Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
File: XVn0kNO2myLh4nwya69yMRBW3bg.mft (raw, json)
Hash identifier: Vc2dEgQbopvYTVtcJDHmO2SfuOeQFxV1IqcKmKCPIxw=
Subject key identifier: 96:0A:FA:53:99:F5:E5:4A:0D:D3:E8:11:B1:30:77:8E:EB:45:96:DC
Authority key identifier: 5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
Certificate issuer: /CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Certificate serial: 019CAC4774638352274EE622303BD3D2610F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
Manifest number: 0CD1
Signing time: Mon 02 Mar 2026 02:01:29 +0000
Manifest this update: Mon 02 Mar 2026 02:01:29 +0000
Manifest next update: Tue 03 Mar 2026 02:01:29 +0000
Files and hashes: 1: 6aoHpGpaWGGkl83xUFlNJm53NDk.roa (hash: /4TBotBrPhIQMbRC6QsWTde66kPhdMjvMCRoCWnf4ms=)
2: XVn0kNO2myLh4nwya69yMRBW3bg.crl (hash: Db1zE1lq05bc4vwskbVFVduoiiDhjYV/YKmZlbvU2iw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:74:63:83:52:27:4e:e6:22:30:3b:d3:d2:61:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d59f490d3b69b22e1e27c326baf72311056ddb8
Validity
Not Before: Mar 2 02:01:29 2026 GMT
Not After : Mar 3 02:01:29 2026 GMT
Subject: CN=960afa5399f5e54a0dd3e811b130778eeb4596dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:13:37:7d:2d:e4:a0:59:4f:c2:df:b1:14:33:
98:34:2d:65:8e:8b:fd:d7:42:5a:e9:0e:0b:ce:a3:
95:3e:d8:20:ba:95:0a:8d:d5:31:0b:15:e8:4e:3d:
26:e7:21:df:ad:6d:ee:0e:c4:22:e9:ce:ca:5f:4e:
15:a8:a5:0d:2a:1e:f9:42:c7:a8:90:0a:af:95:8c:
f8:16:00:df:b0:10:5f:b0:46:bd:71:52:fb:4d:3e:
ec:c7:81:c9:64:66:dc:e0:fb:ae:d0:cd:0e:27:2e:
09:44:20:89:2b:7f:8b:b2:ce:8a:3c:94:03:6f:91:
22:73:ae:26:82:53:c8:d2:c5:e2:8c:d8:2b:21:a2:
5d:31:9f:81:fc:3d:d2:41:15:08:59:67:27:02:8d:
7e:8e:6f:b2:18:cf:a0:5a:e6:2c:7f:54:86:06:5b:
8a:74:9d:fc:a9:b5:66:4c:8e:89:c7:25:c1:3e:e5:
89:fc:d4:7b:da:96:c8:e3:87:16:d7:d0:61:87:a7:
35:e1:9f:31:2e:bc:f1:24:e6:7c:b3:7c:46:f1:0f:
c0:6f:0b:2a:2b:fa:a7:0f:76:8f:a8:97:68:54:9c:
39:93:2b:ba:b7:6a:ed:f4:ac:27:e3:6e:89:06:7f:
d1:d8:7d:92:a4:0c:26:48:05:83:42:3a:8d:82:47:
70:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:0A:FA:53:99:F5:E5:4A:0D:D3:E8:11:B1:30:77:8E:EB:45:96:DC
X509v3 Authority Key Identifier:
keyid:5D:59:F4:90:D3:B6:9B:22:E1:E2:7C:32:6B:AF:72:31:10:56:DD:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XVn0kNO2myLh4nwya69yMRBW3bg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/2aeb79-3582-4ebf-b19a-79348e8366bc/1/XVn0kNO2myLh4nwya69yMRBW3bg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:b8:3b:ed:50:0d:73:47:d9:6b:ef:6f:fa:48:8d:c2:d2:01:
fb:f2:a7:e7:eb:75:97:81:1c:81:08:4d:5b:43:a4:77:6a:d4:
87:3d:33:1d:fd:0c:a9:d0:7f:04:8f:73:85:0c:8f:85:57:97:
eb:84:8c:fc:88:f3:50:c0:5c:3c:91:ea:16:73:f9:34:be:ec:
05:09:95:36:fc:9b:b5:cf:5d:dc:d1:bf:5b:af:ef:02:1a:1f:
ab:86:68:92:5b:f8:2c:7e:a1:be:51:d2:1c:c9:98:4d:87:ac:
0a:89:56:a4:1f:fd:22:2c:1e:e0:98:c2:3c:06:6a:90:18:78:
f7:3d:5b:b9:4d:df:73:35:be:13:16:25:06:08:20:9e:2a:de:
ef:3b:e1:e7:a3:75:5a:f0:cd:51:41:41:e5:8f:3a:e2:dd:1d:
d8:f3:69:ad:fc:88:50:f3:4b:61:3e:e6:bd:dd:6d:b0:40:00:
e8:f0:9e:82:75:7c:b0:8e:d9:bf:70:d5:5a:71:64:92:4b:00:
15:e8:c2:64:c6:68:fc:82:54:f9:85:38:d3:c1:8c:41:e8:18:
c0:04:b4:42:ae:fc:2f:73:3d:b4:da:68:d0:dc:19:80:2b:30:
91:62:ea:80:72:2f:78:ee:f7:85:ee:97:75:4d:0d:2d:f5:d2:
a9:da:ed:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:15:01 2026 by rpki-client