Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
File: XbdXv1dG8moHySCHAbDVS2m8M2Q.mft (raw, json)
Hash identifier: v3iByIqaBFuY8Dvt63jycg9es/j+24aqQg8QxSPuEqE=
Subject key identifier: AC:EF:55:06:13:47:44:E8:33:E2:6E:E3:3B:3C:AC:07:12:10:BE:3E
Authority key identifier: 5D:B7:57:BF:57:46:F2:6A:07:C9:20:87:01:B0:D5:4B:69:BC:33:64
Certificate issuer: /CN=5db757bf5746f26a07c9208701b0d54b69bc3364
Certificate serial: 019CABD90E6C91A6AD4BFE57D2798784C3F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
Manifest number: 0712
Signing time: Mon 02 Mar 2026 00:00:54 +0000
Manifest this update: Mon 02 Mar 2026 00:00:54 +0000
Manifest next update: Tue 03 Mar 2026 00:00:54 +0000
Files and hashes: 1: XbdXv1dG8moHySCHAbDVS2m8M2Q.crl (hash: cZwBRDctEt1mCWL37S68RFmD8YBo3Od03YVsrwONk9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:0e:6c:91:a6:ad:4b:fe:57:d2:79:87:84:c3:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5db757bf5746f26a07c9208701b0d54b69bc3364
Validity
Not Before: Mar 2 00:00:54 2026 GMT
Not After : Mar 3 00:00:54 2026 GMT
Subject: CN=acef5506134744e833e26ee33b3cac071210be3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:af:be:b4:7b:f3:55:c6:0e:8d:bf:18:cf:9a:
d2:35:b4:4b:96:b6:97:54:02:08:79:53:11:c7:88:
f7:78:22:d1:89:88:52:4a:82:95:11:31:17:72:5c:
30:25:a0:41:2e:f3:1a:ab:92:11:c5:42:32:8e:b5:
b2:8a:f2:b9:f1:63:22:df:a5:d9:b4:0b:ea:6f:e5:
b7:c2:14:4d:0c:15:98:12:08:9d:13:67:8a:c6:f0:
88:52:e0:46:47:6a:8e:48:47:9d:e0:23:df:71:23:
23:9e:2d:e1:72:b8:8f:cd:d4:1b:8f:d5:7c:2d:3f:
00:bf:91:f4:97:45:56:bb:d5:68:8d:11:22:d1:4c:
29:14:88:56:85:87:9d:19:18:91:d3:57:b4:a4:1f:
46:66:95:e5:01:2e:2d:a5:a1:ea:bf:7a:55:7d:c1:
d8:13:47:92:7b:7a:db:cf:28:d9:59:b5:36:25:0c:
5c:d9:79:65:df:c5:4e:60:27:57:8e:b0:55:a6:aa:
9e:52:70:7e:f5:54:3d:5d:b3:35:8f:29:16:14:cc:
bc:d6:30:85:9e:0e:46:42:22:55:31:07:a4:4f:a6:
66:0d:7c:18:8f:7d:fa:ce:57:38:ad:dd:da:e1:28:
a5:15:ec:d6:0c:4d:f1:9b:a1:06:df:4d:f3:63:cc:
fb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:EF:55:06:13:47:44:E8:33:E2:6E:E3:3B:3C:AC:07:12:10:BE:3E
X509v3 Authority Key Identifier:
keyid:5D:B7:57:BF:57:46:F2:6A:07:C9:20:87:01:B0:D5:4B:69:BC:33:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbdXv1dG8moHySCHAbDVS2m8M2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2b3387-3b34-457e-ab1c-3ab52b3bcc3b/1/XbdXv1dG8moHySCHAbDVS2m8M2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:b2:15:ab:d2:67:64:c2:bf:29:9f:97:d2:80:81:38:8f:5d:
58:da:71:be:32:2c:c4:03:b4:51:2e:d4:ed:cc:a2:3d:86:fe:
1a:ac:f5:6b:61:17:5a:cf:75:3c:20:43:f3:08:3f:78:40:89:
49:f4:82:c0:37:c4:15:0d:93:66:ba:be:5d:bc:1f:3d:b7:2b:
24:f3:67:2a:65:73:fb:43:aa:3f:09:ed:7b:68:c7:d3:c4:45:
64:94:5a:4b:ea:25:98:0e:b8:6f:f4:ab:f3:4c:8b:5f:d1:9a:
0c:6d:94:e1:65:14:9f:e2:45:90:a5:bc:fd:75:e0:7c:55:56:
1e:5a:6d:c0:cb:67:55:9a:27:3e:83:8d:6e:31:e5:52:24:bf:
86:46:ab:84:0c:95:4a:f5:c9:c3:4a:84:3e:a2:53:cc:e3:6b:
19:30:46:ad:4e:ff:81:8f:cb:14:ab:58:cc:9a:9a:ef:f8:d7:
0d:78:6d:01:43:28:9f:73:80:2e:ec:ae:d1:0d:15:ca:de:1a:
b5:f9:4a:f8:65:69:e8:4c:bc:55:18:32:fe:92:40:7b:8b:7d:
90:6d:dc:e7:a3:98:36:18:2d:9b:37:c5:4e:15:25:9f:8c:ac:
70:da:c2:c9:15:23:55:53:b1:f9:fb:ca:39:56:2a:52:7d:cb:
71:4e:c2:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:28:22 2026 by rpki-client