Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft
File: XOackdRTOWv6Fm8FG_jwbAOghcs.mft (raw, json)
Hash identifier: YCEW27KY+KQ7GJlZCpZT1NdgcvcKXvYx4hqONSglk5s=
Subject key identifier: DA:ED:3E:AF:30:DF:98:C1:F7:0B:A5:71:32:A0:14:C7:83:46:9E:E2
Authority key identifier: 5C:E6:9C:91:D4:53:39:6B:FA:16:6F:05:1B:F8:F0:6C:03:A0:85:CB
Certificate issuer: /CN=5ce69c91d453396bfa166f051bf8f06c03a085cb
Certificate serial: 019CAB6B0BA26055E510CA58156F235C7275
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOackdRTOWv6Fm8FG_jwbAOghcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft
Manifest number: 0D52
Signing time: Sun 01 Mar 2026 22:00:45 +0000
Manifest this update: Sun 01 Mar 2026 22:00:45 +0000
Manifest next update: Mon 02 Mar 2026 22:00:45 +0000
Files and hashes: 1: XOackdRTOWv6Fm8FG_jwbAOghcs.crl (hash: YIBpD4EsQPawHYwvWXwfkmIWqZy4rmb52m2bp7g5bEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft
rsync://rpki.ripe.net/repository/DEFAULT/XOackdRTOWv6Fm8FG_jwbAOghcs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:0b:a2:60:55:e5:10:ca:58:15:6f:23:5c:72:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce69c91d453396bfa166f051bf8f06c03a085cb
Validity
Not Before: Mar 1 22:00:45 2026 GMT
Not After : Mar 2 22:00:45 2026 GMT
Subject: CN=daed3eaf30df98c1f70ba57132a014c783469ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6d:5e:3f:69:27:f6:83:e4:54:5f:95:04:e9:
8f:ea:4a:75:df:c8:48:f7:6b:41:90:0c:62:7a:48:
18:f1:1c:8a:20:56:a9:22:12:a0:bc:16:bd:81:9d:
eb:af:d3:f0:7a:42:45:fc:cf:ce:73:8c:17:7e:7e:
42:53:8c:b6:ac:d5:ad:10:82:3f:48:5b:56:61:b4:
99:3a:b8:4c:e7:a2:ea:bc:03:0f:39:32:80:ed:91:
c4:80:40:14:66:78:57:8a:bf:8d:ca:1b:f4:26:b8:
2b:9c:82:27:78:92:c2:80:f4:32:8e:dc:30:59:94:
e1:7d:fa:90:c6:91:59:04:f5:09:56:f3:f8:36:ed:
12:04:21:d6:8f:d2:37:41:c4:3f:f9:48:1a:3c:be:
f5:85:d3:7a:0c:7c:1c:d9:2a:76:8e:df:61:7f:81:
46:82:be:77:7c:f8:b6:f4:38:4a:69:0b:d1:05:76:
fe:bf:79:5d:82:93:f1:ee:58:e7:ca:d5:e6:ff:f0:
62:20:61:66:05:56:1a:3c:69:a4:e9:d9:70:18:43:
7f:80:63:53:e7:69:98:34:4a:06:6a:f6:06:fb:28:
22:d8:45:10:5b:4c:10:28:a2:48:85:7a:4e:ba:cc:
92:88:07:9a:31:b5:fa:dd:99:f2:01:9f:80:b1:b0:
79:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:ED:3E:AF:30:DF:98:C1:F7:0B:A5:71:32:A0:14:C7:83:46:9E:E2
X509v3 Authority Key Identifier:
keyid:5C:E6:9C:91:D4:53:39:6B:FA:16:6F:05:1B:F8:F0:6C:03:A0:85:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOackdRTOWv6Fm8FG_jwbAOghcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6e6dd8-1bca-4630-9574-a597ee637db4/1/XOackdRTOWv6Fm8FG_jwbAOghcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:8f:c9:13:45:21:d8:d6:c7:57:8a:b7:b4:32:54:c6:98:98:
13:c6:10:29:df:1f:ad:6f:ed:91:43:b7:c1:3e:93:ec:28:34:
7e:d5:8a:55:fa:d5:40:8c:b0:5a:03:57:68:a1:f3:55:36:48:
d3:14:f1:1d:19:f7:b4:7d:3b:64:7e:9e:4e:e6:5f:61:7f:20:
47:c1:71:10:ae:ad:ae:b0:5c:42:fd:04:b8:ca:4c:fb:33:c1:
9a:66:17:b2:e3:17:01:d0:25:d5:be:30:ac:00:f7:8a:6a:a8:
d1:f4:9b:02:11:12:46:52:df:68:55:b7:03:46:d8:ca:77:ac:
cd:ee:85:6d:94:41:41:2c:be:38:40:8c:77:50:06:af:11:57:
5f:db:fa:96:b8:4f:37:52:59:0a:dc:44:f3:2e:da:95:86:d5:
9f:5d:79:52:02:46:9e:11:39:91:2f:aa:8e:09:a5:e0:21:c1:
00:3a:3f:f4:cd:9f:9c:bc:52:aa:31:99:e3:ab:26:93:22:26:
cc:ac:30:81:c3:90:49:62:77:d4:d7:2e:64:4a:57:f9:1a:b4:
6d:93:5a:a6:11:f1:3f:d8:ae:b8:ec:b2:30:35:55:f8:11:d3:
cd:d9:41:da:43:df:60:74:7f:71:1b:f0:1e:84:c3:d4:73:0b:
d2:4f:08:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:16:32 2026 by rpki-client