Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
File: X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft (raw, json)
Hash identifier: oRuSSi/VKHwt7L4SGi79z+SJOf2dfimJK7VuXoFTFo0=
Subject key identifier: 2F:79:45:E7:2A:6D:D1:EF:26:ED:44:37:B3:70:0D:19:97:A3:6E:49
Authority key identifier: 5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
Certificate issuer: /CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Certificate serial: 019D98BD3CCE8EE42FC8D04087F783FCDEF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
Manifest number: 18BC
Signing time: Fri 17 Apr 2026 00:00:31 +0000
Manifest this update: Fri 17 Apr 2026 00:00:31 +0000
Manifest next update: Sat 18 Apr 2026 00:00:31 +0000
Files and hashes: 1: X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl (hash: LVKPaqoEwogyJVgJ0/O1k0GaHyWIlUGUFtYc7d8fvAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:3c:ce:8e:e4:2f:c8:d0:40:87:f7:83:fc:de:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f628f05cca8c87d593e71e9dd21b0e7f89d5893
Validity
Not Before: Apr 17 00:00:31 2026 GMT
Not After : Apr 18 00:00:31 2026 GMT
Subject: CN=2f7945e72a6dd1ef26ed4437b3700d1997a36e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fb:f0:f8:93:8d:7f:0d:35:86:d0:d2:4b:f0:
6a:7a:84:b3:25:d9:d4:1b:ea:31:0c:d9:14:18:9a:
80:e9:20:3f:44:7b:d0:7e:ee:c5:41:1b:21:30:a9:
0f:df:d4:3d:4c:54:22:ae:ce:dd:60:93:1b:e2:1c:
e6:22:80:0f:b2:f1:08:37:dd:28:cc:20:33:07:4e:
40:a0:9b:16:69:54:a5:cd:d8:ab:67:57:e4:f5:04:
90:0a:5a:1b:1e:30:4b:16:9e:cb:fe:d4:27:62:f0:
28:68:a4:be:2e:ac:52:d5:c0:04:ab:02:0c:30:4b:
3e:f7:36:26:cf:cd:32:9f:8a:e6:ba:88:68:f0:88:
51:b7:22:9f:38:d7:51:a6:9d:e8:fd:71:1b:ca:88:
e0:23:38:dc:f5:54:ba:b5:13:4b:dc:df:77:41:d9:
e0:16:dd:89:47:56:33:81:d1:15:fb:f9:13:bb:af:
d4:95:dc:ae:d1:08:72:c5:79:f3:c2:05:89:4c:bc:
63:cf:eb:14:d1:0c:a1:1d:72:92:a2:26:34:12:57:
54:23:fc:79:41:c6:a8:df:0b:4a:23:0b:3b:f6:3d:
7f:45:d1:e7:ff:fb:e2:75:1d:4c:30:72:db:f2:82:
b6:85:3b:5c:24:58:1f:06:12:f9:31:43:27:94:04:
10:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:79:45:E7:2A:6D:D1:EF:26:ED:44:37:B3:70:0D:19:97:A3:6E:49
X509v3 Authority Key Identifier:
keyid:5F:62:8F:05:CC:A8:C8:7D:59:3E:71:E9:DD:21:B0:E7:F8:9D:58:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X2KPBcyoyH1ZPnHp3SGw5_idWJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/522cf1-0b5c-4d62-b36c-9fbe8919db90/1/X2KPBcyoyH1ZPnHp3SGw5_idWJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:43:7b:9e:7e:d2:44:64:da:2d:91:c0:1e:84:9e:47:cc:91:
7f:14:2d:9e:f1:94:7f:6c:45:e7:79:6b:9c:fc:3e:73:a8:89:
07:bc:36:ab:9a:d9:70:d3:11:4b:f1:57:96:6f:f8:d5:c6:ed:
b7:ae:eb:17:6a:8d:6e:6e:06:db:c2:26:55:b1:aa:0d:da:49:
22:24:a4:ea:74:44:c5:f8:af:f8:2a:97:7c:25:9e:2d:98:58:
62:7f:77:e5:34:e8:eb:58:9f:54:1d:46:3c:b7:20:22:1f:17:
f4:39:9a:92:9f:ec:a5:ed:98:07:53:64:d5:fb:09:3d:7a:26:
95:6c:95:12:59:5e:5a:0f:a9:8c:46:87:63:e5:e2:d5:8f:df:
75:06:96:9a:de:c0:69:a9:67:8d:b9:c2:20:34:54:9f:0f:17:
4d:93:76:ae:52:82:87:24:16:2e:0e:8d:4d:18:b0:7a:28:29:
ac:67:2b:ac:34:a6:1f:88:eb:b4:b5:f1:99:e5:0a:09:65:a7:
d7:48:70:3b:a9:4d:86:0f:82:a3:c0:09:94:c7:d3:30:3b:79:
e8:d6:e6:ce:c8:e7:95:97:64:cc:a6:2d:f5:8c:90:4b:c2:84:
fc:57:1f:cf:ec:2b:d3:2f:8f:d6:18:a4:93:68:df:34:18:cd:
4e:e1:ec:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:42:32 2026 by rpki-client