Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
File: XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft (raw, json)
Hash identifier: idynllJMnZrNZiyps/1c1v8wO9EJOfTLk1iLfLN80cE=
Subject key identifier: A4:8F:20:EE:44:43:7F:B6:E2:34:0F:58:8A:AB:36:1F:B0:71:5E:6A
Authority key identifier: 5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
Certificate issuer: /CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Certificate serial: 019CADC852F9EABD7B27E2A22F248E5E741E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
Manifest number: 0859
Signing time: Mon 02 Mar 2026 09:01:52 +0000
Manifest this update: Mon 02 Mar 2026 09:01:52 +0000
Manifest next update: Tue 03 Mar 2026 09:01:52 +0000
Files and hashes: 1: XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl (hash: 2oHBjG0lkmytFdvUEUuZeXYiaM7Dl/DEHEIh1GgHh6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:52:f9:ea:bd:7b:27:e2:a2:2f:24:8e:5e:74:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d21968e91c2f47f1b07c1f35fe7d263c56d0495
Validity
Not Before: Mar 2 09:01:52 2026 GMT
Not After : Mar 3 09:01:52 2026 GMT
Subject: CN=a48f20ee44437fb6e2340f588aab361fb0715e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:71:7e:03:cc:45:a1:f4:1f:74:a7:02:92:85:
55:c1:3a:95:ba:6a:39:7a:fd:b9:89:5e:cd:93:8f:
1e:ce:31:27:2c:5e:5a:cc:9a:ca:f1:93:39:5d:6c:
ba:b6:a9:7f:2c:f1:80:04:6f:67:96:c8:40:34:c6:
e0:c9:32:fb:95:50:f1:45:a8:91:0a:06:81:7e:56:
f4:13:44:e8:7e:dd:94:f0:5b:ad:09:7a:93:88:7d:
3c:7f:39:2b:1c:62:a8:24:d9:20:8c:a9:f6:34:d6:
60:51:1d:64:24:d3:0f:2c:b3:34:c7:50:7f:eb:1c:
47:70:bb:8c:e5:6a:17:ba:71:c0:64:3f:d6:65:c0:
20:32:37:85:37:ae:2f:f5:0a:08:9f:7e:dc:60:7d:
70:14:5a:1d:6f:2e:a9:fe:e4:17:ff:58:a3:d4:a5:
65:46:8e:7e:ca:93:e3:58:b6:8b:80:7e:7b:bf:ef:
f8:40:4e:a6:2f:19:b1:1c:9a:8f:ff:db:c7:1d:48:
6a:f5:3b:68:77:c1:2d:67:ec:70:6d:52:82:5c:10:
3d:89:21:a5:a3:d5:17:73:7e:20:75:81:90:9c:aa:
36:f2:e0:eb:5f:e8:93:68:d9:eb:23:08:8e:f1:01:
22:e8:44:9b:38:2f:f2:26:a7:34:ca:a9:c7:02:1a:
d1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:8F:20:EE:44:43:7F:B6:E2:34:0F:58:8A:AB:36:1F:B0:71:5E:6A
X509v3 Authority Key Identifier:
keyid:5D:21:96:8E:91:C2:F4:7F:1B:07:C1:F3:5F:E7:D2:63:C5:6D:04:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XSGWjpHC9H8bB8HzX-fSY8VtBJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/8f015d-a7e4-48d8-8705-1ec37465d3af/1/XSGWjpHC9H8bB8HzX-fSY8VtBJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:3d:73:f5:e5:bb:db:d3:75:eb:ca:d0:81:8f:39:fd:47:5c:
b4:b3:39:21:48:24:4d:79:13:d8:1c:0b:5c:d9:b8:45:f1:b9:
3e:73:39:0d:48:d7:d1:55:ce:ce:3b:7b:93:f4:da:3d:44:43:
7b:18:11:66:36:f7:11:08:0c:06:56:52:a4:43:92:2a:14:98:
de:3a:64:f8:d1:ae:21:1d:63:2e:f4:86:32:2c:e5:30:ec:b4:
f3:5b:5c:8f:2f:0a:1d:ca:68:10:e3:d0:3f:3a:17:68:d0:da:
91:6e:e7:35:75:2e:b4:e7:72:31:8b:8d:ac:b6:d1:62:c6:13:
26:02:94:67:d8:2d:3f:fc:a2:ca:d2:e0:70:a8:8b:01:d7:81:
98:3a:d5:9d:a4:4c:f2:95:71:91:71:ee:5c:da:47:1d:9d:93:
53:53:41:fe:cb:c8:af:79:24:96:bf:54:87:da:63:ba:29:4b:
66:8b:e2:ff:6b:c9:27:4a:02:33:46:76:19:41:85:5a:6f:63:
6e:04:72:55:ed:35:f4:a7:89:13:91:49:02:17:03:8f:cd:90:
a5:63:2f:d5:32:53:f5:ca:70:97:68:ef:9f:24:ba:e5:32:d1:
69:5e:46:73:f9:6e:9e:2b:a4:2b:c9:37:2c:73:69:a9:6f:cb:
ab:ed:9e:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:31:02 2026 by rpki-client