Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
File: XbomMhShFwVRmA7pFxn42Ixia14.mft (raw, json)
Hash identifier: xF/xe6Tr24FZ2QKozu7HU0XXplKZDI+aLe5PDoi54Cg=
Subject key identifier: 68:9C:EA:AE:E0:5D:2A:6B:4E:18:E2:B3:29:08:57:BF:BB:A8:3C:83
Authority key identifier: 5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
Certificate issuer: /CN=5dba263214a1170551980ee91719f8d88c626b5e
Certificate serial: 019D25F178F36FFE41E76205290199930778
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
Manifest number: 13F0
Signing time: Wed 25 Mar 2026 17:01:15 +0000
Manifest this update: Wed 25 Mar 2026 17:01:15 +0000
Manifest next update: Thu 26 Mar 2026 17:01:15 +0000
Files and hashes: 1: XbomMhShFwVRmA7pFxn42Ixia14.crl (hash: A98C0YL2AsaqWWbVe3WaQtjd5JPWt24I/B/pov3UPG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:78:f3:6f:fe:41:e7:62:05:29:01:99:93:07:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dba263214a1170551980ee91719f8d88c626b5e
Validity
Not Before: Mar 25 17:01:15 2026 GMT
Not After : Mar 26 17:01:15 2026 GMT
Subject: CN=689ceaaee05d2a6b4e18e2b3290857bfbba83c83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e8:38:85:f2:6b:a4:1e:48:bf:35:e5:1f:3d:
8d:35:86:84:15:6c:72:df:4b:e1:61:13:4f:16:3b:
36:0b:3d:99:bb:43:fc:57:27:9b:b6:b7:9b:d0:59:
dc:d5:a4:08:32:ac:e0:ad:c5:94:6c:6c:a3:cd:68:
20:a9:a4:f5:10:a9:f8:30:6e:76:5d:55:d0:eb:68:
e2:ec:ad:74:57:d4:c1:1e:b2:10:bc:85:9f:93:56:
f0:3e:34:53:f6:b1:6c:60:dd:e8:af:a7:45:6d:18:
e4:5d:73:d1:4b:db:7c:e3:c2:c1:54:2f:52:89:29:
b3:f9:52:c2:f9:0a:2b:ac:86:83:93:69:ab:d6:a1:
cc:62:ba:6f:ce:c9:0a:97:44:2b:4a:13:19:46:86:
40:7d:11:03:5d:94:b1:42:f4:e8:17:81:b5:07:4e:
4b:81:a8:b8:21:af:67:3c:ae:23:22:c8:11:19:68:
48:3d:d2:3b:9a:85:06:da:52:c5:83:46:9a:1c:28:
bb:a9:d8:b3:ef:4e:d6:bc:7a:41:14:94:57:bb:7b:
c9:16:c2:10:ee:7a:0a:da:bf:9e:d7:20:b8:07:6d:
bf:94:8c:3f:11:2c:67:7c:23:4d:2a:43:9d:8b:9a:
19:7d:21:91:fe:1c:23:08:67:d1:39:d6:df:e9:60:
06:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:9C:EA:AE:E0:5D:2A:6B:4E:18:E2:B3:29:08:57:BF:BB:A8:3C:83
X509v3 Authority Key Identifier:
keyid:5D:BA:26:32:14:A1:17:05:51:98:0E:E9:17:19:F8:D8:8C:62:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbomMhShFwVRmA7pFxn42Ixia14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/4e414f-0a76-4fe9-8b7b-135a93982931/1/XbomMhShFwVRmA7pFxn42Ixia14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:f9:2a:d2:23:a5:7b:9b:84:e4:d8:07:f4:4e:a0:20:3a:6b:
b3:cf:77:3b:41:31:e6:60:76:b8:8f:68:f8:79:a2:10:8a:58:
f4:ba:0a:e4:58:d6:7c:b0:95:ab:ab:f3:1c:25:c9:07:12:00:
80:13:cf:a0:60:cd:eb:b8:1d:a7:4f:ff:6b:5f:fb:eb:29:5f:
c7:96:0d:05:b1:c4:3f:5b:ec:73:80:7c:f7:76:3d:87:a1:08:
d0:c2:73:cc:77:da:49:63:f0:b0:da:a0:f0:3b:c4:92:b6:a2:
ed:64:06:a1:90:85:a6:72:b7:8f:57:a5:52:7a:0b:df:9b:ae:
49:c8:46:a3:0a:7e:04:c1:82:29:d6:5b:3e:4b:e1:48:33:0c:
5f:7b:a9:0a:17:21:c1:38:b5:a8:e6:df:2d:66:b9:a2:c6:e3:
fb:38:9d:88:c3:b2:e5:01:a9:56:c4:3f:7f:cb:dc:f7:22:cc:
bf:b8:aa:1a:62:a2:97:01:5e:1c:62:b0:30:c1:0f:18:32:55:
aa:c7:4f:20:71:a0:e0:55:90:7d:ba:1a:af:17:12:bb:9a:dc:
be:e9:18:70:6c:06:a3:30:c8:bf:67:89:5f:77:66:e5:90:1c:
9f:b8:29:b7:a3:da:4e:15:2f:fc:ce:7a:57:0c:ba:26:e2:7a:
66:7a:6e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:23 2026 by rpki-client