Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
File: XpNr6hsMOiCKuifYsQsnXkdN3iw.mft (raw, json)
Hash identifier: zT/1AiKxVlPbN+ZU1V2G4maYvVHgciUG63kIyEb+cUo=
Subject key identifier: 07:39:EF:28:42:B1:54:46:E4:16:D7:9B:E4:22:BC:8C:D7:C2:0B:F4
Authority key identifier: 5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
Certificate issuer: /CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Certificate serial: 019CB05B20FD740DDF32D2B1C74345AAC5BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 21:01:28 +0000
Manifest this update: Mon 02 Mar 2026 21:01:28 +0000
Manifest next update: Tue 03 Mar 2026 21:01:28 +0000
Files and hashes: 1: XpNr6hsMOiCKuifYsQsnXkdN3iw.crl (hash: FUVtn9OGyi+nzEM8K1Yn6KLhsfqnsKHe+PCW0Ux50NA=)
2: y7-vDXrLqMjnhTrFIm_Q1_GinG0.roa (hash: NpfzJpBL32LooDZs+/fN3t0x26rbFmNfH1jzdmZ+xH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:5b:20:fd:74:0d:df:32:d2:b1:c7:43:45:aa:c5:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e936bea1b0c3a208aba27d8b10b275e474dde2c
Validity
Not Before: Mar 2 21:01:28 2026 GMT
Not After : Mar 3 21:01:28 2026 GMT
Subject: CN=0739ef2842b15446e416d79be422bc8cd7c20bf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d5:24:6b:e1:42:79:dc:1c:63:08:99:bc:a9:
b5:e7:c0:26:c0:31:82:7d:69:fc:75:0e:44:48:fb:
86:bd:40:62:01:a8:fb:62:9b:4d:8c:7c:fa:cc:e7:
a6:01:55:c7:26:7a:2c:3a:ee:93:18:19:b2:93:77:
1d:8d:b6:16:f3:0a:c7:ab:e2:d4:e8:e6:d5:34:be:
47:49:a9:5e:19:5d:cb:c5:41:d7:fc:24:f1:d3:5a:
d2:91:a9:aa:5e:ed:f3:9b:0c:1a:b4:c6:d4:99:d6:
90:79:8b:97:f9:7e:68:47:bc:ce:59:45:17:1e:7d:
ab:8b:d6:59:15:f7:8f:95:93:82:fb:3f:99:a8:aa:
c5:74:43:d9:97:83:33:db:ae:22:6b:8b:68:b1:df:
d9:1b:39:24:2f:b8:b8:bd:c4:5b:06:f7:19:ae:22:
f8:f8:9c:be:62:ce:b0:86:b6:72:34:4e:2b:ca:0f:
21:9c:1a:4b:4d:a0:05:f6:fd:43:75:42:4d:63:7a:
1d:f1:76:c8:85:ba:1b:f3:8a:af:ad:00:33:55:de:
d4:08:23:7e:fa:55:11:d4:99:84:0e:cc:99:56:51:
bc:4d:d0:62:dc:3a:40:0c:7d:94:87:f9:37:ae:8e:
34:95:b7:0a:32:3f:f4:c7:32:f0:a1:7f:f1:47:a2:
b7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:39:EF:28:42:B1:54:46:E4:16:D7:9B:E4:22:BC:8C:D7:C2:0B:F4
X509v3 Authority Key Identifier:
keyid:5E:93:6B:EA:1B:0C:3A:20:8A:BA:27:D8:B1:0B:27:5E:47:4D:DE:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpNr6hsMOiCKuifYsQsnXkdN3iw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/32876b-a82b-4704-ba67-98477a8653c7/1/XpNr6hsMOiCKuifYsQsnXkdN3iw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:d2:2e:94:3d:85:cf:1e:0a:5b:65:09:b8:cc:2d:6e:a1:c4:
4c:6f:52:47:9a:30:8e:17:1e:5d:3d:33:98:5e:9a:fb:d2:2b:
d1:98:1d:ec:14:b6:a6:90:78:0b:2d:f3:83:18:8e:16:c8:29:
e6:5e:10:f7:77:06:bf:d3:a1:b2:32:f1:fa:0c:54:ee:46:cd:
ed:c6:76:8c:50:d5:0e:e6:0b:30:14:37:77:92:74:70:17:be:
fd:dd:29:9c:91:3f:39:70:69:9e:5b:fd:7d:ce:45:e9:17:7f:
3d:f2:8e:da:1c:d6:2a:72:8f:1c:80:70:d7:a9:6e:b8:6a:1d:
e4:93:de:48:6f:3c:78:0b:a2:05:50:b8:51:70:b6:29:80:f9:
53:f0:d7:7f:f8:8c:eb:8d:8e:7b:7e:8b:25:d1:45:f5:88:3f:
7f:32:1a:60:c7:04:70:62:c9:56:09:28:74:ad:15:ed:40:00:
75:9f:75:8b:ec:47:f8:9a:4d:ce:34:c1:17:98:3d:49:95:7b:
f3:c6:0b:60:07:26:84:9f:bd:ed:bc:39:90:e8:92:93:8a:a9:
01:cb:89:75:60:6c:cd:21:7f:6a:03:21:1c:71:7d:63:22:1a:
14:a1:6e:1e:1a:ea:96:96:bf:4f:82:b1:49:f7:89:77:41:25:
27:ee:b1:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 01:14:54 2026 by rpki-client