Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
File: X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft (raw, json)
Hash identifier: +S7DqkC0lsytI+BukqZ9eheYQughqpPzLXYj4WRbPA8=
Subject key identifier: 4B:04:E8:D2:17:61:09:0E:C9:91:7B:84:B7:98:8E:95:D0:1A:B5:C3
Authority key identifier: 5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
Certificate issuer: /CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Certificate serial: 019CAB33DEA7D4FF525A8735724B9FF4527A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
Manifest number: 1841
Signing time: Sun 01 Mar 2026 21:00:29 +0000
Manifest this update: Sun 01 Mar 2026 21:00:29 +0000
Manifest next update: Mon 02 Mar 2026 21:00:29 +0000
Files and hashes: 1: X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl (hash: FOgGPLfWO8VGY4BN45dpb1QmWFypW+9aIEsygth+sN0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:33:de:a7:d4:ff:52:5a:87:35:72:4b:9f:f4:52:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Validity
Not Before: Mar 1 21:00:29 2026 GMT
Not After : Mar 2 21:00:29 2026 GMT
Subject: CN=4b04e8d21761090ec9917b84b7988e95d01ab5c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8c:9c:ca:5b:a7:53:f1:3f:43:2b:3f:8c:e5:
51:e1:d7:96:58:33:71:f4:b7:f0:e8:84:98:d3:7a:
94:f5:27:63:6c:1c:bd:4e:63:06:12:10:9f:3b:fc:
a8:8a:c0:cf:28:45:1e:ad:eb:6f:a7:3f:3e:79:aa:
6a:67:2d:42:a6:e0:c5:99:1a:e5:e2:7b:44:40:f2:
a6:8e:91:bf:f8:b8:c4:9f:70:36:af:be:c4:40:08:
74:a2:5f:b5:b0:cd:cf:fd:17:94:d0:a2:de:5a:3a:
95:77:26:1e:e4:2f:b6:73:37:b7:26:fb:16:f5:18:
b8:bd:d6:4f:dd:49:11:56:f7:52:17:8c:63:9c:d1:
6b:94:85:b6:54:c1:78:56:58:18:70:71:16:da:1d:
54:12:81:c3:16:a6:36:c6:36:89:e4:80:97:e8:4c:
a0:db:74:04:5d:b6:f3:9e:3c:fb:fd:6f:6d:09:6a:
28:87:5e:1c:9d:7a:a3:be:e8:ea:c3:e2:e9:d1:de:
56:6f:33:99:36:55:59:de:b2:7a:1e:b9:94:2d:16:
51:1f:fc:b4:04:19:aa:fe:1b:1c:d3:b0:12:fd:0b:
8a:23:0e:6d:a6:be:be:00:fb:fb:7e:d7:8a:f7:c4:
b2:70:61:d6:75:ad:e8:02:2f:ce:6e:e9:64:92:fb:
f2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:04:E8:D2:17:61:09:0E:C9:91:7B:84:B7:98:8E:95:D0:1A:B5:C3
X509v3 Authority Key Identifier:
keyid:5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:24:2c:6f:f4:a7:cb:5b:a9:e8:0f:b0:bc:fc:a9:ae:b5:fc:
ca:0e:22:cc:80:a9:05:80:5a:50:c1:53:83:9a:82:4c:05:30:
2f:1b:58:50:79:25:4c:76:fc:90:87:76:4d:aa:c1:fd:bd:e0:
b4:1d:2a:0b:0c:f6:6b:14:bd:96:b7:f2:7b:92:e0:69:33:13:
5f:f9:cf:0c:59:7b:e0:64:33:01:8a:15:a7:4f:be:d0:d4:0a:
16:ca:55:20:b8:67:df:e1:3b:59:35:81:3c:84:aa:99:3f:0c:
12:e3:4f:9c:03:26:c4:e5:9a:7f:63:29:58:ea:ef:87:fe:b7:
e6:ed:7e:bf:03:ad:3d:d0:88:e9:d0:2f:16:b5:cf:cd:91:87:
4a:90:95:e5:68:06:af:c1:e6:66:01:eb:6a:ee:85:e4:c1:18:
18:52:3e:cd:2b:fe:74:7f:a2:fa:73:58:87:de:90:bf:44:4d:
f5:d1:18:55:2c:64:d6:49:d1:c6:4f:f0:52:45:5d:82:1f:16:
de:a9:fe:6c:e6:ab:33:35:8d:a7:f4:1b:6a:e9:2a:94:83:8f:
0a:31:da:82:02:de:58:9d:4a:b4:f6:47:b9:57:de:aa:70:d5:
26:65:a2:83:ba:fc:82:43:b4:31:da:40:5d:69:9d:ac:77:28:
32:d5:64:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:34 2026 by rpki-client