Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
File: XpNr6hsMOiCKuifYsQsnXkdN3iw.mft (raw, json)
Hash identifier: wEbsWw1z6TVcp6kCUQGEe6gF2g8XV+rh0sXtVyUgCEI=
Subject key identifier: 52:F3:65:2D:8D:4A:76:37:17:C4:6F:6C:BC:80:CB:5C:57:36:86:A7
Authority key identifier: 5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
Certificate issuer: /CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Certificate serial: 019D99998ACBEB0B1B68969A97FAA89ACF37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 04:01:09 +0000
Manifest this update: Fri 17 Apr 2026 04:01:09 +0000
Manifest next update: Sat 18 Apr 2026 04:01:09 +0000
Files and hashes: 1: I4H-h-0IvTFBhVPDqjS4bNj_Ebs.roa (hash: sH+OJNMuVDP+q4KSVOmVWCp6qFy7xvvRbWmFSeE0ZQA=)
2: XpNr6hsMOiCKuifYsQsnXkdN3iw.crl (hash: wNqgiUuWGkSvAsFpwxxaSaBqBg2ZX9yHaLO9Nfxvrs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:8a:cb:eb:0b:1b:68:96:9a:97:fa:a8:9a:cf:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Validity
Not Before: Apr 17 04:01:09 2026 GMT
Not After : Apr 18 04:01:09 2026 GMT
Subject: CN=52f3652d8d4a763717c46f6cbc80cb5c573686a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6d:cc:eb:2f:a6:9e:76:71:c1:19:5b:7e:5f:
49:0b:09:8b:42:c4:c2:05:3d:97:f7:d6:eb:41:ac:
1d:25:cd:54:c3:8c:ab:43:03:df:1d:f7:0a:2a:41:
e4:1a:ab:fe:1f:8e:f3:62:3e:9c:c0:da:0a:4e:11:
a0:52:31:38:3f:c5:e0:9d:fc:3a:54:1d:86:1a:bd:
a0:d3:b3:1c:37:4f:9e:c1:33:43:1d:ab:b5:93:e8:
2c:84:0a:4f:c5:76:be:27:59:f5:ae:3d:cb:2e:3a:
31:e0:45:4b:d4:fc:e7:9a:32:e1:36:2a:6a:6a:5c:
54:85:8c:66:71:d2:be:06:cb:39:f1:c8:c2:1c:b0:
5e:49:40:ae:39:a3:04:a3:2c:76:6d:c3:ae:b8:ee:
99:e8:f5:09:18:7f:a9:66:55:34:25:ac:57:2a:f5:
b9:65:6b:a8:fb:25:41:35:7a:b4:0b:76:98:79:32:
a4:bb:2d:a4:e1:6f:ee:1b:de:5f:b7:8f:9c:cd:e6:
6f:15:f1:7d:34:84:2d:c8:a4:20:a2:af:73:7d:de:
3b:84:b1:b1:6e:f6:1c:73:a7:8f:8a:03:55:2a:84:
9d:1b:02:83:63:c6:30:9d:74:05:c4:15:30:12:93:
23:c5:22:b8:fb:6a:91:58:46:ac:08:ae:a6:e4:42:
b1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:F3:65:2D:8D:4A:76:37:17:C4:6F:6C:BC:80:CB:5C:57:36:86:A7
X509v3 Authority Key Identifier:
keyid:5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:1b:1a:c1:2d:a3:cd:72:44:ef:27:5e:ba:0a:70:0d:20:65:
6b:15:c4:66:b8:4c:4a:82:7d:5a:fe:a2:fe:1d:a7:e8:de:3e:
72:ac:e0:3e:18:bb:09:9d:6b:a5:04:86:3f:14:34:e3:98:1d:
87:24:ca:7d:38:df:c2:2c:ad:dd:96:94:ad:a1:94:ad:9f:3c:
f1:20:41:d9:e9:49:d2:f3:46:84:c3:5d:7e:26:64:48:9b:be:
02:fa:ac:53:0c:2e:06:2c:1c:41:64:4c:92:4f:de:5e:4d:22:
4a:fe:6d:fb:93:a7:72:74:e3:05:0a:59:fa:d9:5b:a9:4b:6c:
f6:c4:b7:2b:c7:fb:d8:78:2b:0c:47:a8:8b:23:d4:fc:3e:44:
74:aa:43:b8:c1:0b:49:c3:c1:0e:80:57:39:78:19:7a:a1:dc:
c4:84:af:ce:fc:b0:2b:59:d5:67:2b:0b:cc:9c:71:15:7b:c3:
66:ba:a8:85:33:93:e5:d9:3e:4a:98:55:f0:b1:bd:5d:80:a5:
84:55:b4:30:bf:41:91:63:d7:db:ff:77:95:64:1b:68:73:6d:
88:70:8d:e4:5f:04:eb:fb:a0:20:e3:be:2a:34:1e:d4:76:f7:
12:fc:e7:de:d9:ff:52:90:e3:15:37:99:df:bb:ca:7a:b5:36:
79:56:81:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:36:32 2026 by rpki-client