Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
File: X8IN7HFLtUY7Fk4VpfihOYolUF0.mft (raw, json)
Hash identifier: 8M8BSu4cd4HPaxvGSgOV4CaKwh8AjrpMXxPZJiyso+Y=
Subject key identifier: CE:20:BF:CE:DE:D7:10:01:C1:63:5A:61:EE:60:08:07:24:16:1A:FD
Authority key identifier: 5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
Certificate issuer: /CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Certificate serial: 019CAF1161883721470EE532B71F9FE47250
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
Manifest number: 0541
Signing time: Mon 02 Mar 2026 15:01:17 +0000
Manifest this update: Mon 02 Mar 2026 15:01:17 +0000
Manifest next update: Tue 03 Mar 2026 15:01:17 +0000
Files and hashes: 1: X8IN7HFLtUY7Fk4VpfihOYolUF0.crl (hash: UIenx2yNWIpjOEBPIIJ7FFCPYYHXzg3taeUqjYFLOok=)
2: uvNf-ODFo6lTEuGrLrORQ7H_M9Y.roa (hash: 5BzdF2coA2UrrcFqyEC8X7uFcWtTvQZa39Bk7bbs6js=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:11:61:88:37:21:47:0e:e5:32:b7:1f:9f:e4:72:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Validity
Not Before: Mar 2 15:01:17 2026 GMT
Not After : Mar 3 15:01:17 2026 GMT
Subject: CN=ce20bfceded71001c1635a61ee60080724161afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fa:aa:e3:34:90:be:1c:8c:79:e8:80:72:6f:
ff:53:23:30:8a:f7:d0:ac:6f:ac:94:4c:d8:39:0b:
98:53:4f:a8:cd:9e:97:78:45:a4:d1:57:7b:bb:a7:
25:ab:c1:22:42:b4:bc:54:6e:26:c0:23:30:25:69:
56:64:76:ad:ad:49:44:87:55:89:c7:21:5e:38:4b:
be:23:23:20:0c:94:02:ea:6a:0e:a9:9a:06:dc:a7:
65:cd:4c:2f:9e:a4:6e:31:79:96:75:a5:6b:a6:35:
10:84:9d:b0:3e:61:a5:bd:1c:c4:4e:dd:69:27:76:
b3:c1:ee:b7:02:bf:48:c5:2e:92:a6:7c:ef:cc:69:
b6:31:48:02:d3:59:d1:a7:fd:a6:51:a2:61:03:f8:
6e:42:4c:ef:38:f2:c1:e2:ed:2e:0c:bb:07:e8:52:
19:4c:0b:4b:31:91:07:af:68:03:05:0a:30:84:cb:
1f:4d:af:8b:0c:73:15:c1:cf:f6:66:d9:3e:a7:f4:
1b:73:e2:99:e8:06:3b:e3:eb:53:40:ee:75:5e:25:
68:82:12:c9:c8:47:cc:70:fa:19:f7:ea:bc:47:ea:
6e:e6:f4:58:e3:08:58:e2:ad:da:01:49:8f:f6:0f:
07:e1:72:de:da:31:c5:04:26:50:c9:25:ac:e7:31:
4c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:20:BF:CE:DE:D7:10:01:C1:63:5A:61:EE:60:08:07:24:16:1A:FD
X509v3 Authority Key Identifier:
keyid:5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:57:a0:96:d4:c9:7b:c2:1e:d2:30:67:a6:ec:88:ef:aa:37:
35:f7:e7:07:58:f4:9a:cc:ef:f1:c6:ab:7c:f2:22:a7:b7:c7:
1f:4f:a6:da:c0:41:4c:3e:9b:7f:56:96:e7:f3:c0:22:fb:be:
4e:10:2e:92:b7:7d:44:0f:a7:f5:29:f0:1f:64:05:24:9e:b1:
a8:64:b8:3e:c4:86:84:e2:26:8a:33:ad:5c:db:b8:46:e3:56:
ab:d3:b1:92:93:c9:e7:cf:82:b5:4a:3a:12:f3:67:03:37:2c:
44:83:90:e7:09:2d:48:14:65:85:cf:a5:99:54:4f:1a:ad:c9:
6e:35:8b:50:89:43:d4:68:e7:2a:49:19:c0:f6:78:9a:91:7d:
78:24:8e:fc:85:ca:46:ea:31:93:cc:6c:0d:69:7a:7d:cd:a3:
59:93:4f:d3:4c:9c:ca:ab:7b:e9:9a:00:97:a7:b5:78:01:95:
ae:ea:6d:c9:a4:7e:6e:3b:64:b8:73:e4:6f:27:f0:e2:00:9f:
9d:d5:03:f6:8b:50:8c:23:68:16:55:48:07:7a:88:d8:c7:ce:
61:d7:13:cb:ba:94:40:d8:88:99:23:3c:0c:95:0a:ae:63:1e:
bc:70:b4:48:e4:7d:62:2b:13:4b:89:ac:4e:7e:7b:8b:e4:02:
05:ec:83:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 23:23:48 2026 by rpki-client