Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
File: XM3soXHkIseck4wnMqkNSKjFPAY.mft (raw, json)
Hash identifier: Ioy3cdrf2cXn2uy5GlfwxBetjATANImhS8ryt3TTSjA=
Subject key identifier: F0:C0:72:BD:F5:3F:51:63:E1:EF:95:E3:88:3D:47:FA:93:7B:1C:32
Authority key identifier: 5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
Certificate issuer: /CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Certificate serial: 019D98F446C3581D8ED1971F82523A8389E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
Manifest number: 18D1
Signing time: Fri 17 Apr 2026 01:00:38 +0000
Manifest this update: Fri 17 Apr 2026 01:00:38 +0000
Manifest next update: Sat 18 Apr 2026 01:00:38 +0000
Files and hashes: 1: Vcrxz5upkyAccEnWWkm1jKbiHCU.roa (hash: DF9acpeNSt3QcU3RLTkyAoSPyBTgnqf4yVUPlH/IEUw=)
2: XM3soXHkIseck4wnMqkNSKjFPAY.crl (hash: 5hIKyQMY/CReHcjpt6Uvu7sfUgR/3RVJQho7nhDHqwo=)
3: d61QkjArffvt5fKMvIXWF8nIPcE.roa (hash: n77B2cSkql2uFL2mgGTUwbPJJQCN8pumVVKiMumdlmQ=)
4: gt4NX8URVAv-A4_huezwCBnTr38.roa (hash: vN+Famgpb/hzxjnp6tma5vU9LuyB53AY4c85WPFvJ9g=)
5: vEmqZz7TyOIZcMFGWq5sr0qWa9c.roa (hash: rxEx9pdbLlzRrifCSn69fPPljhSEaN1XwXY/F5cFM9M=)
6: x9IxkDkzEkDokkzWh7NpXLA6pSU.roa (hash: HHdD49yqs88lPuXMSPj56CT2/FilbQVuZopBY9/6oH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:46:c3:58:1d:8e:d1:97:1f:82:52:3a:83:89:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Validity
Not Before: Apr 17 01:00:38 2026 GMT
Not After : Apr 18 01:00:38 2026 GMT
Subject: CN=f0c072bdf53f5163e1ef95e3883d47fa937b1c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0c:3d:12:6b:0d:d2:f6:80:5d:0f:00:f3:72:
64:f1:4b:cd:17:54:54:19:6b:bd:23:07:d4:43:56:
e6:c8:50:c2:53:9f:43:35:98:4e:3f:60:27:2f:4b:
b8:0d:d4:46:cc:3e:74:93:96:da:40:0b:1e:e9:8a:
21:ee:47:ea:6f:20:34:24:03:12:9c:3d:8d:1c:da:
f2:8d:6a:61:3f:ac:26:bd:15:5e:aa:ce:d6:2c:ba:
e6:9f:15:90:eb:4d:cc:c1:6b:53:11:df:82:5f:59:
0e:64:b4:66:3b:70:d5:b4:dc:b2:1c:3c:4a:f6:11:
08:6d:68:29:7c:6b:85:34:2f:26:df:0f:92:7b:e0:
a5:d8:b0:f8:d9:95:d1:3f:2b:12:8c:da:7a:f6:21:
58:3a:fd:90:11:05:8a:2c:d5:24:0a:95:94:f1:6b:
d3:ad:9b:bc:8b:44:c4:8d:37:1e:38:b8:5b:f9:52:
d8:d4:c4:db:68:bf:20:d0:53:3f:50:78:40:52:f9:
64:c5:fe:a8:7f:b7:b0:a2:d8:e7:c5:9c:18:68:28:
f0:71:a7:2f:24:d7:e5:4e:83:95:86:28:9f:f3:d6:
11:42:91:c9:ee:68:a0:ac:db:f7:62:9f:8d:1f:ab:
6a:dc:65:38:94:73:45:85:d5:6e:5e:e7:a9:b1:e5:
9a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:C0:72:BD:F5:3F:51:63:E1:EF:95:E3:88:3D:47:FA:93:7B:1C:32
X509v3 Authority Key Identifier:
keyid:5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:ed:ef:8d:23:0e:b3:41:72:fc:d1:ef:60:76:5a:19:8a:9a:
f6:a5:29:bd:ec:3d:0b:d1:c5:fc:d2:f0:4e:22:3f:8e:0e:ea:
98:eb:b0:ba:48:c0:b1:b9:0e:64:a0:12:a4:83:3e:b8:2b:07:
bb:72:4e:65:d6:0f:54:7e:b5:9b:06:0b:88:a5:14:9f:2a:bd:
4a:65:01:b5:26:28:1e:59:ab:33:c7:27:9d:52:32:42:60:22:
47:58:09:84:d8:51:a2:17:66:80:58:9a:aa:6a:78:82:fe:ce:
65:82:0a:c6:56:3f:8b:04:ac:ee:aa:21:ea:50:88:a9:d0:51:
83:eb:08:ac:2b:69:23:b6:47:f5:f7:49:57:50:b0:f6:7a:30:
83:44:3c:d5:a2:01:4e:cc:7d:c5:78:4d:3c:a6:f7:ee:27:ea:
4e:41:cb:57:c6:e0:c9:fa:a0:84:06:3b:09:17:4d:64:ac:8f:
c7:4c:5c:0d:41:2f:71:5e:64:ef:ff:68:d3:19:8e:a3:e1:64:
45:4a:ac:fe:36:5a:77:f8:87:8f:dc:ac:27:e9:d0:dc:8e:ef:
c6:6c:58:4b:ea:f6:bd:9d:24:5e:5f:0a:0d:2c:b9:56:9b:be:
10:e7:43:a1:3b:6b:99:9d:bc:f6:7a:97:2b:09:01:b7:64:cb:
d2:ae:78:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:13:22 2026 by rpki-client