Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
File: XwImpwTPYg6yAA8n56kZznMJkb4.mft (raw, json)
Hash identifier: y2tSSMJMAjEyc554Px5tHkJJwmAUrT1E6zTT5Ads3ko=
Subject key identifier: D2:15:42:3E:C3:52:42:CC:E7:ED:20:F2:E0:4A:AC:AD:9A:CE:5B:A5
Authority key identifier: 5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
Certificate issuer: /CN=5f0226a704cf620eb2000f27e7a919ce730991be
Certificate serial: 019D375294582F980BAF2C8275F0E0E16F75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
Manifest number: 10ED
Signing time: Sun 29 Mar 2026 02:00:51 +0000
Manifest this update: Sun 29 Mar 2026 02:00:51 +0000
Manifest next update: Mon 30 Mar 2026 02:00:51 +0000
Files and hashes: 1: Huv8_F7CU0_Jslnzwh9x9lhwpc0.roa (hash: que/wANCXPBVboi+Ao6/Mhrzm4uO58lF/bE0KnuyKBc=)
2: TyZ-EN3ZikEP3O1aIGeCGjgK3LI.roa (hash: rGtYPfugPBoAr+vznSLu3abrcQ5ZUu7nfMCulcJMbYg=)
3: XwImpwTPYg6yAA8n56kZznMJkb4.crl (hash: SDFyiegi6svOa8TO0+HZgdcoaeVHH0Y26vHvh82pBlU=)
4: YcTggkw1dIIwon9zpxmI36qcgzY.roa (hash: hJIPq4cJhvmtr5AA2Y+pzfZ+vAbq2fL2IZZMCvtTNqY=)
5: qGL8RTzpNc9QMzJ4mB1cjE85xJ4.roa (hash: ABpLHA3uxkTxF69tefDioKBR4SIb/ghL74K+XaKX/Ag=)
6: wDhMGJ9NzXfEad9sT6Le_xs3iaE.roa (hash: zPKoEOiN3uariB64Rf296KkD/lWfDnDeFg2GGweepII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:94:58:2f:98:0b:af:2c:82:75:f0:e0:e1:6f:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0226a704cf620eb2000f27e7a919ce730991be
Validity
Not Before: Mar 29 02:00:51 2026 GMT
Not After : Mar 30 02:00:51 2026 GMT
Subject: CN=d215423ec35242cce7ed20f2e04aacad9ace5ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1a:fd:68:18:93:c4:3e:6f:c2:52:2e:0e:b0:
48:9b:4b:af:77:d2:be:3f:6f:d2:b7:d6:bb:62:b1:
84:5e:15:5d:6d:09:e6:6c:28:33:52:be:f5:22:1e:
d3:21:38:18:2d:89:8c:7b:1e:e8:de:36:77:51:ca:
ac:3f:e3:57:3d:b6:5b:4f:85:89:2c:eb:69:6a:ba:
07:da:d9:c7:77:a6:f0:c7:77:4d:10:b1:12:15:82:
ca:4a:b1:99:a7:73:12:c6:bf:48:e5:c8:b3:d8:c8:
3c:db:f2:a7:3d:73:cc:67:90:34:1b:23:6e:68:9f:
62:d7:a6:03:5e:c9:90:73:d5:ba:99:6c:88:8e:b4:
da:f0:e4:39:2b:82:05:60:99:2b:7a:a9:ea:ae:f0:
08:ab:ef:e9:1f:59:f1:0d:17:61:d0:4a:1a:b9:99:
82:aa:2f:93:9a:68:22:f7:30:74:1f:31:e8:14:ae:
9a:7a:4c:e5:2e:d3:60:5b:ef:6e:a8:3f:d6:ef:37:
bf:6a:20:99:fc:b9:46:cc:9d:70:a8:23:90:4c:77:
3b:39:48:b4:3f:82:1f:48:a2:fd:96:66:41:2e:50:
ad:0c:63:77:92:3a:c0:d7:18:e9:d8:be:f6:39:f7:
0b:d2:bd:2b:3c:37:b7:10:34:ed:2b:ca:36:f7:e9:
14:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:15:42:3E:C3:52:42:CC:E7:ED:20:F2:E0:4A:AC:AD:9A:CE:5B:A5
X509v3 Authority Key Identifier:
keyid:5F:02:26:A7:04:CF:62:0E:B2:00:0F:27:E7:A9:19:CE:73:09:91:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwImpwTPYg6yAA8n56kZznMJkb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/63efb8-bf24-48c2-8c50-75d9ce5b8d9c/1/XwImpwTPYg6yAA8n56kZznMJkb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:50:8d:4d:bb:1e:28:9f:6b:46:5f:a6:b4:3a:b5:2f:d8:e8:
64:18:fe:c7:d0:7f:03:44:25:cf:02:c3:ed:d8:df:9b:3b:ea:
59:3b:de:97:f6:bf:9d:bc:14:fe:59:58:f7:cd:c3:33:b0:6d:
4f:78:ac:7e:ae:72:35:4f:61:2d:48:4d:34:6b:e2:95:9a:a0:
9e:2a:7f:90:17:06:50:96:2d:14:dc:f0:ef:97:6d:75:f8:90:
31:2a:5b:20:fa:be:a4:6d:34:cc:97:b0:8a:66:85:e1:92:0e:
b2:fb:47:77:fa:9a:6c:6e:eb:83:aa:50:1a:14:ed:cd:2a:25:
e3:be:e8:6e:0b:a4:9f:6d:d6:9d:3b:ca:e8:67:c0:57:98:07:
10:3a:64:e6:02:49:9b:a2:bd:08:8a:75:01:61:18:6e:38:05:
87:78:dd:1e:3e:75:79:8c:df:6d:07:fa:19:fc:e9:ea:34:ba:
9d:28:cd:bd:aa:7d:a7:4f:a6:32:7e:07:46:c4:fd:62:05:32:
cc:e6:f5:34:83:3a:7f:21:b7:c4:98:8b:8d:5b:6d:a8:20:17:
82:f9:92:6a:99:fe:76:58:fb:65:3c:b8:35:26:22:db:e0:cc:
42:4d:d1:91:93:96:71:ce:1f:b8:2b:19:69:c0:81:c2:83:4a:
77:6f:97:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:48 2026 by rpki-client