Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
File: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft (raw, json)
Hash identifier: Mm8JDc45FMDnLtWA4qzPgJ7teJJmplknzp634bgI5J8=
Subject key identifier: 2B:57:20:25:95:1A:42:DC:77:C2:76:48:62:F8:71:90:CD:2D:32:69
Authority key identifier: F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
Certificate issuer: /CN=f970049cba7f39aeed31d65313c7b953f3fda135
Certificate serial: 019DD0F563D63C3DC48662EFF9F69D477D65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
Manifest number: 170D
Signing time: Mon 27 Apr 2026 22:00:35 +0000
Manifest this update: Mon 27 Apr 2026 22:00:35 +0000
Manifest next update: Tue 28 Apr 2026 22:00:35 +0000
Files and hashes: 1: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl (hash: U2zUqHGr9y/6kDfgp3fGMcMglg9LrF+XzX99FmUhu1o=)
2: 9O4dKfnZgTgqWB_iiNETLsmvwXY.roa (hash: B3+44Wl16VVGNQlYDiIt0cK5DguWkC82Gzjl2M8qljQ=)
3: 9wP7mpH_B0PGwWv5_AlRe4xldiA.roa (hash: zYLWTc75j+s7gKIa+ebYI+LbuI7qKTL5YSAgcKHFymE=)
4: HUC0yUJUDgqy27kx_QVtwVTYAPk.roa (hash: CyeQ43VG6tD5RMnxhr0UsmCBVHZpmO9VtiFMAauD0/c=)
5: OuUlmrN0axWfSqeYSWZ3VFyR9gQ.roa (hash: QKGtXpsKu8AS09muhwUu1IIbo7MS1z9kgfO0GKSJA9I=)
6: UgGCU0bNSuQOEElr01rlVK8sU_Q.roa (hash: AacHgDrHZ+OvhSoYCRcjSoSerNRKqDKHnF8VQ9u1BE8=)
7: Wp-glj4jLDxWifTRA7ilsUKXI0w.roa (hash: vAjHOys3Ggc83LnsEZEpKy5P5ZSFbz3QKqyxgLEsEXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 22:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d0:f5:63:d6:3c:3d:c4:86:62:ef:f9:f6:9d:47:7d:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f970049cba7f39aeed31d65313c7b953f3fda135
Validity
Not Before: Apr 27 22:00:35 2026 GMT
Not After : Apr 28 22:00:35 2026 GMT
Subject: CN=2b572025951a42dc77c2764862f87190cd2d3269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:12:c6:89:24:6d:dc:db:cf:e8:6a:1b:0c:0b:
3b:e3:ba:bf:d4:6d:6a:27:5a:3c:01:83:18:7b:7b:
f0:71:be:f7:9e:cb:aa:2d:0f:e0:55:13:43:99:e8:
80:4d:e5:31:8c:b5:b9:1a:62:64:f8:5f:2e:9d:4c:
65:61:27:6e:a2:1d:7b:85:27:75:a1:c9:e9:a9:05:
33:d7:ab:50:1b:e1:27:8e:5e:e7:b3:bf:32:dc:a9:
4b:93:ca:4c:45:2b:87:ca:fe:2d:a6:c0:36:e0:9b:
b1:0b:17:08:b0:b8:d4:4f:7c:ba:b4:46:0f:6d:a9:
75:c1:22:f1:fb:88:84:fb:f1:37:0a:2b:d1:74:d3:
79:97:ae:26:78:0f:b6:6e:75:ac:6f:08:d0:b1:b9:
cb:5a:05:ab:48:4f:77:4a:44:37:04:58:ee:cb:1e:
2d:28:7e:23:ee:57:98:27:a6:c5:80:fd:ca:4b:7f:
4e:af:a0:4a:04:2e:35:93:8a:3f:1d:f5:98:ea:a1:
d6:58:34:d1:f4:29:36:56:34:d0:a8:20:aa:3e:b4:
c7:7c:65:93:71:2c:21:84:b7:a8:66:20:44:51:5f:
97:67:38:a3:a0:2c:f2:3c:a9:7e:0f:6f:bc:29:87:
0d:f6:2e:12:73:29:eb:95:46:3d:2c:dc:a7:e5:4b:
c8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:57:20:25:95:1A:42:DC:77:C2:76:48:62:F8:71:90:CD:2D:32:69
X509v3 Authority Key Identifier:
keyid:F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:5f:76:23:2c:10:aa:cd:88:8a:c6:4a:0a:41:ec:75:ef:ff:
af:f4:dd:d4:1b:15:36:c8:3f:cd:77:c4:01:09:f5:8c:b4:f2:
3c:7a:a5:fe:86:c8:7e:df:10:cb:6d:87:24:87:f7:7a:57:de:
10:c0:6d:45:5b:fd:03:e6:44:f9:23:4a:ce:85:1c:a0:c0:46:
3e:5c:ee:97:a8:f3:1f:50:c9:bd:35:7f:b2:16:1e:1f:5e:5b:
a5:52:a0:79:df:0a:dc:6f:c2:3b:94:f6:80:96:40:c5:f5:81:
1a:7e:eb:f6:fc:0f:ea:7e:66:d8:5b:fd:3c:88:f2:d9:d0:2f:
27:83:12:d9:5e:88:81:15:b4:3b:42:fe:18:fe:4c:bc:3a:61:
65:69:ce:f4:45:8c:5b:4c:e6:b7:88:35:3f:cb:05:18:fa:88:
7a:50:d7:4c:26:a0:c6:36:47:34:de:13:7b:53:cb:c6:63:3b:
b9:0b:7b:91:22:ed:76:dd:e7:84:77:89:ba:21:ba:72:62:d1:
8d:dd:3a:3f:b1:07:1a:83:28:74:f8:bd:9e:ec:59:5f:30:81:
20:08:94:b5:55:5c:a2:3e:1f:5a:c4:fb:6b:f8:c7:fe:07:13:
05:c8:44:80:06:e3:30:ae:09:31:ad:c1:8c:ea:dc:78:43:58:
76:a0:fb:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 06:07:08 2026 by rpki-client