Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: FM0mlVVSAxCnW/XU0GCrKCbT9fsDqWI2TO1a0bORcqU=
Subject key identifier: 5B:75:A1:AC:3E:7A:F2:D0:9F:AD:BB:14:71:32:5C:0E:C5:F1:6C:72
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 019D9850B62B5AE85C285A0F2DB4E88629E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 07BF
Signing time: Thu 16 Apr 2026 22:01:59 +0000
Manifest this update: Thu 16 Apr 2026 22:01:59 +0000
Manifest next update: Fri 17 Apr 2026 22:01:59 +0000
Files and hashes: 1: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: rKxblnpODMiV7tGy8esC/6MAMho8+/yuTtg51qDpsIc=)
2: yt6RWY6KGJ0emTVe0oqz88MCdCQ.roa (hash: bM/4s1Z9MxV2DL76ljpJ5UL1Z/n6o4GYGrAbLT9qX9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:b6:2b:5a:e8:5c:28:5a:0f:2d:b4:e8:86:29:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Apr 16 22:01:59 2026 GMT
Not After : Apr 17 22:01:59 2026 GMT
Subject: CN=5b75a1ac3e7af2d09fadbb1471325c0ec5f16c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:66:16:06:68:71:ee:47:55:d9:79:9f:10:fc:
ed:ce:5c:cd:bc:51:dc:a6:5a:dc:73:80:9c:be:3a:
f7:c5:28:0c:02:1e:56:03:23:dc:a5:1b:60:9c:4c:
a8:da:67:98:6c:53:84:82:6d:54:d2:c4:00:c2:3d:
e8:25:53:eb:6c:ae:9f:a3:23:ca:79:00:c8:39:55:
65:69:76:b6:b3:b1:81:72:37:16:97:0f:6d:4c:26:
6f:e8:7c:b3:a4:47:17:22:5e:17:c1:90:15:5a:d2:
a3:be:8f:c3:48:5a:13:26:a1:8c:af:52:89:c7:4f:
d1:3d:6a:99:39:27:a0:b1:81:c7:61:0a:fd:e5:8f:
85:3c:06:b6:11:da:57:fb:47:1f:50:2e:0f:30:ab:
ba:ae:a6:d7:d6:94:fe:87:66:fb:f4:6d:a4:20:00:
0b:51:98:f0:61:00:f1:a1:27:f4:b5:c7:6f:3a:61:
21:d5:83:92:c9:40:69:85:b4:8a:9a:5f:7e:05:d9:
28:8f:ac:fa:8f:d0:2f:a1:dc:c9:ca:b7:7f:08:9f:
9f:da:b6:af:eb:02:52:54:44:bb:f9:42:11:fd:21:
70:83:f4:33:ff:cb:d0:53:9d:dc:8d:48:31:76:68:
fb:44:e7:49:5a:ef:f2:2e:4e:04:67:4b:67:2a:4d:
0d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:75:A1:AC:3E:7A:F2:D0:9F:AD:BB:14:71:32:5C:0E:C5:F1:6C:72
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:fc:64:c1:9c:25:8e:d1:11:e7:5c:92:2f:5e:a3:1e:5a:ac:
81:ab:a5:ac:b7:33:d6:9a:f4:f8:03:83:04:53:5a:74:77:16:
fc:8b:af:56:af:47:6b:ef:4f:10:7a:5d:ca:1d:7e:1d:18:e6:
41:d2:8a:20:49:85:67:82:ef:04:fb:db:7c:9d:66:85:9f:50:
18:21:eb:37:65:e2:ff:bb:39:a1:26:1e:03:f9:69:14:5f:50:
fe:3f:c6:ee:48:9c:e4:a7:eb:69:17:38:84:5a:87:f6:74:b1:
e7:dd:16:05:b2:c6:ff:f1:fe:2c:11:84:0d:f8:7d:5d:3b:eb:
12:b4:f6:4c:e7:5e:cf:88:68:f1:ac:42:8b:11:7b:5b:d9:af:
8f:1d:53:98:7a:d9:eb:00:2f:c5:14:dd:96:26:cc:ab:e5:ca:
24:71:f5:3a:dc:d4:d5:11:ce:61:2b:de:24:2b:73:71:56:1b:
ee:57:43:14:c5:dd:55:17:5e:0b:b8:9d:fd:fc:90:e7:69:f8:
4f:7a:d4:bf:20:06:9e:0f:a4:05:e5:a2:45:06:70:23:4b:de:
cc:b2:de:1d:ed:a1:cd:73:8c:9a:25:a1:10:b4:e9:62:6e:61:
85:a5:69:89:77:16:9e:a3:58:90:5f:c2:5b:3f:53:5d:83:23:
ca:f2:2e:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:53:02 2026 by rpki-client