Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
File: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft (raw, json)
Hash identifier: Fg21BFIKiNcxrhiMRlvrRhH0n1+IuqttBuKxVfhHiQ4=
Subject key identifier: 83:46:34:0E:E6:44:4B:94:E2:59:85:AD:5E:94:11:3A:D9:4A:8E:89
Authority key identifier: 5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
Certificate issuer: /CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Certificate serial: 019CAC0F9DCCA37BD0F9A11396124C12CA63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
Manifest number: 1304
Signing time: Mon 02 Mar 2026 01:00:30 +0000
Manifest this update: Mon 02 Mar 2026 01:00:30 +0000
Manifest next update: Tue 03 Mar 2026 01:00:30 +0000
Files and hashes: 1: Q2eq3vQ27LdqIhXEwPYKtKFxrj8.roa (hash: w/CxsU35XsDW4qiiMK3VW7xr1QGFT3WBU9iNjApYbmk=)
2: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl (hash: UYHlo6UDNtentcMuo6yXLNua/hGZ0NZ/GlY1RKA4cqU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:9d:cc:a3:7b:d0:f9:a1:13:96:12:4c:12:ca:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Validity
Not Before: Mar 2 01:00:30 2026 GMT
Not After : Mar 3 01:00:30 2026 GMT
Subject: CN=8346340ee6444b94e25985ad5e94113ad94a8e89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:89:c9:56:07:4c:be:71:15:0a:e5:5f:82:7e:
fb:a3:c2:de:c7:39:10:1a:e6:a1:7d:db:93:1f:2a:
de:5b:6c:ae:2f:a7:ea:b9:e3:6d:d3:fc:d4:f9:79:
86:85:8e:4d:e0:20:4f:0a:4c:6c:17:c2:95:88:5d:
cf:da:ef:30:0e:e5:dd:4b:c9:92:2c:c5:04:62:68:
43:12:6f:8b:69:d2:f1:09:01:e2:a8:92:ea:4b:b5:
36:a8:24:96:05:2c:fc:0c:a1:af:b4:4f:fc:86:2e:
31:b6:d9:81:2b:99:7d:27:f3:35:ab:7b:1a:cb:b7:
c8:7a:c9:98:aa:f2:0e:cc:a2:14:b2:5d:9c:8b:5b:
05:36:ed:ca:a8:a1:10:3c:9f:1e:a4:17:33:6c:dc:
01:79:b8:ea:ef:23:9d:23:7d:16:92:fe:1d:44:27:
e5:29:bc:63:c7:61:5c:d2:58:ed:1a:43:23:42:7a:
b0:ad:11:fc:39:3d:49:7b:0a:fa:3d:62:5f:f2:de:
74:c4:61:04:a8:fe:98:2e:98:a1:98:2c:40:83:70:
a9:61:39:27:d4:0e:2d:68:76:c1:85:71:0a:ed:22:
30:41:76:1e:a8:1b:6a:13:fe:0c:0c:0b:41:5e:ae:
d2:58:ca:c8:d2:48:20:46:26:e5:87:e2:7c:7e:0b:
26:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:46:34:0E:E6:44:4B:94:E2:59:85:AD:5E:94:11:3A:D9:4A:8E:89
X509v3 Authority Key Identifier:
keyid:5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:e2:6b:77:9b:a8:eb:ae:73:37:34:ce:41:4f:55:dc:12:f1:
dc:5d:c7:62:97:d5:53:49:5f:94:5e:67:cd:db:8a:a1:a5:a9:
87:fe:ab:6f:7a:5e:2a:02:a0:d8:61:d0:07:3d:a1:2d:a6:55:
c6:2d:ad:a9:17:48:cf:9f:41:c3:d0:e4:d7:41:62:c0:35:af:
4f:44:0a:85:a5:c2:57:44:7c:d7:26:a3:0a:18:53:43:f9:a7:
6f:55:48:20:cf:ac:ef:a2:f1:14:3e:ad:2b:7a:88:6c:c3:85:
aa:46:29:e2:7b:c9:24:71:99:04:46:f7:5a:7e:b8:3b:14:4a:
0f:46:35:b3:fc:2c:e6:3c:5d:de:8f:9f:10:25:29:f1:68:51:
e6:2d:0d:b6:2a:b5:64:e2:59:f4:0d:aa:ee:e9:de:7a:ee:c0:
dd:1d:42:be:08:5b:68:4d:fd:2f:e3:4c:92:20:93:a2:f2:f8:
3b:13:53:ae:f3:47:29:6c:88:c3:10:8b:d1:bf:6f:c5:1d:a3:
24:c6:e0:e3:33:d0:a5:4c:aa:04:3d:fb:66:16:6a:9f:18:aa:
5f:29:56:07:55:7e:a8:19:ae:60:09:4c:86:03:23:16:7b:cd:
d1:94:66:fd:6b:d6:fb:1e:59:89:b0:39:f8:b0:a1:b9:97:d8:
b6:d9:7a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:35:12 2026 by rpki-client