:70:
07:f1:c8:14:87:df:27:01:6d:51:0b:7a:ff:3d:5e:20:42:71:
b0:43:43:f6:b1:ea:ce:4a:6a:c5:11:9d:ac:5c:bf:4e:10:70:
22:9e:21:87:d6:24:fe:b1:a8:70:29:ea:14:00:c9:31:2e:65:
f7:6c:7a:57:94:c6:1b:73:a8:f5:12:28:9f:88:61:eb:3d:4a:
60:45:a0:1c:33:c3:71:4d:f9:dd:c3:71:f3:35:23:0e:98:fe:
e1:aa:d4:21:4e:45:f6:1b:c6:d8:d0:ec:cd:f7:9e:be:68:8e:
df:70:05:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:41:13 2026 by rpki-client