Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json)
Hash identifier: E9DA7oc5LTS6AwYr8DKik9zitumbfXxNKXVJdVqxKjI=
Subject key identifier: 97:22:D2:44:63:9A:D4:70:25:6C:7F:DD:D4:79:E9:60:96:16:F1:F5
Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d
Certificate serial: 019D992B9FB54A57F25AE438F9DFA07A61ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
Manifest number: 14E1
Signing time: Fri 17 Apr 2026 02:01:06 +0000
Manifest this update: Fri 17 Apr 2026 02:01:06 +0000
Manifest next update: Sat 18 Apr 2026 02:01:06 +0000
Files and hashes: 1: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: oySZMeJ7VZAsV1cdts+AQxbUqq9g7IKPXIqUn7yZqZg=)
2: fWRyoPqsq-qBSdxIWeERvOiM9FQ.roa (hash: xi+aWZFnVHDnRFBiu1WZojI31+OjhpCl/iLDjILOSEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:9f:b5:4a:57:f2:5a:e4:38:f9:df:a0:7a:61:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d
Validity
Not Before: Apr 17 02:01:06 2026 GMT
Not After : Apr 18 02:01:06 2026 GMT
Subject: CN=9722d244639ad470256c7fddd479e9609616f1f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ad:00:2b:9d:35:c1:5c:ed:3b:3c:f4:92:20:
76:8f:d9:2c:29:de:f4:fe:34:85:7a:89:f2:2b:eb:
70:2a:a5:d2:2b:5b:f0:22:5b:e3:94:f7:9c:11:eb:
7e:ee:ad:72:80:be:df:c5:bc:b2:86:98:db:f0:94:
a8:8d:36:fd:dc:df:76:48:75:71:37:2e:fa:ab:d5:
c1:db:05:b7:0a:36:3d:9d:95:89:fd:05:8a:44:65:
48:6d:cd:85:9a:0a:62:de:d5:e5:65:14:3b:ec:7e:
77:7d:13:59:69:8f:f6:17:28:64:e2:be:06:37:7d:
6a:51:ac:48:0b:67:61:5f:cd:a5:b5:b8:1b:51:3b:
7a:8e:e7:b0:75:31:83:3f:56:68:9d:0e:ed:16:13:
6e:70:39:be:ce:3b:b0:27:d0:2b:4e:d0:9d:f3:95:
1a:6e:6b:6a:10:ca:18:ef:10:ba:5e:a9:50:d1:a2:
80:5f:09:0c:1a:ca:e5:25:e8:4f:ff:70:5a:8b:59:
b9:2f:0e:b0:1a:e8:ce:70:ee:92:10:ff:ad:be:7f:
0a:7a:43:e0:6f:b1:65:37:9e:b3:3e:fd:f3:c6:78:
ec:6d:c2:53:bb:4b:74:e6:20:37:40:6a:dd:39:93:
dc:14:93:88:84:1c:50:73:94:ae:8b:5b:0f:cf:d9:
cd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:22:D2:44:63:9A:D4:70:25:6C:7F:DD:D4:79:E9:60:96:16:F1:F5
X509v3 Authority Key Identifier:
keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:d7:8d:03:46:db:c3:2d:37:18:20:c6:a6:b1:74:e4:ff:c2:
56:37:4d:00:b2:40:6c:53:0c:83:04:71:6b:6b:d2:fc:48:e3:
df:ac:28:ec:40:64:41:e7:60:08:03:10:f9:69:b6:3d:5b:12:
cf:af:7a:71:e4:af:9e:2a:98:2c:60:82:56:2f:77:59:a3:a5:
41:08:a5:8c:8e:02:b0:18:fa:5a:ba:9b:a4:fb:92:81:31:8d:
7b:70:af:2d:b9:05:a8:08:5f:75:a3:d1:89:5d:c6:f0:b1:21:
29:d0:0e:7b:e1:dc:04:8b:83:29:ef:7d:a1:5a:bb:09:d6:6d:
98:f3:87:04:67:7f:84:1a:11:72:23:47:38:af:6c:be:5f:03:
1e:2f:76:37:d5:78:9a:e2:9d:13:85:bd:50:04:46:1b:ff:6a:
be:9c:7f:b5:bc:61:32:a8:7e:b6:71:64:19:e4:a2:ce:35:4d:
93:ae:8f:d8:52:4d:10:c5:48:bb:c0:4c:04:d3:c3:15:42:05:
a6:52:0d:15:13:97:bd:6f:65:5a:cc:72:17:e4:c2:a6:c8:b2:
37:54:13:e3:c6:cb:62:b5:b4:6e:bc:7c:6a:e4:fc:e9:97:ec:
9d:f2:5d:ad:4d:44:d8:64:62:5d:13:ce:48:a5:fc:98:6b:4a:
f7:b6:85:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:00:21 2026 by rpki-client