Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
File: XYLKb462haVz5dHZH48GEhqwKjc.mft (raw, json)
Hash identifier: EeaBVZy3wTL8gWpEdSVMCq/hML3rozkeNVVMlaA28Qw=
Subject key identifier: 7D:C7:F2:81:1E:6F:5E:CF:07:B3:5E:E7:66:B6:1F:AD:C0:FE:5D:83
Authority key identifier: 5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
Certificate issuer: /CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Certificate serial: 019D9B5053F2172AD01726D53A1149EBDF5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
Manifest number: 14FA
Signing time: Fri 17 Apr 2026 12:00:25 +0000
Manifest this update: Fri 17 Apr 2026 12:00:25 +0000
Manifest next update: Sat 18 Apr 2026 12:00:25 +0000
Files and hashes: 1: Sg_4XUAI-4zoY2AzgRoGFITRYgE.roa (hash: J1EWDPsgpuehOfFX0CglsLJx+tt5cw97sY3WgurbJXo=)
2: TeQy6kFDHKNYmWvI94KK1SajumM.roa (hash: 9uvICF7tqz4KyCQG2zRzp+9JspsGn3aZOu1Zg1a40nY=)
3: XYLKb462haVz5dHZH48GEhqwKjc.crl (hash: CCt197HzMRAFxf9A0YMQuC45NzvfVzzXtTBgggvwbZM=)
4: dhOZf_4fAgQZi4_moQSI8o9EFj0.roa (hash: 5T/3rUQwrhAAxuFwErHVP6jvrc57b61OVidSPKCnMBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:50:53:f2:17:2a:d0:17:26:d5:3a:11:49:eb:df:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Validity
Not Before: Apr 17 12:00:25 2026 GMT
Not After : Apr 18 12:00:25 2026 GMT
Subject: CN=7dc7f2811e6f5ecf07b35ee766b61fadc0fe5d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:02:1e:6c:eb:41:fe:a3:88:ca:c9:c0:3a:70:
56:52:65:1d:a1:1c:71:12:98:5a:f6:a3:18:ba:01:
56:90:ae:ca:0a:7d:c4:50:41:48:66:97:02:4c:c7:
63:ea:82:98:84:36:cc:61:20:8a:70:7c:89:bc:2d:
02:c0:66:3f:5c:c5:ef:aa:a9:df:ab:0f:17:a6:ec:
43:b4:c5:95:de:04:da:b5:bc:b7:24:bc:62:d4:4d:
a1:35:10:9b:d4:67:5d:64:99:0d:d0:d8:eb:06:a2:
e6:fc:8e:45:c4:17:3a:76:51:f2:2c:0c:cf:2d:05:
8b:b0:c5:31:2c:f9:0d:56:54:76:73:f7:84:4d:7f:
3e:76:c7:2d:4d:07:93:12:b9:71:45:5c:ee:a7:3e:
8b:7f:e9:66:bb:15:ec:31:20:68:1e:4e:f2:e3:99:
17:e1:be:41:94:c3:61:c8:72:5a:07:29:0a:91:0e:
c8:c8:70:bf:bb:b6:86:e2:16:13:c9:f8:aa:f1:ea:
5d:3a:b7:9d:d0:a6:78:19:dc:dc:dd:58:1e:e4:4f:
1b:0d:5c:00:f3:65:c6:54:f4:04:e9:0f:db:93:c0:
99:df:ff:a7:68:aa:f9:60:05:46:8a:05:71:e5:08:
25:30:2f:bf:39:46:47:ac:16:0f:9f:52:61:68:99:
1b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:C7:F2:81:1E:6F:5E:CF:07:B3:5E:E7:66:B6:1F:AD:C0:FE:5D:83
X509v3 Authority Key Identifier:
keyid:5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:d5:ee:69:d0:3e:cb:f4:a9:73:8f:cb:ef:4f:05:a6:a5:e9:
83:0c:7f:2c:95:20:43:c0:04:e4:7b:6d:c6:88:f1:72:9c:56:
72:1f:73:a9:e0:9f:8d:c0:d7:0b:58:16:63:c2:72:cc:26:8e:
20:30:bd:6b:9b:ef:05:04:b6:4f:35:4d:85:85:af:73:6f:b8:
c7:50:a0:7c:0e:8b:30:51:1c:b7:12:2a:b1:d6:cb:e9:6b:99:
60:f6:fd:51:67:7b:50:02:88:e8:10:37:26:ce:14:c7:d0:7b:
97:c9:ca:d3:3d:64:c6:45:e2:8c:86:08:d0:f9:58:b4:8b:93:
d6:49:57:7c:f5:a4:13:36:64:b8:2a:4c:0f:5b:68:cb:83:c0:
1c:37:05:e6:2f:1b:c0:4c:78:8b:04:ae:95:38:60:e7:b8:79:
6a:86:5e:2b:ec:52:92:93:78:bf:52:f3:e9:60:7d:90:e9:bc:
4f:b9:e2:c1:7d:89:3c:40:9e:08:2b:db:58:e3:bb:c5:87:26:
2f:46:cc:21:79:05:b4:eb:5e:ad:8a:7c:94:e2:2b:10:d0:6f:
d4:94:27:22:20:54:be:8a:51:15:50:2e:1a:06:c9:c1:3d:23:
d4:9c:79:ff:e3:27:bc:7c:54:a1:90:cc:22:98:d7:a2:e3:7a:
b3:3c:18:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:05:21 2026 by rpki-client