Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
File: XzHZebcQ7eIGiCOIGqYRrROvVFk.mft (raw, json)
Hash identifier: IiuZfMSabnFTn6y/eOIlBwUt+4Y8jdYCmAlFrohvFik=
Subject key identifier: 73:A3:CF:D0:30:CD:0B:CA:AD:56:39:B8:7B:9C:B9:34:C6:A7:DE:95
Authority key identifier: 5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
Certificate issuer: /CN=5f31d979b710ede2068823881aa611ad13af5459
Certificate serial: 019CAAFDA2C9F789F42099DE44144F713ED5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
Manifest number: 0DFB
Signing time: Sun 01 Mar 2026 20:01:14 +0000
Manifest this update: Sun 01 Mar 2026 20:01:14 +0000
Manifest next update: Mon 02 Mar 2026 20:01:14 +0000
Files and hashes: 1: XzHZebcQ7eIGiCOIGqYRrROvVFk.crl (hash: kc14Z/RP0Q1w9e/+SZ1f6pGAEcyv1oG3wQ3mGCaVCh0=)
2: sNtqJVBgNOZKvOOoSizpNY6uXfc.roa (hash: qlkBknwlplBkW99VaChbeT/pRtq/ip6OEf221SQRDX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:a2:c9:f7:89:f4:20:99:de:44:14:4f:71:3e:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f31d979b710ede2068823881aa611ad13af5459
Validity
Not Before: Mar 1 20:01:14 2026 GMT
Not After : Mar 2 20:01:14 2026 GMT
Subject: CN=73a3cfd030cd0bcaad5639b87b9cb934c6a7de95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:9f:29:89:a4:b8:34:a6:a4:1f:e8:d1:5b:a4:
2f:99:e8:5e:67:fa:de:94:64:d0:a4:24:c8:0b:1e:
f2:25:ec:8b:c7:87:99:ab:7f:e6:f5:ff:82:58:ee:
04:8d:8d:ff:3c:d4:c4:72:e6:da:fe:8a:e3:63:df:
8d:11:16:fc:62:6a:bc:22:59:02:91:55:e3:63:98:
2f:67:ff:0a:72:f5:bb:d7:bc:bc:16:a5:4f:8a:38:
8a:48:eb:5d:5a:3b:69:7a:6b:1e:5b:a2:4a:78:3f:
5e:f7:f9:2c:c7:eb:a1:47:2a:e4:2c:c5:57:94:de:
4a:af:35:8e:6f:d6:5a:0f:49:3d:81:7f:62:d2:09:
8a:18:e4:2c:67:65:3f:bc:b5:cc:20:75:e0:be:ef:
36:6d:74:1f:13:b2:67:f4:8c:55:62:14:ae:66:b0:
38:fb:08:2c:3b:ec:8c:6a:ad:96:98:2a:77:18:1f:
8f:8d:c7:2c:8d:02:fa:e5:bb:47:c5:19:89:14:50:
6f:dc:2d:0b:59:55:07:69:4f:e5:c2:3a:bb:1a:28:
fd:58:7b:36:72:bb:c4:e2:8e:b1:f8:6c:8d:f6:5d:
f9:f7:f2:c4:b2:b3:9a:16:04:46:fc:de:f3:e0:08:
b2:7c:84:e1:bd:6c:48:54:b3:f8:d6:0d:2f:54:29:
66:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A3:CF:D0:30:CD:0B:CA:AD:56:39:B8:7B:9C:B9:34:C6:A7:DE:95
X509v3 Authority Key Identifier:
keyid:5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:b6:26:1a:4e:16:c1:ef:d6:8c:6f:79:31:f7:47:c0:9b:41:
06:3a:02:85:6f:1b:d1:72:22:d7:be:e0:8d:de:31:9e:22:c3:
a9:fe:2a:f3:df:6c:c2:10:ca:7c:c9:d6:d5:60:79:0b:84:64:
0f:b3:92:73:57:ca:28:f6:ff:0f:b8:32:43:f2:51:3b:c4:16:
2a:a9:c4:b1:0f:63:fa:56:fb:4c:4d:66:41:6f:af:73:b6:44:
af:d1:a0:54:26:45:b7:eb:45:6e:fb:f2:48:09:b3:f9:d5:0b:
67:87:ab:df:04:ff:ae:b5:5b:cb:4a:5b:72:28:40:ec:b5:ec:
ac:b1:5d:b3:ab:79:50:b2:04:96:19:e6:85:42:d2:11:e3:94:
84:ba:37:44:1b:b4:84:4e:4d:71:75:28:a1:fe:01:fc:b6:36:
ae:40:c8:67:0d:61:30:25:63:f3:db:f8:06:e5:4d:17:fc:d9:
7b:18:51:78:ce:20:16:70:67:31:36:0c:4a:48:8b:4e:87:c8:
e5:a8:6e:42:e8:a1:e6:51:30:03:34:aa:55:f4:a8:c3:09:2d:
7d:a3:63:b2:a6:24:d0:2b:64:96:92:6a:8b:a0:3f:8f:e1:cf:
3b:7a:ac:91:e9:6f:43:49:7a:e1:c6:87:30:66:0f:93:8f:ce:
81:4f:12:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:48 2026 by rpki-client