Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json)
Hash identifier: ZyB3P842zxcExnh/nivqOn/ZmAZ81CI0igCH5/vdc8I=
Subject key identifier: C9:F2:74:78:96:F4:D9:C0:C4:14:D2:ED:AC:68:F3:84:22:A5:E0:F6
Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d
Certificate serial: 019CABA1DA3BF74B7CB4030BF580D29D512B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
Manifest number: 1466
Signing time: Sun 01 Mar 2026 23:00:36 +0000
Manifest this update: Sun 01 Mar 2026 23:00:36 +0000
Manifest next update: Mon 02 Mar 2026 23:00:36 +0000
Files and hashes: 1: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: vOMwHShzfytRiCfNOC/BmAVBFcWNOmIvKu7k8lv/du8=)
2: fWRyoPqsq-qBSdxIWeERvOiM9FQ.roa (hash: xi+aWZFnVHDnRFBiu1WZojI31+OjhpCl/iLDjILOSEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:da:3b:f7:4b:7c:b4:03:0b:f5:80:d2:9d:51:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d
Validity
Not Before: Mar 1 23:00:36 2026 GMT
Not After : Mar 2 23:00:36 2026 GMT
Subject: CN=c9f2747896f4d9c0c414d2edac68f38422a5e0f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ba:12:7c:4b:68:7a:de:cb:88:73:a6:b6:b7:
36:64:c8:b9:94:50:ba:b8:5c:27:36:6d:ef:ac:83:
6d:f8:6c:28:71:f0:62:b7:3b:0a:39:5a:ef:75:a6:
8d:86:f7:64:17:96:f1:27:71:30:19:5c:8c:43:5b:
8e:7b:ed:51:b7:6e:5b:33:56:df:81:8b:af:45:9f:
b6:6c:2e:d2:d7:2d:4c:16:0f:84:35:e1:19:21:e3:
12:83:e4:fa:d6:de:74:cc:57:90:0c:53:c2:b7:dd:
51:d8:a6:28:fd:7a:38:96:a4:f8:e4:7e:6d:61:57:
f1:7d:16:c8:6f:82:b4:8c:e2:9e:c8:9f:94:06:73:
12:cd:32:88:63:7c:a8:49:d4:9b:eb:d1:aa:da:9c:
c5:77:61:89:56:77:4c:de:7a:35:dd:8b:7c:50:9f:
38:66:91:24:ff:7c:e1:a2:f1:bd:de:34:09:9b:99:
ac:2e:d1:b9:d5:0d:55:f9:6d:c8:ba:cf:a9:70:7c:
95:1f:f4:e4:4a:e0:b0:34:c2:9a:8c:f7:da:37:a5:
f4:5d:2f:ff:77:ee:80:12:d4:28:63:e1:88:b8:ca:
c5:93:63:1c:79:06:1f:17:32:29:14:e4:0f:7f:24:
44:d9:f9:82:fb:e6:e1:04:8a:59:5d:fc:ec:6e:11:
7a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F2:74:78:96:F4:D9:C0:C4:14:D2:ED:AC:68:F3:84:22:A5:E0:F6
X509v3 Authority Key Identifier:
keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:7a:ff:11:d8:01:a9:1f:1b:c2:d3:77:81:19:b5:8b:ca:cc:
4b:df:1c:f8:9a:8e:99:4b:cf:38:8e:99:03:18:02:7e:ab:d9:
f8:82:7f:00:b5:24:02:44:86:3c:2b:4d:cb:80:e8:e7:72:23:
86:37:ce:10:63:0c:b0:b8:7a:fa:23:1c:3f:65:3f:41:ca:04:
59:c1:dd:9a:35:26:cb:97:1a:23:2e:4d:07:6f:82:c9:00:e5:
59:3c:19:6e:b1:2e:ff:94:ed:ac:c7:2e:4a:eb:04:1c:92:52:
3e:e6:71:71:49:b6:11:f7:62:52:28:bf:c1:24:21:2a:40:05:
f2:24:3c:f5:94:47:dc:22:9e:5f:d0:f3:9a:39:3b:54:1d:36:
a6:39:4f:fd:6d:25:c5:92:07:3b:5d:72:11:3b:1b:09:b7:66:
bf:43:7b:02:d0:4d:8d:38:7c:82:1f:f4:72:c8:87:1e:17:a1:
43:fd:74:d2:e8:69:8e:15:64:38:72:c1:f8:82:70:8c:43:46:
84:e0:59:b8:13:1b:9f:f2:ce:06:8d:af:73:d8:c5:b8:a6:8e:
6b:a9:e0:83:56:5d:f2:cb:bd:6e:1f:d6:17:8e:cd:4f:48:8a:
01:69:67:27:b7:74:0f:54:f6:64:97:6c:76:9c:42:57:81:48:
7e:8a:da:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:12 2026 by rpki-client