Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft
File: xbqElpIUKuxW19DdyN1N20HPg8E.mft (raw, json)
Hash identifier: tBy2ubwqtxaOOQHcWlKqZRz89V/LGjEgWJex7i5aAhk=
Subject key identifier: CD:EC:BB:FE:33:FA:BD:6B:05:CB:70:08:C5:07:FC:87:1A:9D:D3:B4
Authority key identifier: C5:BA:84:96:92:14:2A:EC:56:D7:D0:DD:C8:DD:4D:DB:41:CF:83:C1
Certificate issuer: /CN=c5ba849692142aec56d7d0ddc8dd4ddb41cf83c1
Certificate serial: 019D38D35225B7B0AB6F35CA9D4252581B3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xbqElpIUKuxW19DdyN1N20HPg8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft
Manifest number: 118F
Signing time: Sun 29 Mar 2026 09:01:06 +0000
Manifest this update: Sun 29 Mar 2026 09:01:06 +0000
Manifest next update: Mon 30 Mar 2026 09:01:06 +0000
Files and hashes: 1: xbqElpIUKuxW19DdyN1N20HPg8E.crl (hash: Uhbd3TzrgxnQzKlXAPCWEJCbEuHej0D9BoJ6i1753J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft
rsync://rpki.ripe.net/repository/DEFAULT/xbqElpIUKuxW19DdyN1N20HPg8E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:52:25:b7:b0:ab:6f:35:ca:9d:42:52:58:1b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5ba849692142aec56d7d0ddc8dd4ddb41cf83c1
Validity
Not Before: Mar 29 09:01:06 2026 GMT
Not After : Mar 30 09:01:06 2026 GMT
Subject: CN=cdecbbfe33fabd6b05cb7008c507fc871a9dd3b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ff:4d:b1:23:f9:85:d8:3d:d2:2f:9e:4a:82:
3b:af:e4:27:06:8b:0b:85:0d:da:f5:36:08:17:45:
a4:94:ef:00:ff:bb:f5:44:fc:2c:a8:51:26:0d:ce:
ea:66:69:0e:1a:6d:2c:18:c3:45:6e:31:2d:2a:5b:
19:4f:ef:68:5d:4f:48:77:d0:c7:5d:54:3a:07:86:
af:80:51:d4:f9:45:7b:c2:d0:c3:64:7a:dc:5a:d1:
6c:42:8c:93:85:24:a3:61:81:63:e2:a5:6d:23:bf:
74:ae:90:93:cc:bb:7f:81:6a:84:d0:5c:73:67:da:
a9:4f:90:b7:36:cd:39:d1:22:5c:27:3e:f5:4b:13:
67:dc:a9:2b:de:df:31:75:8d:8d:4c:72:40:0b:b7:
7a:1c:f8:63:25:e7:93:c8:56:b5:1c:c7:9d:1f:01:
e0:fd:73:41:7e:f2:22:db:fc:5f:bd:aa:9a:50:d9:
ad:e7:eb:c2:2f:6a:7f:23:24:14:9c:5c:cf:3a:fd:
fd:54:27:d1:35:ae:f7:f8:d8:02:05:ec:8f:00:c4:
53:88:91:4a:97:0e:9c:8d:d9:7c:16:85:c1:b5:b0:
27:1b:83:06:ef:ac:fc:b8:42:ef:72:6c:1c:8d:27:
76:77:9a:be:da:68:ec:4f:15:ab:08:1f:00:18:ab:
48:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:EC:BB:FE:33:FA:BD:6B:05:CB:70:08:C5:07:FC:87:1A:9D:D3:B4
X509v3 Authority Key Identifier:
keyid:C5:BA:84:96:92:14:2A:EC:56:D7:D0:DD:C8:DD:4D:DB:41:CF:83:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xbqElpIUKuxW19DdyN1N20HPg8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/06684c-9955-424b-ace8-23797aeabb0f/1/xbqElpIUKuxW19DdyN1N20HPg8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:75:a4:88:22:19:b1:41:f1:36:6f:aa:e8:b2:e3:22:bd:89:
8b:7c:1d:4e:e1:be:50:1b:f0:d3:23:06:7b:65:6b:f0:9c:79:
73:27:51:7c:80:1a:c7:03:cb:c4:08:96:70:f3:96:6f:c7:a5:
1d:13:dc:15:1a:ad:2d:e7:6c:5b:1d:0a:5c:5d:4b:4a:31:c0:
30:62:e8:4c:87:21:d9:c9:28:2e:4f:4a:39:3f:a9:59:78:45:
d4:63:d5:55:5b:60:e7:60:65:67:4f:c3:34:0f:c0:49:12:b5:
33:d6:0d:ec:9b:d8:15:5e:af:8c:24:8c:95:d4:6a:47:84:06:
ea:fa:a2:ba:a3:42:15:f4:6d:90:4d:06:41:be:8c:05:33:c3:
5e:78:4f:a3:da:4a:ef:80:85:0d:90:0c:0c:c1:16:9a:55:3b:
76:73:9b:b4:37:9c:69:6d:61:a5:ad:38:49:2d:91:5f:2d:3b:
80:2f:c2:18:a4:76:bf:97:f2:a5:ef:70:17:b6:6f:e4:1c:d1:
90:c3:07:af:fd:75:ac:9b:07:03:48:07:a1:15:5f:fd:99:fe:
e1:43:ef:64:14:5d:dd:cf:0f:65:3e:5e:f4:30:ac:01:25:fe:
f7:d6:c2:34:cc:27:c8:26:4a:e9:9c:c5:b2:0e:3d:f8:9d:d9:
e5:4f:ea:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:56 2026 by rpki-client