Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
File: xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json)
Hash identifier: e7c8eHaB8NMg0AuHfdePk4BBb2dM/FLVk1BPSqC/OWs=
Subject key identifier: 96:7A:F6:4F:9B:08:55:31:0B:FD:C4:CF:10:A6:3F:60:D2:85:DB:10
Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
Certificate issuer: /CN=c5bfa71a5113fed82464776c14371514c9218ef5
Certificate serial: 019CAA8F670C148E482C9E00942A10FC6EB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
Manifest number: 0C7E
Signing time: Sun 01 Mar 2026 18:00:50 +0000
Manifest this update: Sun 01 Mar 2026 18:00:50 +0000
Manifest next update: Mon 02 Mar 2026 18:00:50 +0000
Files and hashes: 1: jBvSHulkiAFNZq-1Sz_1NBwC4gw.roa (hash: kIr3tsaXSv0n1HwqnJcooiylPmXgSiBfGD9CqML14GU=)
2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: /Ak86uppl2N4/CELoFUgO0kgANNuMsDXoKLw0GRdDBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:67:0c:14:8e:48:2c:9e:00:94:2a:10:fc:6e:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5
Validity
Not Before: Mar 1 18:00:50 2026 GMT
Not After : Mar 2 18:00:50 2026 GMT
Subject: CN=967af64f9b0855310bfdc4cf10a63f60d285db10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:13:50:6e:2c:de:f2:93:89:06:6d:75:d3:68:
5a:42:24:23:88:cb:16:da:74:2c:fe:d7:4e:6f:da:
55:c2:e3:2a:07:72:58:6d:0e:b5:81:fd:17:e5:b8:
ad:aa:83:d6:0a:43:f5:1b:95:bc:03:78:30:53:f9:
e7:c9:b8:af:b6:fc:23:d9:05:0e:f0:c0:07:ac:06:
1a:44:73:a7:1b:9d:8c:6e:68:9c:69:90:b8:be:15:
1c:27:7f:e1:7f:c9:6c:00:3a:fa:47:e9:5c:1b:44:
cd:76:e4:00:ef:d0:e3:85:7c:95:05:34:64:86:f9:
f2:2f:a0:50:37:ed:73:84:55:6f:d2:2a:75:68:36:
14:02:b4:4d:51:a5:43:90:4b:35:b7:53:a7:b8:f8:
57:ae:9c:b7:ce:80:e1:bf:05:c5:db:d4:6d:87:e0:
81:f4:01:af:95:1a:2e:ab:62:cd:68:32:46:9f:64:
34:44:9f:d3:39:0c:f3:2b:6d:fd:53:d4:c5:cf:38:
5a:d9:27:cf:e8:50:db:7c:fa:ab:37:a9:5d:cc:c4:
ad:35:87:44:d2:26:2e:95:8f:83:af:f8:f8:9f:d2:
19:1d:5e:41:53:e1:9e:b5:4f:d6:81:20:bc:8e:d0:
da:88:34:92:67:ac:60:fe:bb:3b:98:c4:4d:6e:e8:
b4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:7A:F6:4F:9B:08:55:31:0B:FD:C4:CF:10:A6:3F:60:D2:85:DB:10
X509v3 Authority Key Identifier:
keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:ce:41:6e:93:42:99:87:b7:90:93:7d:36:4d:a5:63:75:71:
ae:96:0a:a0:ad:32:fb:1e:93:9e:21:29:44:c8:d1:40:17:c4:
4e:74:3d:00:b5:84:54:3d:73:1e:2b:f8:f5:ef:37:ee:95:77:
d7:82:a7:31:d3:6d:ba:2e:5b:c3:28:f1:77:fa:e8:68:f8:33:
f3:6b:58:4f:6c:50:9d:83:9e:8f:52:a4:c8:30:9f:5c:57:f4:
d2:8e:3f:3c:b3:53:96:84:b1:8d:08:84:9d:81:57:ea:64:c7:
14:ad:86:a1:a8:ee:0a:7e:05:e8:fc:a0:8c:8d:14:5e:05:9e:
f0:ad:26:61:a8:95:f2:97:31:84:ee:c0:73:e8:2a:51:31:a2:
25:36:2c:fb:3a:63:5f:b6:5c:b0:a4:80:a3:a0:c9:b7:08:0c:
a2:66:78:b7:d1:a4:5f:fe:ac:d5:96:ed:4b:0e:07:36:f0:b8:
35:8e:e1:55:3a:80:6e:d5:72:71:de:b7:1a:e9:d5:62:b1:00:
d6:c2:49:47:5c:45:f4:21:6b:ea:b4:2c:ca:25:ae:29:8d:4f:
00:63:c3:26:0f:8f:bd:c7:b7:8e:1b:76:58:b8:e0:88:9f:49:
46:49:e9:a0:56:a3:ab:69:5f:78:00:8b:c2:5a:4e:82:59:47:
e4:8e:23:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:58:13 2026 by rpki-client