Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
File: xaL0JAfyHJ12kPsw_YzbK_320DA.mft (raw, json)
Hash identifier: iPZlWJwwnU7CiSbBH+jVxiqw/JZbQhGRExxSBHkAzj0=
Subject key identifier: 37:CB:23:70:D7:A8:B6:0C:A1:5E:35:35:11:4A:14:68:7F:2F:83:75
Authority key identifier: C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
Certificate issuer: /CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Certificate serial: 019CABD95719AC5E50CD19A7277F72C11ACB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
Manifest number: 1863
Signing time: Mon 02 Mar 2026 00:01:13 +0000
Manifest this update: Mon 02 Mar 2026 00:01:13 +0000
Manifest next update: Tue 03 Mar 2026 00:01:13 +0000
Files and hashes: 1: vvOgIMkDpg0381NKvOJ6xEsVrhU.roa (hash: Ilfe2d/82ILTFX47xfIYllXXNOO6y9+T+nkxBpSb/2g=)
2: xaL0JAfyHJ12kPsw_YzbK_320DA.crl (hash: miwcjtD4EsgPgekURHovkwJdWm2rUNAnwYYCo5Teedo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:57:19:ac:5e:50:cd:19:a7:27:7f:72:c1:1a:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Validity
Not Before: Mar 2 00:01:13 2026 GMT
Not After : Mar 3 00:01:13 2026 GMT
Subject: CN=37cb2370d7a8b60ca15e3535114a14687f2f8375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ad:30:00:54:22:dc:61:8a:81:92:d6:ee:66:
30:4c:86:35:93:11:1f:e1:8c:2a:07:4a:a5:52:15:
ec:ce:b8:ce:d3:ba:0d:67:ff:14:b0:a6:1c:15:fc:
52:b0:7f:a0:64:e7:2b:b4:ad:98:bb:36:d2:25:aa:
ba:e4:d5:1b:de:06:11:55:f6:18:63:94:69:bf:68:
62:f4:1a:fa:1d:c8:6b:d4:c7:a1:2a:c5:d3:5f:b1:
ea:35:83:ce:82:49:60:8f:8e:15:70:53:09:04:46:
1d:08:c9:35:73:5f:05:b8:b8:f6:96:7d:9b:da:f1:
d7:df:20:7b:8a:8a:6a:a9:e2:a5:bb:09:ce:87:b8:
a5:39:64:56:02:00:1f:c8:62:06:5a:36:1d:62:f0:
69:9d:52:27:5f:29:49:67:68:4d:35:de:7f:cc:b6:
71:16:64:ef:81:f7:f7:ca:16:67:7d:e5:93:43:44:
f4:32:75:3b:d5:62:ce:6c:10:3d:17:82:21:83:d4:
af:93:2e:2b:96:19:9b:c7:56:5b:69:14:89:d9:9d:
49:57:31:82:5c:ea:b9:2d:7d:0a:f2:c1:a9:01:d1:
cc:81:a7:60:28:1c:19:39:e6:86:2e:17:e2:c7:dc:
77:14:f5:0c:9a:ab:3b:61:04:97:cb:cb:e3:3b:1e:
a7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:CB:23:70:D7:A8:B6:0C:A1:5E:35:35:11:4A:14:68:7F:2F:83:75
X509v3 Authority Key Identifier:
keyid:C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:58:31:04:7e:26:01:2a:9a:1a:b9:52:ca:98:92:be:bd:ba:
2a:4a:c8:b6:82:bf:22:c2:ed:9a:86:a9:cc:24:db:65:2f:8c:
d4:a7:4e:f3:d1:9b:33:f2:d9:5c:2c:c5:fb:45:16:4e:9e:eb:
6a:e5:0c:eb:f1:ac:04:21:08:56:95:d8:12:be:22:b4:7d:ec:
2a:96:b6:82:93:22:b7:c8:5c:8c:cf:03:0e:d8:47:8a:fd:78:
3f:14:d1:05:17:e1:f3:5a:0a:67:f6:59:13:5b:de:55:aa:21:
8a:4e:72:b9:95:49:b3:f1:56:df:44:60:ba:ae:7b:4d:c5:a8:
b6:e0:d2:71:0a:e8:4f:9e:fa:46:4e:a0:9e:2a:0f:ec:c3:5a:
0f:0b:3f:43:4f:b6:16:3a:88:26:96:e7:43:22:82:97:e8:5a:
1a:c1:65:f6:a1:48:68:32:30:df:2a:77:36:bb:e2:3c:e5:87:
1d:0a:2e:62:4b:ee:4b:09:68:84:2c:e4:24:02:f8:b2:f4:18:
7b:12:e1:c9:cd:f9:e1:d6:f3:7f:79:62:80:32:ab:33:69:c0:
a9:f7:73:f0:88:d0:37:f3:85:5a:70:92:2c:56:08:71:8b:dc:
4f:dc:3d:1d:e8:47:fb:c3:dc:07:72:3d:82:b7:7e:eb:c0:28:
63:89:ec:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:03 2026 by rpki-client