Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
File: XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft (raw, json)
Hash identifier: E0UsZ44/m8hCtCjru852S/llGY25WYrCwycMilg2hzU=
Subject key identifier: E5:BE:62:A8:9E:9A:D6:97:3A:8F:84:02:7D:65:AA:C8:C9:18:C0:25
Authority key identifier: 5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
Certificate issuer: /CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Certificate serial: 019D9A3E00A35EB73D06068BB9646A7A4892
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
Manifest number: 103F
Signing time: Fri 17 Apr 2026 07:00:47 +0000
Manifest this update: Fri 17 Apr 2026 07:00:47 +0000
Manifest next update: Sat 18 Apr 2026 07:00:47 +0000
Files and hashes: 1: OUhIXcYKuJwX-1gGqSyC-ytysk8.roa (hash: SNKMZI12Bd30LXMDKulFyeiCL2F4p+Ej66EZURTKN18=)
2: XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl (hash: Qo6P4lWRkg9zEwQQWvPzwxr2EJ1dC868/V7j6dVy8xI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:00:a3:5e:b7:3d:06:06:8b:b9:64:6a:7a:48:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd379cedcdc20f0875c4b08b94b41161b3e8c03
Validity
Not Before: Apr 17 07:00:47 2026 GMT
Not After : Apr 18 07:00:47 2026 GMT
Subject: CN=e5be62a89e9ad6973a8f84027d65aac8c918c025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:29:97:4a:cd:78:74:90:a3:a9:65:2d:f7:0c:
32:7b:70:13:95:51:d6:fa:4f:3a:37:a4:7a:cc:d6:
eb:61:f8:65:e1:02:bf:0e:ac:db:db:13:5f:58:a7:
ef:11:98:51:cc:2c:11:fa:f3:83:57:30:45:df:e2:
df:6c:eb:10:a5:1a:f8:81:b1:a0:75:6e:17:6a:8c:
63:17:3d:1a:f5:cf:22:c6:56:a0:e6:58:d5:f9:94:
b4:49:3d:c5:e9:96:a3:33:e9:f3:54:14:f4:09:85:
0b:a3:37:d0:43:b2:3a:49:35:96:90:ed:2e:92:ff:
34:ef:66:7b:09:fe:8a:c1:58:34:1a:40:e0:6c:4c:
e3:d4:31:cb:72:80:91:eb:77:95:b3:9f:8e:7d:95:
9d:ba:7a:0c:23:c8:4d:11:65:b4:8b:d9:67:6f:1b:
ca:c6:58:0c:c8:73:47:27:b1:c6:f9:35:0e:0e:73:
1f:29:09:55:97:41:04:70:d5:e4:3b:6c:40:3d:6c:
25:c5:8c:3c:cc:7a:22:d6:7c:11:7c:42:f8:3b:50:
e4:d8:c9:8e:02:e2:96:f3:c1:ba:cf:ae:78:49:db:
2d:36:da:e9:c8:d7:9e:d8:58:77:a1:ad:07:f7:07:
74:1e:99:56:05:2d:78:f1:58:69:1d:1a:68:07:36:
66:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:BE:62:A8:9E:9A:D6:97:3A:8F:84:02:7D:65:AA:C8:C9:18:C0:25
X509v3 Authority Key Identifier:
keyid:5C:D3:79:CE:DC:DC:20:F0:87:5C:4B:08:B9:4B:41:16:1B:3E:8C:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNN5ztzcIPCHXEsIuUtBFhs-jAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/f3cca4-f6bf-4734-abbd-0964464c1751/1/XNN5ztzcIPCHXEsIuUtBFhs-jAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:f3:39:bf:6b:d0:ed:60:a8:da:e2:c1:47:35:a7:b0:3c:47:
7e:5b:79:f9:8d:09:9a:21:a9:d9:a2:52:82:19:ce:8d:37:bd:
bd:1d:3c:5a:ae:5d:50:69:6a:8d:1c:1f:bb:1f:db:83:68:80:
3a:18:82:49:e0:fd:1e:07:a2:65:3b:eb:1f:6d:ce:01:38:d5:
03:4e:19:04:09:9b:fe:9e:d7:61:f3:f3:a6:86:9a:f9:6f:c1:
f7:d9:d9:4a:65:b0:67:f7:38:b8:5e:51:6d:ee:04:7e:18:45:
18:0b:13:e9:6e:c6:2e:16:ec:bc:f5:8c:27:43:24:95:28:ef:
be:60:a4:6e:9b:9f:59:bb:f4:87:30:04:6a:b5:75:d0:af:19:
b7:cd:97:db:c3:8b:5b:2f:c0:ac:70:f9:22:7e:8c:9f:a5:4f:
54:57:27:0e:7e:39:40:77:d7:76:86:6b:dd:ed:2e:a7:90:79:
42:aa:f5:9d:c2:c6:f9:04:74:63:ef:7c:db:cb:41:1a:c2:13:
be:46:8d:24:a9:50:51:11:07:f0:93:db:f7:1e:11:5c:57:06:
01:26:86:fd:1c:9f:30:62:d8:62:70:8a:cb:bc:e9:e2:d9:41:
4f:14:03:7c:52:7b:f9:88:83:a2:73:2d:71:41:8d:4f:fe:0d:
32:98:84:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:40:26 2026 by rpki-client