Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
File: XzHZebcQ7eIGiCOIGqYRrROvVFk.mft (raw, json)
Hash identifier: jtkQMCiQIMp87RNAyE9wviWlS7f12hxnJ3WuHmi3Krg=
Subject key identifier: DB:B3:15:BF:AA:3D:E4:23:42:C1:2F:98:75:83:6B:A3:7F:72:38:83
Authority key identifier: 5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
Certificate issuer: /CN=5f31d979b710ede2068823881aa611ad13af5459
Certificate serial: 019D9886B9E96869FED40CC90535141EAC72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
Manifest number: 0E76
Signing time: Thu 16 Apr 2026 23:00:59 +0000
Manifest this update: Thu 16 Apr 2026 23:00:59 +0000
Manifest next update: Fri 17 Apr 2026 23:00:59 +0000
Files and hashes: 1: XzHZebcQ7eIGiCOIGqYRrROvVFk.crl (hash: SaSZGGFbdu3/AnLQYo0wYTza7yXHTLihG6mQ4Y1TSb0=)
2: sNtqJVBgNOZKvOOoSizpNY6uXfc.roa (hash: qlkBknwlplBkW99VaChbeT/pRtq/ip6OEf221SQRDX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:b9:e9:68:69:fe:d4:0c:c9:05:35:14:1e:ac:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f31d979b710ede2068823881aa611ad13af5459
Validity
Not Before: Apr 16 23:00:59 2026 GMT
Not After : Apr 17 23:00:59 2026 GMT
Subject: CN=dbb315bfaa3de42342c12f9875836ba37f723883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:57:c9:f4:29:5c:99:37:9c:c7:68:f4:96:23:
b3:d9:41:88:4d:1d:71:71:d8:e2:3a:59:89:9a:93:
58:1c:b5:a0:7b:94:39:ac:3d:f4:27:ab:c1:de:73:
f0:b6:79:4a:73:94:e9:04:69:88:a6:db:5c:f6:81:
b7:f3:ea:61:a4:b6:3d:f6:75:b2:29:6b:35:ec:cb:
29:0c:8a:f7:30:15:56:d0:16:b9:54:8b:3e:b6:77:
13:d3:63:de:2f:30:f6:13:4d:22:b6:6e:7c:d2:66:
06:0d:7b:c5:49:f1:54:93:4e:28:fe:ab:30:4b:83:
f0:41:82:fe:91:48:ff:96:64:ec:75:1c:f7:9c:27:
e1:18:d8:67:91:3a:42:98:7a:4f:f3:da:38:89:26:
65:0e:ec:8e:32:57:be:08:76:65:94:ee:a3:cf:8b:
fa:e6:cc:8b:3e:ea:14:c2:ff:dc:1d:90:0e:9f:c6:
f7:fa:62:a5:ec:62:af:4c:68:3b:1d:ff:88:33:7d:
63:39:ce:a0:a0:ee:c2:a4:18:26:96:63:c1:58:a0:
aa:43:02:d5:13:3d:82:98:9e:12:0e:97:ed:e5:3c:
1f:f9:f9:43:b7:23:3d:f7:e0:a2:b7:8e:7b:f5:d4:
9d:22:81:d7:19:19:b5:9a:4c:b9:6d:21:40:28:1b:
bb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B3:15:BF:AA:3D:E4:23:42:C1:2F:98:75:83:6B:A3:7F:72:38:83
X509v3 Authority Key Identifier:
keyid:5F:31:D9:79:B7:10:ED:E2:06:88:23:88:1A:A6:11:AD:13:AF:54:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzHZebcQ7eIGiCOIGqYRrROvVFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/7de28d-3749-4d02-be9c-41c66458dd73/1/XzHZebcQ7eIGiCOIGqYRrROvVFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:78:3e:df:bb:72:42:e9:9f:ce:8a:80:6f:fe:a4:b8:dc:85:
2c:1e:1e:e3:4d:a3:69:51:45:c4:f3:83:a3:33:be:2c:47:4a:
29:96:c9:c5:5f:b7:f4:ca:9b:28:94:1e:d2:79:70:03:5f:5e:
6f:da:ac:55:57:d5:18:de:a1:87:f0:34:64:74:e1:84:3d:90:
a3:ac:a8:94:29:07:f9:60:bd:e8:55:59:76:72:77:61:ad:7c:
05:f1:26:3d:c8:1a:7d:51:a5:13:da:fa:f2:b6:30:98:31:63:
38:88:8c:56:c4:b5:83:17:ad:85:87:d1:f4:68:36:f5:f4:1c:
9d:ec:7c:1a:46:0d:79:08:cf:1d:72:d3:c1:0c:a4:5b:6c:70:
3b:1b:72:3c:94:1e:cb:48:84:44:14:50:cc:29:6a:2f:d9:8c:
04:d8:e5:aa:f3:f9:b8:91:21:ff:52:e8:89:4c:9e:f1:12:25:
63:06:b2:74:dd:70:b8:b6:03:de:c8:f9:53:1a:b2:46:c9:f5:
9f:34:82:eb:5c:6c:69:b6:ca:14:ca:8d:03:d9:7e:b6:d2:60:
32:f1:87:6e:22:21:b6:0b:7b:5d:71:9d:bd:c2:9f:f8:44:9d:
4a:7d:a8:2b:88:56:2c:74:40:ab:c5:9f:98:2b:c1:6b:f6:a8:
92:9b:9a:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:08:47 2026 by rpki-client