Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
File: rXz7zh1tOmok8lZSBl0xV1go7bU.mft (raw, json)
Hash identifier: KqPT4LV/ReK/1pgiXLwRQxxSYzYtZc405/WCt0xPLHo=
Subject key identifier: 81:FC:F2:CD:ED:4A:21:66:04:DB:19:66:6C:9A:9A:5F:64:80:DC:6E
Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Certificate serial: 019D9CD1AA3A138AE1CBED2EC6BEBEBD3D20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
Manifest number: 0FD5
Signing time: Fri 17 Apr 2026 19:01:19 +0000
Manifest this update: Fri 17 Apr 2026 19:01:19 +0000
Manifest next update: Sat 18 Apr 2026 19:01:19 +0000
Files and hashes: 1: X95prXHzq8X1CPwv1gtcHecBZ9A.roa (hash: kIyKmeEmNUCd7/Tfz3mqcBFszHGcJgIalIr5T8BFnbY=)
2: rXz7zh1tOmok8lZSBl0xV1go7bU.crl (hash: 8i7cBHABEwFFuXgxGukOobp3C72+J83QVOwRjWfMgC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:d1:aa:3a:13:8a:e1:cb:ed:2e:c6:be:be:bd:3d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Validity
Not Before: Apr 17 19:01:19 2026 GMT
Not After : Apr 18 19:01:19 2026 GMT
Subject: CN=81fcf2cded4a216604db19666c9a9a5f6480dc6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2e:f3:93:ae:58:c5:02:2c:41:70:37:ba:b0:
83:49:9c:37:aa:f1:94:8a:1f:01:f4:4f:c3:d8:02:
d8:e9:73:bf:12:a8:2e:41:1b:fb:e9:ae:96:ff:cd:
4e:ad:2a:4b:c7:53:1f:0c:01:9d:12:09:c8:0c:16:
a0:32:64:a2:a9:a9:40:70:a1:1b:de:46:99:87:50:
9a:32:d8:31:a6:ef:47:ab:93:e9:75:e8:8b:51:14:
ee:06:a3:59:d9:be:25:b3:9b:e7:44:f7:33:32:c0:
38:e7:c4:7f:ba:5d:74:fb:71:39:bb:20:b0:c0:81:
81:5b:ec:16:62:92:b9:3b:40:b7:75:f8:dc:ba:19:
be:74:f4:09:50:77:52:49:07:de:c8:86:95:bf:98:
0a:10:39:ab:b2:5d:16:65:0a:c2:42:5c:85:26:55:
e0:dc:b7:93:68:1b:e5:5e:7f:83:cc:db:63:c0:03:
01:fd:b9:9d:8a:e9:52:da:c0:62:ad:0e:28:09:d4:
17:ff:17:8d:03:91:c4:05:3c:72:a4:ad:b3:9f:f6:
7b:e7:2e:38:a4:b2:56:af:02:aa:33:fb:72:9c:52:
1b:ee:26:1d:0f:c7:6a:6d:af:74:e3:b5:0f:58:b6:
6c:b1:84:ae:eb:27:78:c7:bd:b8:23:8f:36:9a:9f:
22:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:FC:F2:CD:ED:4A:21:66:04:DB:19:66:6C:9A:9A:5F:64:80:DC:6E
X509v3 Authority Key Identifier:
keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:29:11:27:c9:49:14:12:45:81:33:c2:8d:b4:d3:04:0e:03:
50:5c:68:3a:2d:18:c2:b9:37:3d:d4:6a:89:af:9c:9d:c0:e6:
9a:7d:29:fb:b1:67:3e:0a:7a:03:a2:4d:e4:c7:9e:99:56:06:
2a:24:17:38:79:50:35:29:f3:ed:20:ce:41:c2:89:d0:f9:a6:
ea:d2:46:65:16:89:e7:0b:c0:f2:42:0b:74:00:05:11:0d:d9:
3a:88:03:81:6f:c0:14:5b:3f:5c:c7:cd:d5:9f:7b:d3:68:bf:
91:4b:61:e7:2d:b0:af:fb:56:6b:fa:9b:fa:52:7f:0f:d9:ba:
01:ef:a0:8b:75:88:df:4f:0e:41:1e:fd:00:48:29:27:c4:c1:
66:48:31:52:39:31:2f:19:9e:e7:e7:7b:63:eb:fb:29:f3:b3:
be:08:7a:33:73:08:82:8e:95:e2:bf:d4:61:01:85:09:6f:b3:
42:97:3c:f4:2c:2e:87:e0:85:a6:21:b9:a7:fe:f4:77:ee:4a:
2e:da:4a:e1:44:1d:0b:47:10:f5:10:9a:21:35:16:36:41:53:
05:16:8c:e2:9f:d9:2f:df:41:49:02:a5:6e:63:57:3c:50:cd:
44:6f:31:43:95:ab:56:aa:af:33:14:b3:bb:7b:4e:7a:fa:59:
b9:6f:04:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 01:37:12 2026 by rpki-client