Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
File: XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft (raw, json)
Hash identifier: JPxrcvnj0OV7XRGY8MssSzi/56uK7qp/kmbyD4KP3Mw=
Subject key identifier: 2D:80:AE:96:0B:A9:92:E0:1E:99:B1:34:1B:40:26:3F:D3:AE:9E:F0
Authority key identifier: 5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
Certificate issuer: /CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Certificate serial: 019CAA21972FE5CBC035D96D82089ADABC0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
Manifest number: 0A56
Signing time: Sun 01 Mar 2026 16:00:53 +0000
Manifest this update: Sun 01 Mar 2026 16:00:53 +0000
Manifest next update: Mon 02 Mar 2026 16:00:53 +0000
Files and hashes: 1: 3LpmzTys_0t26Z_NyTjqsfRDEuU.roa (hash: 22GdpmbhuppIRtDMcKbTPGerqLb1bcYGTYOsCbxzp6k=)
2: XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl (hash: XipaLzWyA4BDcL+uyhXDqNxopTBSVqF0F+TY3vFuw8Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:97:2f:e5:cb:c0:35:d9:6d:82:08:9a:da:bc:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Validity
Not Before: Mar 1 16:00:53 2026 GMT
Not After : Mar 2 16:00:53 2026 GMT
Subject: CN=2d80ae960ba992e01e99b1341b40263fd3ae9ef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:85:bf:71:63:c2:5b:6a:83:21:e1:38:f1:b6:
48:ec:c0:36:99:27:7a:c2:22:9f:6f:ae:fe:44:d0:
fb:11:fb:6e:b4:ca:fb:41:eb:17:4b:97:1f:0e:07:
a4:2c:1a:36:cf:8a:8e:e5:f9:b0:bc:b2:a4:fc:72:
b2:ff:45:28:5d:3b:e1:70:db:aa:90:c9:27:13:31:
10:93:e0:38:e4:b0:f3:76:0d:50:40:4a:92:37:42:
ed:1a:4f:6c:e3:df:d5:f3:22:08:a8:24:3e:c3:16:
f3:d7:e9:53:9e:70:f4:61:85:22:cc:e1:74:04:8c:
2b:bf:e7:14:14:9b:01:57:9c:df:3b:2b:1f:fa:e8:
04:83:ea:d6:e9:fe:d5:54:d6:6e:2a:3c:04:69:7a:
5d:6e:40:a9:ff:a2:77:c6:d6:74:f6:cb:af:1c:0f:
88:9f:cf:83:bc:d1:8d:97:37:26:3d:fa:b6:29:57:
4c:81:21:4a:83:e3:d2:d4:03:02:03:76:b2:c2:e3:
4a:7b:52:42:52:74:5f:df:cb:ee:42:13:9c:f8:04:
b6:ed:70:6d:d0:dc:0c:66:a6:2c:c5:42:19:49:e4:
1d:54:07:4c:1b:e2:04:8e:45:40:e1:83:54:a4:c0:
30:7f:c2:f8:2f:e4:dc:06:b3:3c:57:44:fa:ea:5c:
b0:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:80:AE:96:0B:A9:92:E0:1E:99:B1:34:1B:40:26:3F:D3:AE:9E:F0
X509v3 Authority Key Identifier:
keyid:5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:a3:3c:d9:8e:06:b0:ce:d8:4e:8f:eb:01:66:f8:9e:32:bc:
a4:b9:51:39:61:ee:a0:0e:09:2c:1c:f4:34:e6:3c:6a:b6:3b:
77:3f:d1:52:d2:2f:ac:f9:74:bc:a5:0c:dc:3f:fe:ef:ca:6d:
42:de:d0:cb:88:5f:a0:04:3e:31:bd:52:0a:6c:69:2d:3d:55:
cf:c0:84:f2:93:16:64:b9:88:21:8d:94:f4:a9:7e:96:90:11:
7a:29:70:6a:58:ce:9e:18:56:07:c6:a2:54:85:5f:89:82:c1:
a9:ab:58:51:e9:24:27:d4:59:a8:a3:83:bf:a0:6a:7d:1e:8d:
30:b5:9f:fe:fa:5b:8c:f4:c1:fa:93:db:58:42:ed:3c:e5:f7:
07:04:88:e6:b3:a1:49:94:bd:dd:ed:02:ef:4f:e2:21:27:f3:
1e:31:83:c8:5f:3b:17:63:b4:f1:41:22:24:2e:08:6e:ba:6f:
b4:49:1a:2e:c1:82:d8:bb:ac:21:7c:48:f3:6a:2d:0b:00:61:
ae:31:2b:42:ec:97:5e:62:5f:fe:a7:6a:f3:19:06:e6:70:bb:
a3:64:b8:6b:a8:0e:f5:81:63:87:8e:e0:0a:9c:9c:1f:df:f1:
a6:a4:49:89:f0:b0:0c:93:dc:2b:1c:c9:08:3a:46:68:0f:20:
91:3a:1a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:10:08 2026 by rpki-client