Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
File: xIzPWOSy4trdSoSDPAZ87iuXRek.mft (raw, json)
Hash identifier: KtX07qwM8iAxyn1RTxViYYojU4eWNVWwMjbtLyVfa28=
Subject key identifier: 79:3B:AA:D2:9D:7A:4E:09:59:B7:E2:43:8D:A0:C8:CB:83:53:E4:00
Authority key identifier: C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
Certificate issuer: /CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Certificate serial: 019CACB548860F52123DF71BBAB754D0B20C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
Manifest number: 0A76
Signing time: Mon 02 Mar 2026 04:01:27 +0000
Manifest this update: Mon 02 Mar 2026 04:01:27 +0000
Manifest next update: Tue 03 Mar 2026 04:01:27 +0000
Files and hashes: 1: xIzPWOSy4trdSoSDPAZ87iuXRek.crl (hash: V3bGF70b1Gd2cjo8MFW5JU4tIEIoBBdPPPW9XLmbrbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:48:86:0f:52:12:3d:f7:1b:ba:b7:54:d0:b2:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Validity
Not Before: Mar 2 04:01:27 2026 GMT
Not After : Mar 3 04:01:27 2026 GMT
Subject: CN=793baad29d7a4e0959b7e2438da0c8cb8353e400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e6:ef:72:a8:8c:a7:9a:59:c7:2a:80:2b:de:
20:1c:e7:35:48:ce:7b:86:e2:c8:ae:54:d6:b9:20:
da:a7:65:a6:1e:b0:ae:eb:75:ce:63:3a:d4:a3:d5:
fb:0c:68:34:1c:8d:d5:4d:2f:3a:6a:f7:d2:59:58:
4c:d3:64:82:09:34:ea:27:87:ac:90:e8:6c:ea:f2:
b5:9f:36:8a:28:88:a9:a5:0d:ba:52:39:62:c0:68:
21:d7:f2:a7:7c:af:89:95:8a:09:07:21:59:7b:9f:
26:33:3a:c5:90:a1:b5:bc:b7:40:3f:eb:ff:d4:9b:
ea:53:24:0d:32:88:ac:59:f7:71:27:b1:27:05:48:
ec:16:84:d7:08:0a:8f:e7:7e:56:f5:eb:b6:85:f6:
0c:68:8e:5e:0d:df:17:03:86:7b:5a:28:18:f8:43:
91:d1:49:7b:15:42:7c:63:f0:ae:32:cd:86:f9:5a:
d8:d7:c0:ea:8f:0d:a8:89:9a:22:16:65:17:eb:c9:
d0:0f:77:b3:9a:84:66:e3:92:34:86:b7:13:43:0c:
d8:f1:b9:8d:b2:e0:c8:77:cf:27:4f:f6:c1:91:1d:
77:79:8a:d2:6f:0f:42:36:51:13:42:7e:3d:a1:12:
2b:02:f4:f2:70:c0:3e:19:26:28:b4:0a:f8:bb:08:
a5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:3B:AA:D2:9D:7A:4E:09:59:B7:E2:43:8D:A0:C8:CB:83:53:E4:00
X509v3 Authority Key Identifier:
keyid:C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:3f:a3:27:61:e1:00:ae:ea:47:c1:53:1c:0d:9c:07:c5:bb:
70:4d:0b:40:1c:42:48:46:a8:1e:bb:e0:f8:a2:51:f4:f5:ed:
e2:9c:e4:d0:3d:02:1a:df:34:95:08:17:6e:77:59:4a:33:a1:
4e:0f:1e:31:37:e0:e4:6f:44:84:a6:7d:e7:4c:7a:8d:be:07:
8e:30:67:7d:6e:ee:3b:a2:55:f6:74:5a:80:ed:9e:44:ad:4a:
33:d9:06:09:96:b7:b7:7e:1f:ce:ec:bd:00:52:8d:eb:27:0e:
2a:67:22:ab:1e:44:49:17:5e:c7:09:62:a7:bd:6a:32:97:28:
69:03:3a:fb:d4:c4:e9:e7:4a:3a:5e:05:96:fc:00:b4:52:79:
a4:00:f0:b4:a3:67:b2:8e:28:39:cd:eb:98:8e:55:77:f4:f7:
f5:48:6a:04:a6:48:f9:7e:d2:d7:85:14:ca:01:90:44:2e:72:
46:80:70:bd:e8:18:0f:a3:7e:38:5e:0a:63:c3:5a:7c:12:98:
66:83:02:a9:21:53:83:6c:d5:11:73:f1:bc:90:69:15:fb:f2:
ce:9a:ad:cc:4f:f3:02:b9:46:f2:11:fc:0f:e5:77:b4:c1:2f:
52:6a:f3:56:f6:6e:a3:aa:f6:ac:83:54:21:65:9c:0a:12:f6:
4a:43:7d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:49:17 2026 by rpki-client