Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
File: XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft (raw, json)
Hash identifier: RSfWRiogYl/JjjUzzQJ/tIfuzvfgGOdsYRsGir2167A=
Subject key identifier: A9:61:67:39:7B:FB:21:22:9A:49:0E:63:82:82:C1:C2:65:03:E2:5C
Authority key identifier: 5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
Certificate issuer: /CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Certificate serial: 019D9A3F14634D6CA69B50329A68B744BAF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
Manifest number: 18C7
Signing time: Fri 17 Apr 2026 07:01:58 +0000
Manifest this update: Fri 17 Apr 2026 07:01:58 +0000
Manifest next update: Sat 18 Apr 2026 07:01:58 +0000
Files and hashes: 1: Npw06d3i6OT6W1cbnDgGuSW4ge4.roa (hash: XuYzx4X8wj26HqV6SxCe8B8EhqEndYSd+I3KwtxjVxU=)
2: XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl (hash: 0gBigPM4eGY/Qx/w9ekTDiiNDS3h5VDfBum7QbzssG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3f:14:63:4d:6c:a6:9b:50:32:9a:68:b7:44:ba:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Validity
Not Before: Apr 17 07:01:58 2026 GMT
Not After : Apr 18 07:01:58 2026 GMT
Subject: CN=a96167397bfb21229a490e638282c1c26503e25c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:70:4e:8b:64:e8:5b:ac:5f:2f:b8:2f:35:4d:
f2:98:dc:a1:ee:e9:c1:f7:4c:3b:a3:d2:45:e0:a2:
5c:03:b5:ca:4b:f4:21:57:6b:8c:b9:f1:29:bb:d1:
be:01:7b:4c:95:47:2c:89:67:f7:60:26:7e:7f:df:
19:17:12:a1:c2:f3:fb:41:de:b4:20:8d:5f:e9:e4:
07:a2:47:36:2a:9a:d7:4b:bc:0d:f3:03:14:45:85:
01:45:f8:76:c5:2b:e8:d5:42:2d:d2:e6:9c:71:b7:
1e:ca:26:e1:26:f0:7c:46:21:7d:eb:bc:9d:60:3f:
0b:17:1a:ba:d8:62:fe:81:09:c4:e2:89:af:46:a9:
f8:33:38:fa:62:23:89:8a:89:b9:94:15:4a:61:02:
45:4a:f3:8f:e6:86:21:22:c6:b8:00:fa:a3:f2:1a:
2e:e8:1a:ee:22:24:ef:0c:bf:86:36:21:f7:80:15:
3d:b3:73:d5:4f:5b:ad:fc:76:11:eb:a9:af:10:4d:
b1:80:82:cd:24:5d:79:02:33:b1:fa:b5:c7:7f:9d:
81:b8:5f:17:9d:68:c6:e6:37:3d:c3:e6:02:ea:00:
7b:e0:8c:a6:83:fe:11:57:49:0b:41:fa:da:1a:cf:
77:c9:c0:64:3d:19:b5:10:6d:5f:02:50:dc:73:4b:
57:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:61:67:39:7B:FB:21:22:9A:49:0E:63:82:82:C1:C2:65:03:E2:5C
X509v3 Authority Key Identifier:
keyid:5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:c5:04:d9:7c:df:ec:7f:d7:03:97:74:11:d8:44:d8:da:06:
ef:bd:cf:05:fc:40:c3:73:25:75:07:d7:19:58:85:08:cf:28:
1f:ab:73:b5:b5:38:1d:65:8e:8e:b1:d0:57:1d:35:98:4c:8f:
04:69:16:34:48:b7:67:3c:33:9d:e3:64:f9:8e:8d:ac:33:c5:
a3:b5:15:55:dd:b0:98:68:d4:06:43:53:42:08:d4:71:a7:8b:
3e:34:af:5d:45:68:31:a1:30:99:33:51:66:84:6b:3a:34:88:
7d:b4:84:6a:40:66:d0:2f:25:8c:4a:0b:6e:6f:1d:a5:6f:be:
b3:4e:c8:ab:ac:ea:e9:03:16:a6:6a:5e:89:0b:03:96:6f:ad:
ba:46:06:4f:0a:c1:55:6c:40:7c:02:4d:6a:c7:41:3c:83:6a:
58:6c:c6:7e:0b:8a:96:4f:f7:70:42:c8:b3:9c:5f:79:73:88:
6a:03:88:b1:93:52:fc:62:f9:8f:4d:68:11:be:b1:3d:77:bc:
f9:96:94:ef:95:2e:c4:2a:41:73:3f:0a:e2:07:18:d6:57:48:
e2:74:01:fe:43:d8:59:c4:df:7d:8e:e4:3a:7a:07:71:0c:3d:
03:d3:3f:73:a6:28:59:07:f6:f8:66:25:8d:17:d1:68:68:05:
58:95:7e:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:56:09 2026 by rpki-client