Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
File: xZKgYJDwFpQNMesbCbrhLZSxlbA.mft (raw, json)
Hash identifier: 67nhXgYZwR9QvEqjddPpv/tRklraKqE+Btasn8hxVTY=
Subject key identifier: BF:D0:13:9C:16:43:CF:2C:97:42:E9:BE:90:C5:67:C0:46:A0:1E:32
Authority key identifier: C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
Certificate issuer: /CN=c592a06090f016940d31eb1b09bae12d94b195b0
Certificate serial: 019D37C09A82FB1C292EB31F41CC3D558E3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
Manifest number: 076F
Signing time: Sun 29 Mar 2026 04:01:02 +0000
Manifest this update: Sun 29 Mar 2026 04:01:02 +0000
Manifest next update: Mon 30 Mar 2026 04:01:02 +0000
Files and hashes: 1: pdjWyCsS6vRt3qgRpmz1-t9Lw4w.roa (hash: iNpMVvC5UiWrjFC/YV4kYZVM+3Z5N79XJuNaeg291pc=)
2: xZKgYJDwFpQNMesbCbrhLZSxlbA.crl (hash: v3Lt5LfNEQeA/p92Uop42M65G7S23SiVlD4K+2+k4bQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:9a:82:fb:1c:29:2e:b3:1f:41:cc:3d:55:8e:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c592a06090f016940d31eb1b09bae12d94b195b0
Validity
Not Before: Mar 29 04:01:02 2026 GMT
Not After : Mar 30 04:01:02 2026 GMT
Subject: CN=bfd0139c1643cf2c9742e9be90c567c046a01e32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:58:f5:7b:6f:65:1b:36:51:fe:4c:fd:5e:ea:
21:6b:34:17:e4:92:41:77:83:cd:ac:c1:94:ea:04:
88:ff:5c:79:42:14:44:eb:04:b0:7a:8a:d1:1e:b9:
21:b2:91:a0:6a:a1:0c:b3:8e:5a:07:c7:c3:f7:b4:
da:2d:d7:37:c1:a0:1c:88:4b:3c:04:83:24:5f:cf:
f8:0b:51:6d:c2:12:7a:e2:cb:98:37:69:e9:14:5d:
d1:f6:e9:aa:d1:1e:3a:4e:da:9d:3b:5c:b1:a4:83:
74:a8:e9:c8:48:5b:aa:5a:e4:65:e8:bd:52:da:ed:
47:d7:23:15:3a:96:06:87:50:91:6c:51:c8:26:c2:
58:0b:a9:0c:da:20:79:05:ee:83:86:74:e8:18:78:
0c:5f:7a:22:5f:7a:33:5d:9d:c8:38:38:76:cb:65:
a6:30:a9:60:fe:d9:43:7d:89:fc:10:23:16:76:de:
2f:f3:a6:73:3a:a0:96:d4:59:91:1b:cb:28:04:d4:
8c:1a:bc:7f:13:b0:69:67:f6:00:49:43:23:ee:0e:
f8:a7:3f:01:57:5d:df:32:89:35:c4:19:e7:0c:41:
a7:e9:f4:05:b4:19:5a:e6:39:6f:38:0b:b6:15:b0:
0a:b4:f2:48:12:97:a3:07:20:c6:1e:c8:3e:19:00:
9a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:D0:13:9C:16:43:CF:2C:97:42:E9:BE:90:C5:67:C0:46:A0:1E:32
X509v3 Authority Key Identifier:
keyid:C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:84:6c:bf:c6:8e:7f:79:d6:ef:8c:84:fa:58:8a:a6:ec:0d:
0f:19:67:6d:c5:3d:92:2e:4b:7e:ab:a1:69:f2:ab:d5:83:92:
b7:37:bb:58:43:f5:08:70:31:61:31:1b:2b:30:9e:7c:1d:fb:
94:79:8a:87:7f:0e:18:7f:15:0a:94:0a:8b:69:6e:93:5c:50:
ad:3a:ca:3c:09:65:65:44:ea:1b:39:fd:0c:fb:0f:ff:db:f5:
d8:a4:44:12:40:64:b6:61:db:dc:c6:7b:52:27:c5:37:cf:7f:
10:94:f3:8a:ba:57:cd:9c:ec:ae:a8:59:30:16:4a:6c:de:d7:
ab:5d:3d:0e:28:ab:73:74:21:0b:47:19:01:53:7f:f6:88:be:
e2:9d:96:aa:d1:3d:10:96:0a:ab:6d:37:e1:a7:0e:ba:37:14:
0b:87:0b:83:73:a4:8e:9b:92:da:1b:36:f4:de:09:49:05:9c:
49:74:e1:11:88:6b:bf:3e:9f:e9:b3:91:40:21:38:40:7c:df:
e6:38:d9:cf:25:8c:fd:d2:1c:aa:a4:eb:c5:b7:07:74:4b:08:
1f:33:6d:28:32:9b:1d:5f:b9:70:2d:7e:57:1b:af:76:ed:77:
3a:cc:b8:f6:34:9b:de:fc:e4:7f:ac:6b:e9:8e:d8:e7:9b:db:
e9:20:e0:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:37:52 2026 by rpki-client