Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
File: XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft (raw, json)
Hash identifier: 7QL5wf4bnXFPhVuj4SHzOpTqbBIc5UHGxzsW5zKtvos=
Subject key identifier: 4C:54:F9:23:18:DC:95:77:F6:35:83:0F:F6:1D:CD:EB:A8:AE:55:37
Authority key identifier: 5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
Certificate issuer: /CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Certificate serial: 019D99629E30B929CE6004F6C56813B9B919
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
Manifest number: 08D3
Signing time: Fri 17 Apr 2026 03:01:10 +0000
Manifest this update: Fri 17 Apr 2026 03:01:10 +0000
Manifest next update: Sat 18 Apr 2026 03:01:10 +0000
Files and hashes: 1: XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl (hash: r7S39LaW1LaXjaB1GPnUDpOg21ISCFsr0omt+EizjRk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:9e:30:b9:29:ce:60:04:f6:c5:68:13:b9:b9:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Validity
Not Before: Apr 17 03:01:10 2026 GMT
Not After : Apr 18 03:01:10 2026 GMT
Subject: CN=4c54f92318dc9577f635830ff61dcdeba8ae5537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:12:df:fc:fd:40:1d:88:00:e3:8f:75:76:cf:
5d:87:14:cb:94:f2:c0:5a:a5:14:73:d2:df:1d:4d:
e2:85:d5:19:d2:5c:21:e8:57:4b:53:2b:7f:36:e1:
bc:55:cb:14:77:c5:61:f4:d6:a5:2c:46:de:c9:82:
5e:f1:fe:12:2f:ea:7a:bc:ec:e5:cb:6d:39:0c:ec:
60:ef:ef:02:e2:0e:33:67:4f:d9:44:38:08:e9:f3:
83:eb:a9:1b:d9:21:ba:e5:48:e0:7f:93:41:36:83:
a9:d3:97:8a:08:7d:c1:b3:eb:8a:f5:d0:78:40:9b:
e4:50:9b:3a:4f:ba:d8:49:ae:7c:3d:a9:e4:82:fb:
7d:88:c5:01:f7:f5:c7:d4:3b:9d:fe:e7:fd:fd:2b:
e6:a7:23:1d:08:b9:11:27:18:13:7b:62:25:d8:80:
42:97:a4:2c:89:52:b5:0b:c4:20:bc:41:15:9f:fc:
c3:0a:5f:8a:62:9f:18:06:70:a4:6f:c1:a8:95:ee:
38:0b:cf:21:34:a1:b6:27:e7:8d:7f:fe:fd:17:ce:
75:b8:6f:03:a6:82:2f:28:11:94:d0:90:d0:3b:ba:
fc:28:e9:5b:f4:b7:19:6a:40:ed:66:f7:e3:c5:fa:
c6:f2:03:c7:df:15:f3:1f:88:c2:39:ee:23:db:19:
4f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:54:F9:23:18:DC:95:77:F6:35:83:0F:F6:1D:CD:EB:A8:AE:55:37
X509v3 Authority Key Identifier:
keyid:5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:3c:d2:c3:37:9e:53:6e:08:7c:79:78:3c:8e:51:02:1f:1a:
c5:10:76:8a:8b:36:91:de:a0:dc:c4:5d:0d:50:a4:f1:9b:36:
ef:cf:05:a1:4a:3e:c7:16:c5:b4:9e:36:96:0e:3d:d3:eb:9f:
b8:2c:8e:8f:ad:ad:a7:ba:fe:13:0e:17:09:b7:58:10:a4:87:
56:e6:e3:c6:79:e9:14:69:e9:12:d5:f5:bd:5b:02:7b:70:3d:
40:a7:5d:2d:9c:40:34:5f:71:58:d5:9a:9e:6e:34:9f:3d:f7:
3f:89:45:77:1a:c5:6d:32:59:d8:61:b7:b3:3f:ee:79:4e:98:
8e:ae:a8:70:a5:08:b1:5a:68:5b:ba:c5:9a:0e:8d:1c:54:3f:
aa:ec:5b:35:b4:84:7a:db:d7:48:62:24:33:74:82:1b:60:4f:
b4:5a:2d:1e:1d:0e:00:64:e0:10:8c:bf:6c:09:58:98:8d:6d:
4c:7a:aa:b4:84:84:ff:3a:30:58:b5:0f:af:5b:8a:2c:9d:1e:
0a:dd:0e:f4:01:aa:2b:f6:4f:8e:25:20:d2:ba:26:35:e9:9c:
9e:22:57:29:f4:64:1f:e2:c4:20:37:34:ee:c7:28:39:56:a2:
06:a4:08:f0:63:dd:ed:9b:ba:8e:25:9c:05:08:ee:62:40:0f:
ea:a6:18:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:27:29 2026 by rpki-client