Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
File: XLtvfRHev55LqLH2nDg7j8PErhI.mft (raw, json)
Hash identifier: UQoMZU9U51+YECDpi0W4r3aYVwmG+3iMWXge1JdyD+I=
Subject key identifier: 3F:27:4A:D6:41:73:81:5B:D4:1B:EF:B2:54:05:DB:13:EE:39:68:E0
Authority key identifier: 5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
Certificate issuer: /CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Certificate serial: 019CA9EA895DF4568BD1158DA3D3DF2D8FA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
Manifest number: 0C6B
Signing time: Sun 01 Mar 2026 15:00:45 +0000
Manifest this update: Sun 01 Mar 2026 15:00:45 +0000
Manifest next update: Mon 02 Mar 2026 15:00:45 +0000
Files and hashes: 1: XLtvfRHev55LqLH2nDg7j8PErhI.crl (hash: 9Qi1chZ3sTBcY6CwGWDdLXeD2lVl+U/Z3IhiS1Yb8i8=)
2: eO46gXXoSZwATk8MoN76YPpN1jQ.roa (hash: F/WomuEJ+uQlAxaPHkR6qqNqSNUL0B0LVxqFRNytneU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:ea:89:5d:f4:56:8b:d1:15:8d:a3:d3:df:2d:8f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Validity
Not Before: Mar 1 15:00:45 2026 GMT
Not After : Mar 2 15:00:45 2026 GMT
Subject: CN=3f274ad64173815bd41befb25405db13ee3968e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:95:eb:9b:5c:04:fb:97:ad:ca:bb:30:18:4d:
6c:68:df:64:dc:6e:66:59:36:d5:19:8b:6f:78:f6:
2f:30:8d:d9:b1:70:99:3c:11:cb:d1:b9:93:bf:3f:
0e:fb:2c:29:93:31:44:1a:14:27:0c:c9:49:92:a8:
98:c4:3f:ea:fe:54:6f:d2:4d:54:b7:3c:ac:86:76:
e3:fe:9d:04:fe:d1:97:87:d2:fd:9a:a0:9f:14:18:
1a:c8:1b:c5:21:5a:97:6f:e2:42:83:bf:1b:a3:57:
08:4c:5d:ce:9d:06:bb:24:16:68:a7:1f:02:ef:3f:
f2:3f:15:e1:03:21:84:05:a5:7f:87:3e:4b:f7:8b:
3a:6e:1b:d4:29:f8:6b:b2:ab:48:8e:7c:b0:ef:6c:
92:6b:0f:06:f7:7e:f1:83:a0:d8:67:4b:e0:9b:47:
c1:d1:fa:60:34:f3:44:33:4b:7d:f5:b4:40:5e:b3:
b8:b3:28:f0:e8:af:6d:8e:60:3a:04:bf:f2:43:b6:
47:4b:1a:3e:8c:7a:f3:f1:14:18:3b:d9:e7:23:64:
76:74:80:81:bb:23:5a:26:e2:9a:21:a9:c1:85:65:
c3:b4:7f:d9:e5:72:ed:90:88:f6:38:7a:fa:0a:39:
bf:4e:e5:99:73:6d:55:02:da:83:b2:fb:24:1b:e5:
83:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:27:4A:D6:41:73:81:5B:D4:1B:EF:B2:54:05:DB:13:EE:39:68:E0
X509v3 Authority Key Identifier:
keyid:5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:db:4c:d2:cf:c9:16:e6:ec:5b:41:d4:c5:bc:4e:14:dd:4e:
4c:7a:61:aa:bf:52:b4:a3:af:1d:7e:93:60:8a:51:4e:4b:c6:
fc:89:35:68:86:2e:76:13:2e:11:f6:fa:b2:c3:4c:40:83:61:
ae:ef:27:29:ef:ba:94:18:75:32:3a:88:8b:90:bd:21:af:d5:
b8:78:8e:af:b9:8a:ac:30:d1:4d:79:5c:39:6c:80:dd:8e:24:
8b:b0:56:82:56:f9:f8:87:2d:16:9c:1f:9a:53:47:cd:2d:96:
14:29:6a:a3:53:88:4f:8e:2a:2d:b0:cb:ce:ed:c9:c2:ec:bb:
aa:f1:be:d5:15:3e:e8:ed:90:ac:ec:f5:16:79:6f:d3:9d:02:
ad:03:94:99:11:b2:bf:06:1f:ea:eb:0f:9b:c2:17:1b:9d:22:
70:f3:4e:97:dd:56:11:14:d3:29:e4:56:0b:42:a5:01:7e:4b:
fa:d2:4c:63:31:4d:a6:68:3a:0b:dd:bc:df:a0:d4:59:e3:e7:
2b:53:05:4a:11:2e:0d:e3:60:5e:bd:d6:da:9b:a8:15:77:61:
58:b3:3f:da:b5:ce:b8:53:b1:bc:87:6b:50:ba:d8:f0:de:77:
4e:02:58:1c:db:be:03:2f:a5:69:d1:d9:54:01:65:4f:4a:62:
c6:9f:db:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:17:39 2026 by rpki-client