Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
File: XlgQVXywZwvJwJM-An6b2CqxVt8.mft (raw, json)
Hash identifier: KgFPYpahg2MUg783HIgZ+fbo5YhrXpWaSoDc6HsP+bw=
Subject key identifier: 4D:B6:C1:A5:54:55:CA:B2:6B:8B:60:64:7C:97:89:65:C8:34:B5:F8
Authority key identifier: 5E:58:10:55:7C:B0:67:0B:C9:C0:93:3E:02:7E:9B:D8:2A:B1:56:DF
Certificate issuer: /CN=5e5810557cb0670bc9c0933e027e9bd82ab156df
Certificate serial: 019D39098A3A142A3A1EEC790A94B687BA74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
Manifest number: 1821
Signing time: Sun 29 Mar 2026 10:00:19 +0000
Manifest this update: Sun 29 Mar 2026 10:00:19 +0000
Manifest next update: Mon 30 Mar 2026 10:00:19 +0000
Files and hashes: 1: XlgQVXywZwvJwJM-An6b2CqxVt8.crl (hash: mYMiB2e3P9plPPzKmEgat9+ykZTf/PQV+PlL8hcv4ko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:8a:3a:14:2a:3a:1e:ec:79:0a:94:b6:87:ba:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e5810557cb0670bc9c0933e027e9bd82ab156df
Validity
Not Before: Mar 29 10:00:19 2026 GMT
Not After : Mar 30 10:00:19 2026 GMT
Subject: CN=4db6c1a55455cab26b8b60647c978965c834b5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1a:d3:ac:52:4f:4e:81:48:ca:0f:9d:06:0e:
ed:14:b9:72:67:b9:fc:c5:63:76:24:45:7d:89:95:
b6:70:99:bf:65:0b:e3:4b:4d:36:82:17:8a:0a:41:
a4:3b:73:e7:d1:6e:db:f9:4c:38:99:34:77:12:81:
45:0e:f4:8c:ae:bf:aa:59:06:7b:d6:8e:19:d5:bd:
15:11:59:ce:25:83:eb:8a:3c:a3:7a:4d:a6:8b:e7:
95:6b:54:b3:d8:45:ab:57:de:5d:39:63:8f:2f:13:
3b:7b:59:a0:ae:f5:ca:f9:f6:6b:86:15:5a:f6:c2:
52:88:36:d1:75:a3:36:1e:a3:d9:b1:89:4f:67:63:
36:6f:ac:ae:cb:55:57:80:d6:81:a8:d2:04:40:d3:
d7:92:90:32:76:c5:27:d2:48:b4:2b:4b:fc:8e:6f:
4f:a5:74:e1:f3:46:14:bd:21:45:9f:bb:5d:7e:cc:
a4:e7:b8:bb:5c:8b:c9:f5:04:32:2d:9e:c9:ea:84:
2f:cc:ad:aa:5f:51:0f:9d:65:60:ef:16:0c:79:d4:
cc:55:10:2a:93:a1:e7:15:43:01:54:04:34:bf:84:
6d:97:e1:0a:73:cb:bb:a9:b6:bc:8d:0f:63:5f:2e:
60:82:fd:c2:d2:9c:e1:e1:c2:14:93:b2:54:07:64:
69:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B6:C1:A5:54:55:CA:B2:6B:8B:60:64:7C:97:89:65:C8:34:B5:F8
X509v3 Authority Key Identifier:
keyid:5E:58:10:55:7C:B0:67:0B:C9:C0:93:3E:02:7E:9B:D8:2A:B1:56:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlgQVXywZwvJwJM-An6b2CqxVt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/97c414-3afa-49ee-ab70-a4407a5d321a/1/XlgQVXywZwvJwJM-An6b2CqxVt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:0d:ed:d9:a8:27:82:df:32:06:7c:2c:ec:6c:1e:1d:dd:b5:
05:a9:65:c2:93:eb:54:9a:b0:3f:d6:b9:9c:2f:14:9c:2a:96:
42:7a:35:e4:76:b8:92:6f:a3:a6:ba:9c:c4:3f:ce:c4:a0:54:
6b:e2:ef:b7:46:76:06:51:da:9b:68:59:95:0c:3b:3c:e6:0d:
82:91:af:a5:22:c3:8e:1c:cf:0a:87:b5:7f:3a:b9:aa:6f:0f:
1a:b6:36:94:6d:a6:b3:c3:cf:92:70:12:9f:0c:65:0a:51:d7:
b2:90:d4:c3:68:f2:e3:6a:a8:5c:b8:66:3d:8d:d8:d2:12:c4:
9a:14:1d:09:46:39:63:4a:c2:71:96:fa:05:a5:16:29:5e:1f:
c9:87:6a:7e:47:f1:5e:cd:1f:37:d0:33:ee:f0:76:9f:dd:36:
6f:05:f6:ab:fb:07:f6:89:79:f1:19:ce:d5:83:29:62:77:51:
c1:fd:76:ad:1d:08:fb:f1:c2:b8:20:ad:2a:42:84:80:6e:8f:
1d:d2:b1:b5:65:81:f7:fe:00:db:6b:9d:08:b0:2d:ca:3a:c5:
5a:8c:0d:20:e4:70:82:8a:81:60:33:ba:27:35:ca:91:9e:f9:
c3:5a:76:d1:45:26:de:58:59:59:c8:5d:40:9f:5a:fa:bf:c2:
42:b4:ec:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:12:36 2026 by rpki-client