Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
File: Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft (raw, json)
Hash identifier: uLbR614830erIu8PVvwskEnysFMZsrEs8bW6ms3fLnI=
Subject key identifier: 71:8C:AB:CB:F2:EC:79:6A:80:78:7E:ED:9C:CA:92:B9:14:5D:6C:3E
Authority key identifier: 5E:3E:4F:A8:C9:97:1A:EF:12:34:5F:C0:E3:7D:16:B3:45:9B:78:3B
Certificate issuer: /CN=5e3e4fa8c9971aef12345fc0e37d16b3459b783b
Certificate serial: 019D38D356EB3A285E287003BD66E46FC46F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
Manifest number: 0EE5
Signing time: Sun 29 Mar 2026 09:01:07 +0000
Manifest this update: Sun 29 Mar 2026 09:01:07 +0000
Manifest next update: Mon 30 Mar 2026 09:01:07 +0000
Files and hashes: 1: Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl (hash: FNH6nzmBaLm9g0XDKme+ajCv5r7s5K+NmaHrx/0gYiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:56:eb:3a:28:5e:28:70:03:bd:66:e4:6f:c4:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e3e4fa8c9971aef12345fc0e37d16b3459b783b
Validity
Not Before: Mar 29 09:01:07 2026 GMT
Not After : Mar 30 09:01:07 2026 GMT
Subject: CN=718cabcbf2ec796a80787eed9cca92b9145d6c3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b5:fc:89:24:a6:4f:43:a4:ad:32:43:c1:3e:
2a:68:5c:81:04:19:02:6b:da:56:01:2b:2e:ac:8a:
91:81:5d:2a:d1:bb:9f:81:70:00:22:ec:f7:69:0d:
55:75:35:10:6d:93:02:1a:91:43:ca:02:f1:81:38:
ee:58:be:10:d2:9e:38:cc:f8:34:30:ec:a4:91:f8:
3b:9e:7c:37:84:e8:b4:30:e5:dd:a4:36:a4:8a:58:
ff:16:5d:06:35:de:90:ee:b4:56:fc:53:a9:81:2f:
7c:f4:4d:8b:54:27:86:13:ee:16:c3:6e:90:44:1e:
c2:6c:ba:f0:03:57:5d:27:66:9b:74:0e:5d:e4:6e:
b4:e9:b6:bd:a3:e6:f3:79:06:ac:cb:11:9c:cc:66:
27:98:c7:4c:0e:b0:bc:2d:d9:c5:ff:e1:6a:76:9b:
2a:88:55:bf:87:33:23:5c:eb:a2:a4:72:f6:09:a4:
89:a7:32:8d:2d:3d:b8:69:05:7d:fb:8d:9e:e1:db:
11:f4:4a:13:b0:0f:b0:31:be:fb:cb:aa:2e:d2:b7:
f2:e8:b8:43:10:4d:dc:2d:31:3c:12:59:8f:e7:ff:
79:96:da:1e:cd:b6:36:1d:09:ce:6e:d5:a8:bf:06:
44:d1:62:ae:15:bc:fe:2d:62:34:76:6d:f5:10:bf:
25:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8C:AB:CB:F2:EC:79:6A:80:78:7E:ED:9C:CA:92:B9:14:5D:6C:3E
X509v3 Authority Key Identifier:
keyid:5E:3E:4F:A8:C9:97:1A:EF:12:34:5F:C0:E3:7D:16:B3:45:9B:78:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xj5PqMmXGu8SNF_A430Ws0WbeDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/eb5454-7293-437f-ac0b-3a3b0296bb82/1/Xj5PqMmXGu8SNF_A430Ws0WbeDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:43:c6:97:b5:6e:4e:95:22:ca:df:c8:2c:b2:51:34:d8:0a:
b2:7f:9f:c1:ff:34:ad:26:98:56:fe:88:82:dd:ff:7d:a3:ed:
5f:ed:31:52:72:d1:24:c9:e2:79:b9:aa:54:de:b3:ac:4b:c2:
7c:34:34:3e:05:e4:59:77:94:a6:41:e6:8a:0e:42:5a:55:b7:
34:9f:7d:80:6b:36:e5:3c:a9:8c:ba:ee:64:98:19:3f:36:01:
b6:62:75:25:00:f9:d7:01:9e:56:35:0a:a3:94:02:8e:8f:a2:
92:33:59:2c:9b:95:ed:55:72:ea:f1:4f:93:5e:88:21:74:d0:
05:f3:d6:22:ca:b3:3b:98:1b:7c:aa:2f:2e:a5:27:04:6d:09:
82:9b:d0:28:1a:b5:ac:0e:69:a9:4d:6c:f7:9c:3f:8d:c9:a5:
dc:d7:98:23:d1:fd:c8:a6:5d:12:44:f3:90:76:ec:f3:4e:63:
cb:e2:ec:0d:84:15:4e:a0:51:f6:c4:cc:0f:48:f5:56:d4:6c:
00:6a:fc:2a:41:c5:38:48:1e:90:b0:27:4d:93:05:1d:60:22:
2c:d5:ec:bf:d4:0a:6f:a9:01:c5:37:00:2e:0e:95:84:1d:d6:
49:ae:f5:c2:11:a6:bb:c0:c3:b9:9f:e3:9d:96:00:d8:21:e0:
23:13:d7:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:33 2026 by rpki-client