Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
File: XEKIRvhNgYNh9rnApGOy5XQqFJs.mft (raw, json)
Hash identifier: +XLx+W1WCnbkhEe0PMHtZPyS7TfvimHNWzFewwzzoGU=
Subject key identifier: 01:FE:88:20:01:6F:6C:23:C7:FE:CC:02:EF:EC:83:3F:4C:C0:22:33
Authority key identifier: 5C:42:88:46:F8:4D:81:83:61:F6:B9:C0:A4:63:B2:E5:74:2A:14:9B
Certificate issuer: /CN=5c428846f84d818361f6b9c0a463b2e5742a149b
Certificate serial: 019D39E56C67B5E06BEC06540E4C859F7F32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
Manifest number: 01E5
Signing time: Sun 29 Mar 2026 14:00:29 +0000
Manifest this update: Sun 29 Mar 2026 14:00:29 +0000
Manifest next update: Mon 30 Mar 2026 14:00:29 +0000
Files and hashes: 1: CNU3mQEbY-u6S3PERfizHiI3tYk.roa (hash: /9Q8PFVvHk4oD7Nve3f5+udPkxTJLftVYP8vMjZBj5o=)
2: XEKIRvhNgYNh9rnApGOy5XQqFJs.crl (hash: V6NvDkv//ibxrpXPzTlaZEC5GAO6UgT/QEncsCEsHIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 14:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:e5:6c:67:b5:e0:6b:ec:06:54:0e:4c:85:9f:7f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c428846f84d818361f6b9c0a463b2e5742a149b
Validity
Not Before: Mar 29 14:00:29 2026 GMT
Not After : Mar 30 14:00:29 2026 GMT
Subject: CN=01fe8820016f6c23c7fecc02efec833f4cc02233
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0e:b8:eb:2c:31:cc:da:45:74:a1:f0:51:79:
19:bb:8b:b1:17:91:b0:72:98:0d:0b:99:9b:c3:f5:
53:c2:19:74:1b:75:f3:c3:5c:1d:de:34:e7:30:8d:
e5:72:dc:b0:6e:39:09:e7:58:3c:26:3b:18:f3:3c:
b0:99:37:00:09:53:fe:b2:ca:2c:a8:81:ff:e5:99:
29:51:6f:3b:90:2d:b1:37:3e:ca:0f:ab:7b:a8:56:
a6:9a:0f:09:05:b2:54:f9:52:0a:c9:cf:3e:1f:07:
10:7c:ca:83:92:c5:47:ef:67:5f:14:13:22:7e:91:
3d:87:06:4d:d7:ca:cc:a2:09:5c:14:6b:33:c2:f3:
e3:88:c6:99:09:12:89:e0:d7:2d:12:fc:57:ba:75:
b8:08:be:5f:c2:91:ea:ad:0f:34:c8:17:cc:65:9b:
14:49:34:5e:c3:29:8c:70:24:bc:b5:23:28:3c:8c:
e0:77:55:99:6e:ac:09:1a:6a:9a:fe:64:7d:81:8d:
65:58:55:69:23:9b:aa:db:85:a4:d6:5f:5d:33:ee:
16:c3:c7:40:dd:cb:73:63:55:fe:bc:a2:c6:da:57:
70:ef:01:ab:8e:a1:73:ee:19:90:69:ab:c4:ea:f2:
50:60:d7:9a:bb:16:9f:a2:cb:4c:fc:9a:bb:c8:66:
40:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:FE:88:20:01:6F:6C:23:C7:FE:CC:02:EF:EC:83:3F:4C:C0:22:33
X509v3 Authority Key Identifier:
keyid:5C:42:88:46:F8:4D:81:83:61:F6:B9:C0:A4:63:B2:E5:74:2A:14:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEKIRvhNgYNh9rnApGOy5XQqFJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/89a872-d04d-4217-8fc4-c90db8235f39/1/XEKIRvhNgYNh9rnApGOy5XQqFJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:50:87:86:c9:e4:68:ff:87:8f:4d:63:5b:73:44:53:3d:64:
42:00:b2:f6:63:f5:40:aa:c9:2f:a2:9d:d7:63:53:77:d6:19:
73:3c:f7:98:b6:ad:98:4b:7b:43:47:12:ea:64:6a:f5:ac:0c:
bb:51:19:92:b9:7c:bb:69:21:f9:84:20:64:b1:dd:b9:9a:58:
47:76:c6:f4:97:8c:83:98:8e:17:a5:3e:a6:01:e9:09:00:77:
a2:8b:41:d7:8e:f6:75:8c:a1:53:2c:bb:0d:94:9c:49:5a:ea:
b1:23:e1:98:ea:be:1f:23:ba:7f:a0:4f:3f:12:3a:d4:f1:0a:
7f:4a:38:c8:e2:75:3f:fb:fe:4b:92:00:ea:7f:ec:f0:47:27:
71:fe:4b:30:d0:a5:07:03:4c:18:24:ab:2b:61:9e:54:80:af:
6a:15:6a:9f:49:bf:39:b0:60:b2:b4:cd:39:da:98:3f:80:29:
14:bb:08:22:6b:2d:63:d3:43:ae:a6:a4:fc:56:bc:67:81:b5:
d2:a7:45:44:77:11:57:a7:58:52:a0:68:9a:72:79:29:3d:79:
33:57:5d:83:a8:e5:4a:be:e6:2a:f8:a5:2d:29:9f:39:76:cf:
66:6a:ba:e6:01:72:4e:53:66:50:fd:4d:2a:c0:7e:26:98:b8:
34:ca:ba:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:24:35 2026 by rpki-client