Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: rSkYu/yE0wZOgz3Tbp5mStikec7iuD2XvxfpjTnoNWQ=
Subject key identifier: DB:40:07:EB:D2:EB:52:56:A2:7A:65:4A:C3:64:EC:2A:08:44:63:F1
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 019CAC476C676A05BB633A2E16F1801BEB8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 1356
Signing time: Mon 02 Mar 2026 02:01:27 +0000
Manifest this update: Mon 02 Mar 2026 02:01:27 +0000
Manifest next update: Tue 03 Mar 2026 02:01:27 +0000
Files and hashes: 1: 46eH9Cj2ZoAvvZOdO1gLEixXty0.roa (hash: nutrSegvu5QxeGV6g/QuVOtrzFyb4Km/JeoI/dWaXRo=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: RyFBlWWO27iYmSOzkRVBswJAQFs5bp3Jrg398csro/0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:6c:67:6a:05:bb:63:3a:2e:16:f1:80:1b:eb:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Mar 2 02:01:27 2026 GMT
Not After : Mar 3 02:01:27 2026 GMT
Subject: CN=db4007ebd2eb5256a27a654ac364ec2a084463f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:e1:0c:99:06:d9:2a:46:32:d6:60:12:88:4f:
ee:aa:70:d7:8f:b1:51:32:b0:c9:45:5c:3c:66:e7:
39:fd:3d:3d:49:4e:a6:8c:77:d5:5b:6c:60:39:5b:
2c:fb:f2:ed:d1:4c:fa:ee:30:81:df:bc:ad:3b:a6:
4f:22:ea:2f:33:b1:93:59:37:01:8d:f4:81:94:32:
58:17:4d:43:11:ec:9d:63:8a:6b:5d:87:38:5e:fa:
b6:05:5d:da:02:60:0b:b2:6f:7f:7e:01:fe:85:98:
6b:0a:99:a1:b3:67:89:e4:c7:72:a6:74:38:73:b1:
40:e2:23:51:3b:a3:88:18:81:c3:6a:37:e2:fa:0d:
e6:05:17:5a:61:f1:7f:bf:ba:92:1e:48:26:84:25:
24:55:da:9d:2e:e3:95:40:cf:76:0e:87:4d:90:b7:
d7:b9:58:1a:d1:fa:2c:ed:65:56:b5:32:23:a5:aa:
03:9b:9c:d5:f9:5e:48:03:b5:c9:90:5d:cc:6c:6a:
72:3c:6c:28:4f:42:8d:09:17:ed:57:07:dc:af:f8:
10:2d:2a:01:b6:5a:3e:4d:2e:bd:92:23:7a:21:1f:
54:e9:6a:9f:0c:90:e9:a9:c4:5a:cf:03:10:3f:db:
59:99:b1:88:11:52:f4:2f:76:a4:25:7f:36:72:e1:
a2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:40:07:EB:D2:EB:52:56:A2:7A:65:4A:C3:64:EC:2A:08:44:63:F1
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:7b:6c:47:f1:91:9d:1c:d1:2e:01:7e:ea:32:1e:4f:e1:55:
b6:c2:7e:85:fc:35:1f:b0:7b:75:eb:63:b3:11:c7:99:a5:92:
50:d0:a3:ef:9e:5d:0f:e6:63:35:b7:90:24:0e:cb:23:dd:27:
fd:ed:bc:89:37:46:53:35:47:0d:39:33:65:9b:19:9d:a5:fa:
b4:84:9d:2c:6a:74:48:b2:2e:4c:36:b7:7f:b5:55:0b:32:a2:
73:17:60:51:0d:01:9d:08:3a:74:1d:1e:9b:45:1a:ff:0a:81:
56:36:e7:74:14:07:dd:dd:9c:4d:93:93:9e:b2:ac:45:53:20:
34:2a:60:cc:df:48:3e:b7:de:75:37:59:40:95:69:46:70:8a:
e6:a3:f3:fd:1c:6b:e1:ca:6c:91:24:e3:ca:c6:e9:bb:0d:c9:
57:8c:7d:31:85:5e:48:3e:41:c6:2b:67:f1:38:e3:18:e5:24:
27:4c:40:2f:f4:ae:00:00:17:ef:bf:12:16:fe:41:d1:d4:f2:
4c:ca:b3:62:60:3f:d2:ac:3c:f4:d8:cb:51:ba:9c:e0:1e:f5:
51:2a:72:74:7f:3d:b7:dc:cb:20:39:d7:c2:41:e7:ec:35:b1:
4d:db:7e:96:92:a7:69:18:39:78:73:10:8c:ef:7a:23:75:c5:
3e:03:2d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:27:42 2026 by rpki-client