Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.mft
File: xx85HWDhoTnMxCsXoyqVNj31z7A.mft (raw, json)
Hash identifier: o8Ub+MV4D9rVkEoVjtFx2e0+cEY37ARg6IBtMcyEPpE=
Subject key identifier: 72:69:72:AC:E2:95:DD:5E:C0:03:20:F7:31:1E:BD:6A:4F:BD:2A:AD
Authority key identifier: C7:1F:39:1D:60:E1:A1:39:CC:C4:2B:17:A3:2A:95:36:3D:F5:CF:B0
Certificate issuer: /CN=c71f391d60e1a139ccc42b17a32a95363df5cfb0
Certificate serial: 019D9A74A3A10C9744544F8EF66CE0C5C0B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xx85HWDhoTnMxCsXoyqVNj31z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.mft
Manifest number: 01E0
Signing time: Fri 17 Apr 2026 08:00:28 +0000
Manifest this update: Fri 17 Apr 2026 08:00:28 +0000
Manifest next update: Sat 18 Apr 2026 08:00:28 +0000
Files and hashes: 1: 5Ac1xGg2xzacy1Elgpwm7Fl9gOY.roa (hash: VWmcJPkpnJaJdz3GW3aT+bj0R6mJFxMSWGrX3LD0Zyk=)
2: xx85HWDhoTnMxCsXoyqVNj31z7A.crl (hash: fLRh09NB3Bh3gAUxPvlTFHN5UNoFMu1osf9e/7OZ3J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/xx85HWDhoTnMxCsXoyqVNj31z7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:a3:a1:0c:97:44:54:4f:8e:f6:6c:e0:c5:c0:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c71f391d60e1a139ccc42b17a32a95363df5cfb0
Validity
Not Before: Apr 17 08:00:28 2026 GMT
Not After : Apr 18 08:00:28 2026 GMT
Subject: CN=726972ace295dd5ec00320f7311ebd6a4fbd2aad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:38:65:52:1e:5d:50:dd:4a:b1:dc:ac:54:df:
81:d1:f2:a4:6c:43:58:73:45:61:c6:25:6d:e9:35:
38:4b:7d:87:a1:38:ea:67:80:10:ab:2a:f3:59:12:
bc:31:26:71:63:80:d9:fe:33:3d:ac:65:2b:9b:59:
52:01:35:d1:a8:60:7a:64:b8:47:3a:56:3d:e1:41:
08:59:4d:94:b4:41:15:c8:74:64:03:9f:05:0a:1e:
98:08:15:e8:2e:bc:73:10:42:c4:40:8a:93:fd:fc:
8d:51:95:48:af:0f:cf:a7:42:19:01:ab:63:da:c5:
3d:85:a1:53:35:b2:5b:59:b0:b4:3f:d9:73:77:4d:
83:e0:d7:c0:ca:05:10:57:6a:c1:6e:5f:c9:40:63:
a6:d6:b3:d7:3c:f6:e6:0b:47:2b:da:a0:3b:7f:d6:
76:08:ec:86:b9:e0:4e:af:47:51:8a:97:75:e8:de:
1f:ca:6b:38:96:c1:05:29:2c:56:0f:37:6f:c7:9e:
31:3b:82:91:d1:26:3e:89:47:93:7e:c0:f3:b3:a4:
14:ba:7c:63:ab:be:00:52:81:62:f7:84:2d:e4:d8:
78:6b:07:b9:4f:f9:fb:08:1f:9a:d9:5b:dd:e0:84:
be:82:77:37:19:dd:7b:41:bb:c7:c6:bf:4b:29:06:
86:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:69:72:AC:E2:95:DD:5E:C0:03:20:F7:31:1E:BD:6A:4F:BD:2A:AD
X509v3 Authority Key Identifier:
keyid:C7:1F:39:1D:60:E1:A1:39:CC:C4:2B:17:A3:2A:95:36:3D:F5:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xx85HWDhoTnMxCsXoyqVNj31z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:04:19:d6:ac:39:54:e1:b9:75:e5:b5:ba:b2:2a:eb:f7:86:
8d:df:78:f4:e8:97:bd:d7:04:ac:28:dd:da:57:f1:39:31:75:
c5:d2:5e:29:d4:de:60:aa:82:d5:55:7e:a1:e9:a5:ea:7c:c4:
90:b5:a7:96:01:91:cc:2f:49:95:ed:2a:cf:77:60:94:c4:33:
3c:db:bd:01:42:c2:b6:d8:32:8a:4d:af:f9:e2:40:9d:d7:7b:
7e:fd:c3:2d:bc:48:2f:bc:db:65:f3:0a:d5:c1:91:fe:33:59:
5f:75:84:ad:cd:71:23:3b:63:7e:9f:72:8c:c7:cc:47:63:d4:
9c:02:2d:e9:70:6e:82:12:90:71:3c:56:6d:8e:4b:f8:f4:ee:
01:e5:50:46:8c:dd:9f:40:b6:c2:fa:65:2b:3a:6a:11:91:01:
29:ea:1f:e5:da:7a:10:3d:80:e3:f6:84:01:c4:34:d0:f0:36:
49:0d:37:b1:66:32:1d:97:1c:4f:3a:5e:62:68:12:16:b1:f6:
a9:34:a9:df:e0:ea:f3:50:ab:1b:2e:fa:f8:a2:df:56:9f:b2:
d2:92:98:0b:0d:0b:ac:e1:e5:12:c3:fc:3e:af:e9:68:d6:2f:
2a:4f:fd:3b:ce:a5:6e:27:2b:03:29:4b:37:e8:87:fb:81:3d:
49:b4:18:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:42:14 2026 by rpki-client