Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: JOClujLwGVuMk8KVgBx1mTyTIkSNU6XxqNab9zFVdTY=
Subject key identifier: 46:D1:E8:6C:FC:02:F0:C8:E3:21:6C:5B:A4:64:11:52:5B:85:0C:2E
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 019CAAC6C8AEC3AA709216E3D2A987DA7921
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 0744
Signing time: Sun 01 Mar 2026 19:01:19 +0000
Manifest this update: Sun 01 Mar 2026 19:01:19 +0000
Manifest next update: Mon 02 Mar 2026 19:01:19 +0000
Files and hashes: 1: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: PDve8A6NvPaDdPtsfDroDXtIzJ60GPiTvBgJ88CRWvQ=)
2: yt6RWY6KGJ0emTVe0oqz88MCdCQ.roa (hash: bM/4s1Z9MxV2DL76ljpJ5UL1Z/n6o4GYGrAbLT9qX9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:c8:ae:c3:aa:70:92:16:e3:d2:a9:87:da:79:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Mar 1 19:01:19 2026 GMT
Not After : Mar 2 19:01:19 2026 GMT
Subject: CN=46d1e86cfc02f0c8e3216c5ba46411525b850c2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:be:b9:e9:a7:c9:9f:a3:25:07:ff:d1:d0:bd:
5f:df:d4:5c:26:e9:c3:b6:c8:08:d7:e0:f2:b4:ce:
12:77:a1:ec:00:e8:9e:a7:6b:49:2b:49:81:5b:6b:
6e:e0:3f:80:fc:04:15:83:3d:9a:97:9c:5d:a3:0a:
d9:0e:e9:56:63:83:fe:05:8b:06:d8:c4:53:56:51:
b8:ac:a7:32:fd:50:90:0b:f6:c6:63:2d:68:b7:2e:
40:b6:64:a4:cb:ff:24:bf:da:7d:70:7e:e2:28:36:
36:ef:24:32:72:1d:51:06:10:1c:a0:89:7e:6f:3d:
82:4c:1e:10:9f:9b:e5:5f:d9:1a:ed:c9:99:2e:2a:
34:df:85:f2:ce:24:e3:23:69:6a:24:49:7f:04:78:
a2:b0:6c:65:3b:05:53:08:30:93:0c:22:9f:57:e9:
b9:0e:be:d3:3a:e4:eb:a7:fc:45:19:7b:4c:e7:15:
33:ca:d4:2e:fc:3e:83:82:3a:95:f5:04:a6:69:63:
91:fa:e4:e8:97:9f:e5:1f:73:b7:e1:6a:e2:b1:f3:
5d:ee:24:59:77:a7:98:9b:fc:7c:80:ec:0e:3f:7c:
5e:44:0d:19:71:fd:76:78:97:cc:d4:f4:79:0e:d0:
31:39:b1:83:ac:31:0f:dd:1e:1d:dc:7f:97:ab:ed:
d1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D1:E8:6C:FC:02:F0:C8:E3:21:6C:5B:A4:64:11:52:5B:85:0C:2E
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:af:bf:ae:39:ef:69:7b:ce:a4:3a:9a:23:6f:df:21:f2:4e:
08:47:5d:97:bf:59:02:a2:7f:40:62:51:44:27:ee:51:42:1e:
ea:0c:b0:17:a3:4d:99:fa:a3:81:77:b7:97:2f:09:8d:01:3a:
bf:4b:b8:21:01:56:42:60:54:70:d2:8b:2b:88:f4:bb:b4:08:
94:c1:8d:42:50:c7:8a:c1:3b:e1:b2:2f:4f:e9:81:a2:75:7e:
c9:38:fb:34:5b:97:a1:22:27:88:dd:28:f1:c7:20:aa:44:78:
42:0c:a1:3a:28:b1:a1:82:b2:58:53:b1:05:c1:a6:7f:6e:06:
fb:4f:f7:19:66:b6:e3:d4:07:c1:91:1d:e2:fa:d5:0a:5e:2b:
d5:3e:a1:bb:ce:c6:be:37:e7:e3:ab:aa:a5:15:5f:6f:70:72:
9b:c7:a8:85:ae:f0:e5:d7:1d:6a:df:54:09:00:62:23:26:04:
5e:b9:53:f0:7d:35:48:ce:07:c9:59:9a:6a:f9:6c:f9:6e:d5:
1c:36:15:28:06:7b:c6:ea:a1:7e:e1:c8:d7:1f:1a:cd:ff:e8:
ae:e4:c1:bc:f6:c4:a0:be:a9:3d:da:c3:7f:1d:6b:38:14:ae:
06:27:4f:37:77:e3:52:66:c1:ba:72:37:e4:69:4e:16:12:f0:
d5:33:b2:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:26:57 2026 by rpki-client