Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
File: XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft (raw, json)
Hash identifier: 2LZsTpUlwg8LDsKB9pbIh7+qs5tnRe1jOn9Vub8h4FE=
Subject key identifier: 35:4F:DB:5E:55:B8:66:48:C3:25:48:F6:CC:2C:42:76:29:1B:35:99
Authority key identifier: 5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
Certificate issuer: /CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Certificate serial: 019D999979078B411216BB4B01FC23A26A30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
Manifest number: 0AD2
Signing time: Fri 17 Apr 2026 04:01:05 +0000
Manifest this update: Fri 17 Apr 2026 04:01:05 +0000
Manifest next update: Sat 18 Apr 2026 04:01:05 +0000
Files and hashes: 1: 3LpmzTys_0t26Z_NyTjqsfRDEuU.roa (hash: 22GdpmbhuppIRtDMcKbTPGerqLb1bcYGTYOsCbxzp6k=)
2: XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl (hash: 7wN1HyiVi4VomA9plGw3AyyesSBQD7zKDMBQOECDgaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:79:07:8b:41:12:16:bb:4b:01:fc:23:a2:6a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Validity
Not Before: Apr 17 04:01:05 2026 GMT
Not After : Apr 18 04:01:05 2026 GMT
Subject: CN=354fdb5e55b86648c32548f6cc2c4276291b3599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bb:43:6c:6e:68:12:d7:42:45:d0:12:76:26:
e3:20:1e:be:fb:db:25:f6:bd:09:1c:94:c4:70:4a:
2c:e5:40:d0:d2:82:64:cb:ee:2b:29:dd:52:06:be:
ed:86:33:4b:bb:f9:c1:5c:dc:a7:a6:92:af:69:27:
1b:50:0b:1c:75:eb:1c:8b:4b:c4:b9:07:1e:42:f0:
00:8e:31:58:1d:b3:96:83:15:32:53:50:da:01:9c:
b8:d7:3a:38:ae:5c:93:e6:96:84:ad:64:4b:06:6d:
45:d7:10:b2:f7:82:4d:66:06:c0:05:f6:5f:ef:cd:
53:23:09:3e:48:64:23:fd:74:1b:98:15:28:be:a0:
80:fb:3a:6a:7c:11:04:77:c6:54:93:ef:e4:3f:b4:
4d:18:6a:da:5b:f3:50:f7:a7:7b:2c:53:bc:4a:97:
cb:51:56:6c:db:8f:d8:11:65:6f:eb:9d:2e:fe:d3:
66:3b:24:70:6c:40:6f:50:85:f2:ab:62:95:87:6c:
13:79:b4:7f:8d:bb:69:7f:a9:1e:cf:b3:0f:06:e0:
fe:29:f4:4d:b3:90:9b:20:4b:68:5d:3f:67:58:75:
f8:f4:1c:80:d5:c8:a1:39:a1:0c:24:5d:31:e5:d0:
8a:cd:02:fd:c2:32:08:f2:fb:54:00:b0:31:bb:97:
b3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:4F:DB:5E:55:B8:66:48:C3:25:48:F6:CC:2C:42:76:29:1B:35:99
X509v3 Authority Key Identifier:
keyid:5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:ff:cf:a1:4f:a6:a4:29:10:a6:fa:81:d1:13:d2:eb:66:30:
48:c6:0f:55:0b:f6:d6:54:94:da:84:d4:8d:80:ff:6c:fa:76:
7d:d6:a4:19:8b:29:f9:27:1f:7b:94:be:15:b0:50:68:7b:a5:
b1:2f:1a:a5:1e:e9:19:b4:78:df:17:ea:ca:f3:82:31:09:d1:
f1:e5:a3:78:a9:58:e9:d6:22:b9:83:bb:b9:d0:ff:c2:ac:2a:
a7:26:60:f5:0f:33:3a:f9:dd:25:41:73:1e:34:c3:81:6d:a4:
41:60:fe:52:50:1c:9c:c9:5d:0b:cb:f3:df:b2:ec:04:52:4f:
99:79:3a:51:ed:c4:78:66:53:52:47:17:38:75:61:3e:00:95:
1f:36:fa:b0:3a:0a:24:42:b8:01:42:3b:9c:f1:a3:47:2f:dc:
2e:bc:0e:be:05:9c:86:a7:c5:20:b7:56:b9:83:d5:95:7b:9a:
ec:dd:45:d0:e0:ca:85:bb:03:43:27:bd:62:8f:89:f7:f4:16:
af:9c:11:51:78:6f:af:51:f6:06:13:91:f2:78:48:8b:c3:42:
ba:a2:c6:58:00:12:b7:6d:8c:82:12:b6:7b:1b:e0:0e:c1:b6:
00:a6:10:87:bb:0f:dd:2c:00:68:b3:05:69:fa:20:f0:d8:ba:
e0:da:79:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:26:00 2026 by rpki-client