Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
File: XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft (raw, json)
Hash identifier: q4TONFviceMOXqbyumFisbm/rqA0RTLudAdwfnV5Cwo=
Subject key identifier: CC:2E:B5:0E:F0:6E:72:5F:B7:CE:F1:5D:A9:EA:40:A6:3A:B1:9B:0F
Authority key identifier: 5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
Certificate issuer: /CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Certificate serial: 019D99626ECC6FC8F4ACC5722FBCDDF0C17F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
Manifest number: 182E
Signing time: Fri 17 Apr 2026 03:00:57 +0000
Manifest this update: Fri 17 Apr 2026 03:00:57 +0000
Manifest next update: Sat 18 Apr 2026 03:00:57 +0000
Files and hashes: 1: XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl (hash: 5ccP5vGOJdUOPd7hDfJqTgRHwpV0T2mfZFFSRWp3anc=)
2: vIEeMsOgyhAbHtdasH9clWdBUoM.roa (hash: LNPknqC7GAKoJKuLl2I8NQhITu9vWI4/MB5dCdNLtbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 03:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:6e:cc:6f:c8:f4:ac:c5:72:2f:bc:dd:f0:c1:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d382238289a8802cf52b67d9bf4ae87a50933c3
Validity
Not Before: Apr 17 03:00:57 2026 GMT
Not After : Apr 18 03:00:57 2026 GMT
Subject: CN=cc2eb50ef06e725fb7cef15da9ea40a63ab19b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6b:4c:16:72:bc:8c:49:27:25:79:df:d8:a0:
9e:4c:a4:78:ef:28:1b:92:d3:e7:39:f2:8e:c0:08:
e0:90:c4:bd:8b:e3:e7:10:1b:9c:25:1b:1f:0f:b5:
42:ad:0d:d7:0f:10:9b:7b:83:1a:79:4e:8e:1b:2d:
e0:eb:b5:9d:b4:cf:a2:e3:d4:7c:8d:4e:f0:5b:bc:
e7:c8:55:96:f7:4e:25:f7:af:8f:0a:2b:01:ae:48:
a1:a8:48:54:b0:b0:7f:18:4c:a6:ac:a5:32:93:dd:
8e:83:a2:ee:63:c2:eb:dc:21:81:a0:e3:38:43:be:
33:44:63:b9:a9:8f:fa:a5:de:24:e9:10:c6:97:71:
fc:d4:0e:db:d5:20:0c:25:23:fe:1c:d8:75:70:cd:
d7:3d:92:5a:0c:d3:ec:43:b5:90:7e:6e:15:c6:e7:
9e:9c:82:b4:b0:49:15:19:b1:eb:40:0c:92:ee:7d:
e9:19:51:a2:3e:94:ee:ea:d9:f1:b7:5c:80:12:0e:
d9:25:4c:37:32:ee:8c:25:d2:7b:7f:04:41:f0:f0:
d7:ef:f3:01:50:ec:d2:e3:43:9e:97:ee:f5:be:8d:
ba:f2:ca:4e:eb:9c:f1:11:cf:93:25:b7:6f:4f:e8:
06:91:54:32:b6:b0:44:3c:2f:cf:b0:a7:19:8a:b9:
46:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:2E:B5:0E:F0:6E:72:5F:B7:CE:F1:5D:A9:EA:40:A6:3A:B1:9B:0F
X509v3 Authority Key Identifier:
keyid:5D:38:22:38:28:9A:88:02:CF:52:B6:7D:9B:F4:AE:87:A5:09:33:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTgiOCiaiALPUrZ9m_Suh6UJM8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/85018a-c238-4319-ad42-885757c1248f/1/XTgiOCiaiALPUrZ9m_Suh6UJM8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:fd:69:dc:3a:2d:dd:9e:13:d2:47:ec:42:69:7c:07:15:e9:
7b:b9:17:ca:cd:6a:4f:48:6f:2c:5f:60:5a:c8:5d:40:67:e3:
53:1a:cb:19:47:79:d5:fd:3c:05:ff:44:b3:d0:95:76:09:ba:
2b:5d:53:cf:8c:d7:2b:f1:3f:6b:2b:e5:49:10:9d:9f:17:64:
95:03:20:c3:8a:4f:0c:36:38:09:b8:f3:c4:eb:80:0d:ff:b7:
dc:4b:7f:f2:9a:f3:fd:71:2b:9e:02:e1:01:23:36:c9:48:a8:
0b:db:ff:b4:5e:47:a9:ea:8a:f1:e7:b9:59:cc:2b:73:58:13:
7c:2a:83:3c:1c:ad:d7:dc:0c:85:a5:1e:9a:3f:07:a5:fd:57:
51:73:cc:7a:e4:c5:9c:2c:d8:e4:c9:03:d4:ae:11:ed:8a:69:
01:4d:c2:42:5e:d9:7a:ba:4b:91:1b:dc:08:29:82:56:1d:fe:
fd:0c:75:fb:6f:61:c6:3b:35:2f:fe:c4:77:d1:68:65:39:76:
1b:c1:24:d6:4a:2c:d2:ef:f8:5a:55:1c:41:db:db:47:df:ff:
f2:23:e0:96:49:6f:ce:0f:f2:67:6e:98:7d:77:af:7d:1a:e2:
79:cd:52:d3:88:99:1a:f4:b2:f9:2c:b4:88:d5:3f:02:c7:ba:
b9:34:17:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:15:30 2026 by rpki-client