Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.mft
File: XVTR8F5RVk-oGdtyu47dOYeza74.mft (raw, json)
Hash identifier: AvcQ2yvCaOnJKvdhb2XpXmbl3oWjJxaNGnvL2AB6ji0=
Subject key identifier: 7A:53:BD:70:98:27:83:F0:26:ED:31:35:91:6E:E5:83:63:2A:8D:87
Authority key identifier: 5D:54:D1:F0:5E:51:56:4F:A8:19:DB:72:BB:8E:DD:39:87:B3:6B:BE
Certificate issuer: /CN=5d54d1f05e51564fa819db72bb8edd3987b36bbe
Certificate serial: 019D375304CEC7D7A064F1522FB40992A308
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVTR8F5RVk-oGdtyu47dOYeza74.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.mft
Manifest number: 180E
Signing time: Sun 29 Mar 2026 02:01:20 +0000
Manifest this update: Sun 29 Mar 2026 02:01:20 +0000
Manifest next update: Mon 30 Mar 2026 02:01:20 +0000
Files and hashes: 1: XVTR8F5RVk-oGdtyu47dOYeza74.crl (hash: dUaxaMbT1U6Fl7CQPqyK4sBGk7X9Yx4uIMnPeKYszBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVTR8F5RVk-oGdtyu47dOYeza74.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:04:ce:c7:d7:a0:64:f1:52:2f:b4:09:92:a3:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d54d1f05e51564fa819db72bb8edd3987b36bbe
Validity
Not Before: Mar 29 02:01:20 2026 GMT
Not After : Mar 30 02:01:20 2026 GMT
Subject: CN=7a53bd70982783f026ed3135916ee583632a8d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:12:76:95:e2:f0:01:cf:06:fc:ab:ab:29:da:
44:21:27:80:c0:46:37:6c:a0:a1:3d:3d:24:8b:e8:
ff:35:52:cb:89:e7:d6:c7:02:4e:33:37:6c:10:7d:
77:99:3a:25:38:b4:c9:7d:48:14:37:88:0e:c6:07:
5f:42:e3:b3:c2:2d:4d:d2:54:55:b3:0a:14:1b:7a:
9e:9f:56:47:b4:a6:e2:cf:49:8e:9f:1f:42:4b:bc:
8a:cf:6f:97:d4:69:ef:8f:ac:6c:0e:d5:e6:a5:29:
49:17:db:3d:85:0a:c8:39:69:11:ab:00:4e:8f:98:
da:17:6b:f1:de:27:ec:b3:cf:2a:6c:ee:ae:92:87:
8b:2c:18:9d:58:88:81:76:d3:00:bb:90:6d:76:54:
57:f5:5d:4a:60:71:1f:47:76:1f:77:f9:66:11:c8:
33:b9:f5:8a:35:54:fd:15:44:55:74:f6:14:a1:ef:
1d:bc:9e:8e:f8:91:27:3a:8e:32:b2:b6:a0:1a:78:
02:1c:71:77:07:56:b8:35:7a:f0:54:4e:e7:2f:42:
b8:ab:8e:3b:1f:83:87:59:c1:90:34:5d:e9:cb:71:
55:ca:40:d8:0a:96:74:a4:19:ed:f5:2a:79:dd:ea:
45:fd:f0:b0:1b:5b:e7:05:42:fd:1a:59:a9:bc:f9:
c1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:53:BD:70:98:27:83:F0:26:ED:31:35:91:6E:E5:83:63:2A:8D:87
X509v3 Authority Key Identifier:
keyid:5D:54:D1:F0:5E:51:56:4F:A8:19:DB:72:BB:8E:DD:39:87:B3:6B:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVTR8F5RVk-oGdtyu47dOYeza74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/b2545a-6ae9-427f-83ae-ce3f8515a69b/1/XVTR8F5RVk-oGdtyu47dOYeza74.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:e5:fc:1b:67:a8:51:a8:9a:18:ca:8a:ae:6e:d8:d8:01:29:
e4:37:2c:f9:cf:29:b2:26:44:95:1d:f1:0b:19:2f:0f:eb:81:
26:1b:31:dc:32:40:3a:4b:a8:5a:00:f2:af:d3:d2:e6:84:3b:
a8:c6:4d:c3:c1:43:9d:ce:56:16:1c:d8:45:dd:36:32:d5:0a:
c5:52:01:df:72:40:da:b4:28:98:78:77:b4:c9:f0:3d:79:28:
14:dd:72:99:5a:f6:91:45:26:82:f1:f3:f3:64:2f:0d:32:13:
4e:7f:92:6c:e4:c8:19:14:f9:00:9b:6a:76:d8:5d:21:36:3c:
a0:aa:03:e0:dc:ac:ed:f4:3b:08:d3:58:e9:35:4b:64:74:f3:
fe:15:22:76:c7:68:5c:15:ff:a2:bc:21:a5:e4:95:29:02:d1:
e4:7f:06:46:bd:5a:b9:bb:1f:85:1d:d1:cf:73:c1:5f:fa:67:
92:84:5c:c6:ee:b2:5c:56:0b:35:fe:9c:23:f5:72:d3:ae:d3:
55:57:bf:b9:30:1f:ae:5f:51:9d:d5:58:4f:45:ff:f1:15:9c:
cb:2e:ca:b1:80:66:04:ab:32:20:8e:46:69:c3:bb:a1:d6:20:
e5:15:75:65:b3:77:b8:80:98:30:9b:b8:16:72:5c:43:f7:a7:
1a:11:04:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:55 2026 by rpki-client