Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
File: xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft (raw, json)
Hash identifier: M+x/tN+0ARGmbOMWlyRf9Jk7nRE94ypZRow47YfoT0U=
Subject key identifier: A7:9E:46:03:E3:37:32:D4:40:E5:A2:A6:67:B7:06:D5:AB:9B:A7:FD
Authority key identifier: C6:18:F0:3F:98:74:37:06:53:AA:3A:02:6F:67:07:C2:E0:E7:47:64
Certificate issuer: /CN=c618f03f9874370653aa3a026f6707c2e0e74764
Certificate serial: 019D99CFFC31875A46F5620D77438331B1AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
Manifest number: 09A6
Signing time: Fri 17 Apr 2026 05:00:37 +0000
Manifest this update: Fri 17 Apr 2026 05:00:37 +0000
Manifest next update: Sat 18 Apr 2026 05:00:37 +0000
Files and hashes: 1: xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl (hash: OOvETjzYREGTAinl4LwTmI4W7RgYmuMk31KZnr+h7jM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:fc:31:87:5a:46:f5:62:0d:77:43:83:31:b1:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c618f03f9874370653aa3a026f6707c2e0e74764
Validity
Not Before: Apr 17 05:00:37 2026 GMT
Not After : Apr 18 05:00:37 2026 GMT
Subject: CN=a79e4603e33732d440e5a2a667b706d5ab9ba7fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:13:23:2f:d8:e0:36:3b:6c:ec:51:9d:58:2f:
f2:ef:84:41:4d:b6:3f:94:8e:14:8d:33:c5:02:37:
ef:84:0c:a7:37:94:5d:cc:4e:fb:da:63:1b:73:b4:
52:9d:bb:be:f6:22:94:c4:03:ec:de:40:25:02:58:
6f:02:eb:a0:d0:47:ca:90:87:7f:04:36:83:19:66:
7c:82:78:d1:ba:b3:ca:94:1e:58:98:1c:93:72:7d:
64:99:bc:64:fc:dc:20:2a:64:01:9f:7f:27:31:04:
12:9d:dd:33:f7:82:50:80:b0:8b:8e:76:fe:8b:08:
94:fa:bc:4e:f5:7e:2a:df:09:d9:db:3a:8d:6b:a3:
38:9b:f3:bf:19:37:49:42:b9:d5:9a:48:32:60:56:
ea:43:df:04:f4:ca:de:86:e0:af:82:86:fc:8d:87:
67:3d:5c:10:03:25:0a:d1:b1:36:bb:6c:32:d4:40:
f9:41:ff:6c:b1:af:83:4e:a9:b5:4f:82:b8:d2:d5:
78:5d:11:0f:55:aa:7f:a2:f0:1b:e2:6b:62:a9:cf:
0b:29:48:4c:14:25:f7:dc:d6:b8:83:e0:6e:bc:25:
ec:53:36:05:76:95:b1:2d:21:9b:05:46:9f:9a:94:
df:5c:39:fc:b7:6a:a0:08:ef:bf:49:88:9d:7b:4b:
07:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:9E:46:03:E3:37:32:D4:40:E5:A2:A6:67:B7:06:D5:AB:9B:A7:FD
X509v3 Authority Key Identifier:
keyid:C6:18:F0:3F:98:74:37:06:53:AA:3A:02:6F:67:07:C2:E0:E7:47:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/16fdee-d397-41fd-888f-51de4964a913/1/xhjwP5h0NwZTqjoCb2cHwuDnR2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:fe:0c:ca:eb:9a:43:e5:e6:0a:6c:ed:a9:dd:b9:f1:5a:6d:
09:12:dc:4f:30:20:3a:7c:be:39:96:bd:c0:ad:f9:0f:cf:99:
b8:a6:67:06:93:68:61:69:b0:42:1f:bf:6c:f0:27:a7:a0:62:
ab:9f:0f:aa:9f:5b:9e:3e:e2:48:9c:53:a7:52:55:a0:8a:6f:
98:04:2d:3b:fd:f3:0d:33:d7:0f:b4:da:2b:f8:7a:e9:c1:e4:
dd:97:6e:3b:5c:94:03:62:38:9b:39:1e:e5:7d:c7:f1:1d:79:
1d:19:5c:b4:47:3b:ae:de:e6:b2:28:f9:16:0a:e0:0f:da:a6:
fa:25:a5:9b:82:89:f5:5c:07:84:0a:3c:d6:9e:31:46:61:73:
f1:a9:f9:f2:46:fb:d6:e0:18:c7:73:bb:75:97:4a:61:db:36:
1e:03:04:d9:05:d9:ed:86:fd:ae:9a:a9:8f:1d:77:5b:e2:e9:
12:e2:f6:94:04:c2:c5:ba:60:ba:ff:56:2a:4a:c5:6d:ed:7f:
66:7d:c3:13:51:69:e2:22:1f:a9:e2:5a:02:cb:4c:ae:20:4c:
62:b1:19:f5:59:40:24:48:0a:cb:aa:d8:de:60:9c:e7:61:e1:
71:11:a7:5e:b6:28:b1:a5:4a:2b:f0:ad:4e:6b:82:e4:9a:ec:
01:7d:06:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:47:05 2026 by rpki-client