Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
File: XzHZebcQ7eIGiCOIGqYRrROvVFk.mft (raw, json)
Hash identifier: vQoE5N/MwIqojdGG7kC+noGeAPQW7CKl7SwM5Pt2DsI=
Subject key identifier: 3F:F0:7D:7D:5D:B6:17:5C:4B:A9:2D:9F:F9:40:A7:D1:95:B9:19:0A
Authority key identifier: 5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
Certificate issuer: /CN=5f31d979b710ede2068823881aa611ad13af5459
Certificate serial: 019D37F764C513ED19B1A1C4C6E145C7FB15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
Manifest number: 0E44
Signing time: Sun 29 Mar 2026 05:00:53 +0000
Manifest this update: Sun 29 Mar 2026 05:00:53 +0000
Manifest next update: Mon 30 Mar 2026 05:00:53 +0000
Files and hashes: 1: XzHZebcQ7eIGiCOIGqYRrROvVFk.crl (hash: 1HgJL0FNp5R0KXIa0yoZFh0SIA4xw7JDBK2Q2lH27PA=)
2: sNtqJVBgNOZKvOOoSizpNY6uXfc.roa (hash: qlkBknwlplBkW99VaChbeT/pRtq/ip6OEf221SQRDX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:64:c5:13:ed:19:b1:a1:c4:c6:e1:45:c7:fb:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f31d979b710ede2068823881aa611ad13af5459
Validity
Not Before: Mar 29 05:00:53 2026 GMT
Not After : Mar 30 05:00:53 2026 GMT
Subject: CN=3ff07d7d5db6175c4ba92d9ff940a7d195b9190a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f9:8e:e4:6d:95:d3:34:cb:e6:d8:61:44:3b:
c4:7a:81:ed:9d:89:e0:b3:f9:48:64:70:aa:1d:fa:
90:be:2a:07:7f:04:4c:ca:d9:4e:23:f6:42:f5:0e:
db:ab:a6:ee:7a:da:f3:85:14:73:74:cf:57:15:4b:
ce:00:c6:fe:0a:48:ef:b1:1f:d6:35:ba:91:08:8b:
69:c2:bb:fd:3e:55:e9:a9:0f:82:79:0d:d8:be:fb:
02:64:dc:b1:9e:b7:c7:da:76:c7:f0:87:42:5e:5b:
b2:bb:2c:2b:8e:af:fd:9f:d0:ba:56:fd:61:74:e8:
bf:91:a0:cb:b1:ae:ce:e2:f3:34:b9:d9:42:c3:80:
9b:30:e3:c1:9e:3a:4d:02:b0:f0:e6:51:d0:63:d5:
85:47:41:62:34:a1:8a:7b:90:e7:85:25:96:dc:a1:
87:89:d4:43:b3:1d:66:c7:f5:30:dc:7c:55:88:15:
a0:a9:b5:34:9f:2a:84:b2:ad:09:fa:d4:b1:02:ce:
13:52:ae:89:19:7f:e3:2c:05:0c:f2:f7:82:0f:e9:
ff:8e:5f:45:2b:51:9e:3c:9a:85:0a:9f:e4:08:00:
f5:9e:82:ff:83:92:2e:06:ca:7e:c1:ba:76:a1:44:
e7:34:ad:66:94:61:79:11:6a:f0:54:89:e9:b3:f7:
b3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F0:7D:7D:5D:B6:17:5C:4B:A9:2D:9F:F9:40:A7:D1:95:B9:19:0A
X509v3 Authority Key Identifier:
keyid:5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:e0:a8:e1:c0:2b:c3:2b:c6:74:88:8d:3b:a9:72:2e:11:11:
79:0f:78:90:a3:89:60:3c:25:cf:e3:0d:38:6a:e7:23:6f:92:
5b:59:5c:b8:3f:8c:eb:b6:fc:c0:14:46:1b:3d:f1:27:aa:86:
83:cf:25:70:8f:fe:02:3f:35:16:45:1e:37:69:0d:5e:bb:4a:
e0:bb:49:0d:f6:56:ef:22:3e:ae:7f:b3:56:43:c8:c1:5e:51:
bd:3e:b3:36:4f:90:3d:f5:2f:36:f1:39:2e:ec:06:7c:fe:06:
c1:01:c5:93:01:59:92:80:1f:72:b9:bb:8f:52:24:ab:d0:12:
b5:5c:ef:d6:b6:d5:d0:66:54:b7:6f:3b:f5:8e:02:5f:9d:0c:
44:2d:57:b3:51:09:79:b1:2e:be:52:66:36:10:05:65:38:14:
0b:89:b0:b6:ee:65:c2:af:4a:68:10:8b:de:b6:03:49:81:50:
8f:1f:41:25:ed:c6:3d:45:00:83:71:7e:17:30:da:e7:28:59:
dd:db:7e:57:65:7a:05:74:75:67:6a:62:b7:cc:3c:ea:c2:b8:
7b:00:73:2d:0f:b5:b8:9e:3a:94:4f:a1:b3:94:8d:98:e2:92:
1f:70:74:db:34:ff:8e:2e:70:ce:89:5c:5b:5e:16:aa:4f:8a:
85:bb:ec:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:24:49 2026 by rpki-client