Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: RufgfBzlc69C2KK9Qo73Y8yVK4l6vNFk/XQYwvxqi6Q=
Subject key identifier: 71:3E:7D:1E:4B:CC:FB:DC:97:89:41:F2:A8:6E:D1:2E:31:FD:AE:0D
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 019DA3417990432CA39A8C003AF5181E0465
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 12C1
Signing time: Sun 19 Apr 2026 01:01:10 +0000
Manifest this update: Sun 19 Apr 2026 01:01:10 +0000
Manifest next update: Mon 20 Apr 2026 01:01:10 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: p14asbBMBuUZHkTYeZGVg1IsG31MzLDVEiQOhfMtCmY=)
2: yqeabqkOB5fG5PtO7nwnhSFJt98.roa (hash: qildy36/K9jS6v0WoAJhzWi2T0378O5DKM8NUUD22gI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:41:79:90:43:2c:a3:9a:8c:00:3a:f5:18:1e:04:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Apr 19 01:01:10 2026 GMT
Not After : Apr 20 01:01:10 2026 GMT
Subject: CN=713e7d1e4bccfbdc978941f2a86ed12e31fdae0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:cd:04:60:03:cb:91:32:bf:ef:6d:53:4c:d5:
f4:7b:92:8c:be:0b:62:56:6f:0c:da:0e:91:2d:ff:
92:11:38:25:ad:60:09:1f:0f:3a:c5:f2:5e:e3:f2:
77:04:c1:53:89:37:51:06:72:15:e3:f0:a6:c7:31:
d5:db:2e:11:bb:d0:bb:17:49:e3:fd:06:b0:c6:20:
22:55:cd:1f:92:30:09:fb:82:4b:3f:c3:c9:ef:ba:
de:c7:bb:f1:fb:0b:35:86:a3:77:02:e9:32:f5:a8:
b7:13:fb:86:23:13:90:ce:9d:34:77:a1:9f:b7:b2:
a8:11:c8:2f:b3:cc:d3:9c:72:6b:ac:2c:a4:b8:1e:
60:84:7b:03:d9:a1:06:ad:49:17:50:5f:c8:cc:c5:
fc:c5:8c:02:54:db:b9:f0:61:af:1d:be:66:f9:d8:
63:c2:b0:fa:53:e3:59:8b:40:d2:24:f4:cf:4b:44:
a4:e0:e5:f0:ae:5f:6e:0c:1b:9d:75:52:e1:52:55:
23:68:f4:33:d1:b4:d9:f7:04:b6:ec:bb:8b:0e:10:
db:b6:1e:97:7a:43:92:12:d3:4e:34:7f:9e:a0:a0:
16:5a:50:e8:a6:68:9e:8b:99:aa:58:ed:04:66:74:
b8:19:fe:d1:2b:7f:8a:cf:6c:ba:17:ae:05:ce:a2:
b3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:3E:7D:1E:4B:CC:FB:DC:97:89:41:F2:A8:6E:D1:2E:31:FD:AE:0D
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:f9:8a:b2:7f:4a:b1:22:f6:bb:e7:74:18:b1:04:e0:38:4d:
3c:66:9c:57:6a:16:98:6d:71:1d:14:31:d2:01:88:3c:9e:41:
6c:e8:d3:4c:7e:a3:ec:0a:d0:ea:7e:3a:90:b1:4a:71:9e:53:
9a:b6:2f:4b:5d:34:ef:28:f1:c9:60:08:92:77:a1:4c:c9:81:
bc:c2:6d:38:b4:00:23:70:36:6c:67:02:b1:c6:7a:0a:18:22:
55:dc:64:fc:15:fb:68:1c:5c:ca:22:d3:71:79:1b:32:0d:df:
c1:83:c0:d2:16:f2:db:53:71:39:2d:64:7d:30:d4:a3:89:b7:
cf:76:24:6e:bf:77:21:4d:93:7b:38:64:a7:99:20:48:d3:1c:
85:c8:6e:5e:15:28:00:27:4c:61:3a:e1:fb:37:cf:90:1d:69:
6c:e0:94:6d:73:8f:0d:3b:9a:db:14:2b:aa:d8:28:7f:d5:08:
6c:3f:4b:dc:4a:17:62:b1:bc:78:c1:e0:47:c2:37:24:76:0d:
8d:f3:33:0e:19:35:f8:b4:c8:01:81:b8:8a:6e:05:8b:97:19:
79:c5:fb:c3:79:11:11:83:de:72:da:6f:51:eb:93:7a:15:06:
e6:e4:c8:47:33:1b:19:fa:a5:c9:67:59:ff:f6:23:66:59:50:
5a:aa:9b:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:19:40 2026 by rpki-client