Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
File: _XjxP_qS8HTr5VfSotKa0Noz5dg.mft (raw, json)
Hash identifier: a4HiknPE9co7SAKQX6n1r3RwSy7G2w8nIdyXK/Ev7eM=
Subject key identifier: 56:51:08:27:8B:55:5A:E0:2B:8D:81:FA:96:56:E6:05:5D:A4:E1:14
Authority key identifier: FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
Certificate issuer: /CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Certificate serial: 019D38660976AC21BC9371DBC442480B4BF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
Manifest number: 0DE8
Signing time: Sun 29 Mar 2026 07:01:44 +0000
Manifest this update: Sun 29 Mar 2026 07:01:44 +0000
Manifest next update: Mon 30 Mar 2026 07:01:44 +0000
Files and hashes: 1: H7yvjO1PteMvFud2cVf980xvhOM.roa (hash: RhQsj0SDsU/JKqzjG9Bf/mkgnMQmL8vD/s9sreGOu30=)
2: _XjxP_qS8HTr5VfSotKa0Noz5dg.crl (hash: Z6EcBK903EFSx3ls/6aUTUBtI22IycZ8o02HSHio0fA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:09:76:ac:21:bc:93:71:db:c4:42:48:0b:4b:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Validity
Not Before: Mar 29 07:01:44 2026 GMT
Not After : Mar 30 07:01:44 2026 GMT
Subject: CN=565108278b555ae02b8d81fa9656e6055da4e114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:35:ec:07:f4:c1:7e:bb:29:b5:af:c2:fa:0f:
5e:7d:4c:e6:c9:c6:4e:bf:5f:1f:9a:de:e2:05:e8:
52:10:a8:7f:21:53:cb:ec:9a:04:8d:19:54:9d:9c:
a8:62:88:a7:75:5a:19:e0:e4:25:b9:5e:6f:5c:cf:
ad:5f:ab:6e:fa:5a:09:78:6e:83:51:e2:ed:a4:a6:
82:b8:87:30:c8:11:3e:35:ae:44:07:28:9c:aa:f4:
09:af:5f:23:d3:74:75:1e:b1:97:bc:de:f6:0c:01:
6e:4c:b7:f7:79:8a:b9:b0:ef:b5:04:d7:77:00:6a:
f1:be:b6:63:dc:4a:95:ec:90:a9:81:3f:73:0b:0f:
1a:6c:32:4b:15:2a:77:44:1d:40:ab:06:a2:4f:e4:
1b:e8:16:1c:ea:80:93:cd:44:12:45:29:12:e0:ad:
76:11:c7:3c:78:6b:08:d0:b9:b3:32:3b:40:cc:db:
d0:94:e8:ce:d7:3d:21:ee:79:0f:f1:38:ce:49:61:
2d:96:e2:be:29:62:98:48:99:c1:3d:0c:66:dc:84:
d4:af:ba:d3:0a:2d:6e:21:9f:af:e0:21:dd:4c:10:
16:96:9d:ce:5d:6b:b6:6e:33:6d:b6:f7:25:27:6b:
29:b7:4f:ef:8c:4d:f2:13:c6:05:63:fb:8e:a0:b0:
5c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:51:08:27:8B:55:5A:E0:2B:8D:81:FA:96:56:E6:05:5D:A4:E1:14
X509v3 Authority Key Identifier:
keyid:FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:23:2b:b1:7e:aa:52:90:4a:b9:e8:31:0b:49:63:25:b6:1d:
43:1f:1f:64:0e:f6:31:a4:46:0c:fd:c6:0f:a4:ce:3e:b6:9a:
90:d5:18:78:be:7b:1b:0c:ca:43:c5:c6:01:b2:f8:0a:8f:7c:
e6:12:6b:5f:cd:f8:bf:1c:ec:48:40:26:cf:f8:6a:d5:4c:6d:
d8:36:5e:35:9b:e3:90:f0:14:f5:cd:8b:f3:dc:cb:88:65:cd:
31:62:ef:40:e1:68:69:61:58:20:6a:dd:2c:71:2d:66:db:d5:
ef:55:8f:b2:98:1c:19:c9:23:72:fa:61:30:bb:33:36:ac:c7:
91:ba:93:23:51:33:1f:79:f9:be:07:91:3e:5d:e5:fd:3c:b1:
82:19:8f:85:7f:fb:1f:bb:a4:eb:b7:e9:5e:0b:f3:2b:c8:05:
02:78:41:e3:b4:34:79:9c:b8:d7:2f:ed:74:1b:ac:36:40:b2:
78:8e:92:4f:d1:c7:26:fc:b0:4d:17:db:a8:de:32:73:ad:f7:
9a:d4:cc:88:4e:f2:c4:7b:d9:17:f4:08:eb:de:a2:73:51:6c:
89:97:fe:09:92:31:b2:5a:98:f2:03:21:9c:7c:16:b1:82:63:
e1:10:d3:fb:64:01:fd:88:2e:44:7f:78:98:9c:5c:5c:d5:85:
b1:c7:6b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:28:18 2026 by rpki-client