Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: /uc4hb6wrsupHCRgIyvlt7KxdkEXIxtEqLlJWPGHdyk=
Subject key identifier: 74:DB:E7:E9:49:48:E8:E9:58:28:BC:E9:4D:8B:56:AC:EA:C7:0D:AC
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 019D99D09B00DEF5E1912A3D09E08C7A18AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 13D1
Signing time: Fri 17 Apr 2026 05:01:18 +0000
Manifest this update: Fri 17 Apr 2026 05:01:18 +0000
Manifest next update: Sat 18 Apr 2026 05:01:18 +0000
Files and hashes: 1: 46eH9Cj2ZoAvvZOdO1gLEixXty0.roa (hash: nutrSegvu5QxeGV6g/QuVOtrzFyb4Km/JeoI/dWaXRo=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: kyxowj8ZfoP/i7jQ2c9PtWDTbEYSRKlEUa2ttL7pg9g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:9b:00:de:f5:e1:91:2a:3d:09:e0:8c:7a:18:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Apr 17 05:01:18 2026 GMT
Not After : Apr 18 05:01:18 2026 GMT
Subject: CN=74dbe7e94948e8e95828bce94d8b56aceac70dac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:86:ac:91:4e:a2:10:88:57:3c:56:69:fc:db:
b5:ab:81:9b:f6:28:6a:dd:8c:95:2f:95:b9:a6:b7:
c3:de:7f:1b:b1:2a:1e:30:45:2e:bc:d8:7d:95:77:
c2:3e:25:8b:7d:a5:d2:8b:d6:c7:3e:84:f6:0a:f6:
c6:57:e3:3b:b5:cb:cb:e7:c8:7a:d5:94:e8:b4:4f:
ae:76:69:b7:ac:fb:31:da:52:a0:f1:c2:67:d1:d3:
74:c8:21:49:f6:66:4f:5d:10:c0:fb:65:65:30:af:
6a:d2:84:92:c3:1c:3a:62:46:73:72:bb:fb:41:8d:
d8:b1:e6:0b:1e:23:a0:9e:c9:a4:d4:d9:e4:14:e9:
e8:1b:10:82:61:aa:81:47:f6:56:42:43:ce:28:1a:
58:e2:e8:28:40:c1:ed:f8:27:f4:29:a9:d4:98:12:
32:a4:1e:67:3d:97:97:d5:c7:1b:89:c2:aa:74:b8:
6b:c5:c2:a1:ad:5b:dc:ce:76:3c:c1:b1:bc:9d:91:
d6:cc:f5:c7:33:10:8a:be:5a:8a:78:83:44:23:cc:
b6:0a:0d:44:97:d9:4c:c1:c7:61:5b:5e:bd:18:1c:
e3:1c:d1:76:08:5b:03:09:6d:c8:b0:df:72:e1:cd:
72:b1:dc:d2:ca:1f:cd:6b:5f:bc:92:99:f3:77:29:
5a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DB:E7:E9:49:48:E8:E9:58:28:BC:E9:4D:8B:56:AC:EA:C7:0D:AC
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:b5:02:75:9f:be:f3:e0:f1:91:04:e6:08:0d:b6:b7:2b:0c:
e2:38:90:af:da:3f:d8:7d:36:77:07:90:7e:84:98:a4:56:b9:
7a:b8:09:66:d8:ea:f7:da:00:02:1f:8e:a0:44:c8:2b:75:ad:
09:b7:38:9e:1f:b3:9a:ee:46:55:af:94:86:77:bb:cc:bf:49:
b7:eb:e0:d1:98:79:ae:2d:b4:82:a2:cf:ba:07:f5:dd:01:fb:
20:0f:63:af:13:6c:63:d8:d3:a2:44:dd:ff:c3:1e:5d:ab:54:
ee:d6:94:71:1a:8e:fb:4b:77:51:53:a5:36:f4:cd:72:a4:40:
7b:f9:5b:98:bf:3a:cd:b9:dc:2e:18:11:31:40:25:7a:f3:2c:
d5:f6:e0:88:7f:c8:10:21:b2:24:1d:a3:f0:47:ca:6b:71:0a:
bb:5a:96:90:9f:4f:4d:37:13:db:c2:ee:28:e9:db:7d:fa:ff:
35:2f:bb:a1:ba:77:3f:89:8c:33:d5:d8:f9:14:96:83:22:c6:
7b:d2:6e:b3:13:02:fb:4e:ee:6d:00:f5:d0:cc:3e:f4:20:5f:
97:07:8b:e9:00:8b:f2:8e:cd:e4:15:64:a1:d9:a9:d2:20:21:
4e:6f:ef:d1:af:fc:86:49:29:b0:de:d1:8f:3a:aa:1c:b4:70:
b0:30:cc:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:05:10 2026 by rpki-client