Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: gs4ce3+O5/Y8GkJ3SiXddgV/ZvHbYPGy0guyFQPD7v4=
Subject key identifier: 75:A7:8C:F9:AC:43:52:39:09:C0:3D:69:63:0D:43:CC:CC:B1:10:15
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 019D9BBF16F36320F49C120FFC1A55613658
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 0D4D
Signing time: Fri 17 Apr 2026 14:01:24 +0000
Manifest this update: Fri 17 Apr 2026 14:01:24 +0000
Manifest next update: Sat 18 Apr 2026 14:01:24 +0000
Files and hashes: 1: 6aoHpGpaWGGkl83xUFlNJm53NDk.roa (hash: /4TBotBrPhIQMbRC6QsWTde66kPhdMjvMCRoCWnf4ms=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: ha2RnNAvsLV+mqdeCNXc0tCKcHjle0IIY080IIs6v+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:bf:16:f3:63:20:f4:9c:12:0f:fc:1a:55:61:36:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: Apr 17 14:01:24 2026 GMT
Not After : Apr 18 14:01:24 2026 GMT
Subject: CN=75a78cf9ac43523909c03d69630d43ccccb11015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ed:a8:5b:7e:8b:7b:7d:df:de:f5:bb:78:5f:
07:ac:e9:c0:41:16:b0:06:00:e7:17:ef:78:0d:b7:
25:05:92:c9:d7:8e:fa:4b:65:bc:f9:59:86:fa:5f:
88:08:fb:66:52:df:86:ea:11:5a:1f:23:bf:05:86:
64:c9:70:ad:b2:7c:31:8e:5b:d2:27:33:11:5e:f2:
2d:78:b3:a4:15:32:c9:8f:2d:63:24:a8:62:fe:e8:
ee:0a:b4:e3:69:85:10:43:45:50:cb:42:33:df:cf:
4e:db:57:ac:cf:4a:93:5c:fe:fd:63:e6:7f:fd:68:
80:a2:84:f1:b1:3f:d2:aa:35:73:6c:7c:9c:6c:10:
68:27:95:38:99:cf:ee:90:71:77:16:4c:cd:a1:9d:
60:83:16:94:e9:5f:f3:80:1f:1b:58:c8:f4:b5:26:
05:45:41:4b:8f:24:e0:0b:53:76:41:71:c3:7f:54:
23:a8:1c:d3:10:b1:06:fd:06:31:fe:7c:fa:74:bc:
46:3b:8e:91:28:5a:ca:29:cd:b0:8d:b4:1c:11:2a:
ef:4e:65:f6:21:9d:52:0b:5f:59:f3:99:28:a2:03:
34:d8:80:dc:6e:44:bb:2f:5c:12:b1:c6:27:b6:cb:
1c:2a:52:b3:08:84:77:c0:0b:d1:c0:71:90:2e:be:
09:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A7:8C:F9:AC:43:52:39:09:C0:3D:69:63:0D:43:CC:CC:B1:10:15
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:d7:68:78:d9:75:93:4d:ee:aa:83:31:df:df:b4:3c:7e:a1:
f2:7d:25:b3:25:22:ca:45:68:03:bf:21:7c:dc:2c:f1:3b:db:
97:f1:7f:0e:dd:bb:33:c1:5b:57:11:44:6d:66:82:94:0b:19:
15:fe:13:0e:d2:67:ca:b9:66:68:df:68:d9:5e:a4:d2:cf:d9:
94:85:f6:a7:69:bb:dd:e9:a9:83:f4:f3:e1:29:2e:fa:75:40:
e0:94:cb:56:5b:9c:f7:b9:f2:83:bf:0f:a7:c1:a2:ad:28:cc:
4a:65:a7:f8:bf:be:56:64:ce:8e:f7:3f:2e:61:50:42:61:9c:
a0:3d:0d:26:fc:09:34:c2:6c:eb:c3:3d:c9:f6:ec:a7:05:ea:
c7:a5:df:ac:02:27:3b:0f:60:66:05:ed:a5:66:18:0f:7d:a5:
38:ce:2e:f8:12:f8:55:e0:be:fb:93:73:25:fc:80:8f:c3:5c:
8e:5b:b2:02:e1:73:47:9d:c9:fe:03:4e:01:75:04:82:4c:35:
2b:e8:00:2d:e0:29:4b:80:b3:de:51:80:1d:1a:77:5c:ae:ac:
ac:b3:43:a3:27:56:4a:c3:9b:97:74:75:66:d5:67:46:56:3f:
2b:78:cf:68:a4:e8:af:75:2f:fa:38:40:b4:2f:72:8e:07:85:
31:d2:17:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:21:14 2026 by rpki-client