Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: kb6SBNAKIyizXaQydcKi5pxisbnLUqr0wD+6cED/Z5U=
Subject key identifier: 69:FD:03:8B:BF:BA:2F:26:D1:73:D4:07:71:3F:09:EA:EE:06:1D:A3
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 019DA5675212CB109B36B7B4B4D788D16D60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 1272
Signing time: Sun 19 Apr 2026 11:01:44 +0000
Manifest this update: Sun 19 Apr 2026 11:01:44 +0000
Manifest next update: Mon 20 Apr 2026 11:01:44 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: TP0tBWLBjwidb544pVe0Vvy0Xmi1wlp+dVVnCtVz34w=)
2: xJQkEE-myuee2xusX84h4jOXGkk.roa (hash: bgfimRITzgygmGvHr8W4DzraqoP9/oX3mukFAiSIHn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:67:52:12:cb:10:9b:36:b7:b4:b4:d7:88:d1:6d:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Apr 19 11:01:44 2026 GMT
Not After : Apr 20 11:01:44 2026 GMT
Subject: CN=69fd038bbfba2f26d173d407713f09eaee061da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:6d:f1:e2:92:a8:a9:cd:28:b2:1f:dc:0f:6c:
2e:47:80:4a:01:50:34:e3:ab:c4:4f:17:7c:60:d8:
91:9f:c8:64:2e:86:6c:f7:db:b7:d2:a8:a7:be:85:
30:9c:8a:e4:49:3a:9b:ef:61:a2:0a:d4:7e:f4:aa:
fd:57:15:a7:76:7e:a0:6b:4a:0a:07:cf:cb:46:34:
40:e2:e3:5a:0d:06:db:16:1c:89:df:28:94:fe:f3:
e6:fc:48:a7:0c:db:23:90:f3:69:58:7e:de:d6:b5:
34:34:91:f0:c7:33:65:31:22:f3:48:0a:88:1c:a4:
e8:66:78:81:01:c5:2a:ed:10:44:fc:47:0d:7d:67:
0c:07:5b:aa:3e:e5:ae:c1:ee:06:1e:59:01:df:e8:
c0:86:d9:8e:b7:16:d2:d9:9e:9e:ed:d2:43:34:49:
34:f3:78:01:18:92:8e:2c:bd:c6:56:80:64:a7:bc:
ae:f4:83:80:ce:93:09:5f:4d:6f:cf:4a:90:b0:47:
29:dd:b6:a7:ab:9a:d5:12:f8:65:f9:1d:26:7c:d0:
66:83:f1:8e:16:37:3d:18:fa:26:38:60:66:4c:39:
a0:87:b2:34:9b:ba:ef:79:fa:18:9e:6d:1b:66:a8:
99:d5:41:10:21:6c:b3:5a:2e:6c:1c:5d:ff:98:cb:
96:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:FD:03:8B:BF:BA:2F:26:D1:73:D4:07:71:3F:09:EA:EE:06:1D:A3
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:e7:34:df:f9:20:fa:86:e5:41:72:82:53:80:37:e8:7e:28:
2b:3f:ad:81:fc:6b:2a:15:22:e8:66:c4:15:4a:4a:1d:2d:06:
0f:9d:ea:ba:2a:f6:f6:a9:2e:68:27:26:b2:19:59:c6:b1:27:
80:c5:63:03:c9:63:ce:9c:6a:ce:ed:ed:22:4a:77:e1:c2:0e:
b6:9c:f9:6f:e1:5f:2c:65:13:56:fd:97:f4:e0:f6:5d:b2:fa:
fb:59:ea:40:ee:f4:b6:44:66:49:fb:3d:74:15:45:9d:54:13:
4d:2a:0c:1a:b1:e6:00:1d:e3:fa:69:31:84:d5:70:d4:df:bc:
ef:22:5a:be:00:f9:51:6a:6d:55:df:a9:1e:da:4a:37:13:19:
12:be:a7:de:61:30:dd:b0:b5:55:09:72:11:67:c0:60:d3:70:
89:26:ff:a2:6e:f8:73:ae:22:10:86:10:f0:30:96:28:8c:70:
ab:a1:a7:b7:af:39:d6:cf:3e:c5:40:b0:9c:aa:53:65:4e:d4:
15:13:d4:ad:aa:ee:2a:03:47:44:dc:c7:52:3b:cc:92:21:a4:
7f:ba:37:48:38:3e:f4:33:3b:2f:5a:aa:d7:f9:5e:b4:65:0c:
bc:95:da:0a:54:03:74:b8:c1:d4:b5:9f:5c:d6:2d:09:65:90:
14:2d:70:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:38:31 2026 by rpki-client