Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
File: XfEaGA3xeZTkitMxhyz9AK2augQ.mft (raw, json)
Hash identifier: GAXAhW9bb3DWgHei26RPoWZZTYlBtDSYR0dYGHGb5ko=
Subject key identifier: 62:29:BF:6F:12:C2:E3:DC:3A:7D:64:8C:85:EC:15:32:BC:C9:AF:A9
Authority key identifier: 5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
Certificate issuer: /CN=5df11a180df17994e48ad331872cfd00ad9aba04
Certificate serial: 019D9A3E06CDFF43A9ACADC81526157A0C5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 07:00:49 +0000
Manifest this update: Fri 17 Apr 2026 07:00:49 +0000
Manifest next update: Sat 18 Apr 2026 07:00:49 +0000
Files and hashes: 1: XfEaGA3xeZTkitMxhyz9AK2augQ.crl (hash: 5G2Bwc/7OMzJXQK2IxNhnX/+Tp5THGUHgib3bk+VRB4=)
2: vOvUH4QL3euA8n5Zs-p3s8pu5OU.roa (hash: qqJCGshMa7lPJa7oCp0UWM6NmrUrD8W4y4uDd4fxLLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:06:cd:ff:43:a9:ac:ad:c8:15:26:15:7a:0c:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df11a180df17994e48ad331872cfd00ad9aba04
Validity
Not Before: Apr 17 07:00:49 2026 GMT
Not After : Apr 18 07:00:49 2026 GMT
Subject: CN=6229bf6f12c2e3dc3a7d648c85ec1532bcc9afa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:50:79:5b:e7:a7:85:27:38:e5:e3:f5:24:f6:
c7:af:15:ad:74:10:5b:60:19:64:9d:2b:f6:db:dd:
b4:13:03:c9:a0:f7:fa:34:2e:50:ba:71:f4:32:28:
df:39:f4:46:cc:32:ff:48:ba:98:ad:cd:3a:bb:3f:
13:fb:9c:48:91:b1:9a:cb:ee:46:ee:51:66:ca:e9:
26:82:ef:0b:97:10:0d:3e:9f:70:47:5a:65:e2:90:
e6:9b:ab:c3:69:58:86:2f:85:db:74:16:4d:8d:1e:
bf:cb:71:3b:46:51:db:17:68:8b:c1:ac:56:36:66:
a4:ca:94:8e:74:d8:83:f3:1f:9c:a7:3e:bb:22:4d:
0e:c4:21:80:48:57:db:2b:2f:4c:08:cb:ba:a7:b1:
e2:19:bd:8c:07:4c:d5:47:11:2a:28:8b:35:d1:9e:
cf:47:63:4a:b5:5d:cc:6b:5a:09:48:c7:0a:2e:95:
ec:04:43:85:27:04:b0:0a:97:d2:2f:81:90:c1:ba:
83:b1:4f:54:d5:86:ca:ac:81:56:13:11:82:2b:25:
6a:e0:6f:be:8c:74:2a:e7:91:14:23:54:ab:05:0a:
96:51:6a:6f:17:53:44:cd:7d:35:62:78:b5:a0:96:
14:86:48:a1:42:96:30:8b:a3:72:fb:93:b7:a7:d1:
d6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:29:BF:6F:12:C2:E3:DC:3A:7D:64:8C:85:EC:15:32:BC:C9:AF:A9
X509v3 Authority Key Identifier:
keyid:5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:7d:78:db:4b:19:98:f0:b5:e4:e0:de:d0:9b:25:f0:e7:0b:
1c:5e:39:e8:e8:9c:f9:83:8f:72:90:2c:9a:f5:78:62:a5:0a:
f2:42:f7:ef:da:fa:3b:a8:6c:80:89:cf:8b:c7:70:2f:b1:0d:
39:dd:52:15:8b:62:f3:d0:60:25:23:d7:8d:e8:b3:e8:e8:be:
49:55:70:e6:69:f0:17:c3:2e:75:af:40:46:35:d3:14:50:eb:
00:d6:f4:1f:37:d1:61:71:ff:11:7c:a6:5b:d9:42:eb:89:ab:
47:16:1b:f0:fb:ab:25:f5:19:68:fc:5b:63:d8:74:d2:a1:02:
30:02:97:1c:21:c4:63:d8:1c:cc:36:d4:33:68:f4:7c:fc:33:
c7:37:b0:e2:27:d3:d9:e1:9c:63:af:08:f7:f2:c8:97:39:0f:
dd:00:4b:9e:01:e4:f9:3b:2b:f8:ff:5e:d1:77:76:5b:46:06:
68:4b:80:b5:bd:7b:bf:d6:52:4b:fe:0f:38:96:6f:98:65:59:
c0:ae:78:88:57:73:2a:f6:70:53:2f:42:d3:f6:61:00:9e:80:
d1:26:65:cf:4e:89:a2:97:1e:9e:aa:78:7c:ee:30:67:b1:07:
61:ff:54:d1:50:30:57:69:07:4a:3c:24:db:77:79:2e:e4:68:
a1:b1:05:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:33:16 2026 by rpki-client