Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
File: Xo0HtF99gxJMn4wPrAO-wCRos34.mft (raw, json)
Hash identifier: xeUYqUNpU7z8a2EpbLuE/dESz+3Eknyxja2gp//02/c=
Subject key identifier: F6:87:A5:7E:B6:48:BD:46:B0:C5:0F:62:5B:5C:1D:CF:78:9B:5F:68
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 019D27A8CAA9A0629DD3ED2B41E3AA215EFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
Manifest number: 18A1
Signing time: Thu 26 Mar 2026 01:01:06 +0000
Manifest this update: Thu 26 Mar 2026 01:01:06 +0000
Manifest next update: Fri 27 Mar 2026 01:01:06 +0000
Files and hashes: 1: AtV2hA3YXGqznUtgR3uB6bOY8lI.roa (hash: E9jIH1WdWmHG5Hqaca5c+6ilzJbhu15ZC+JxJ/GcG+0=)
2: EoMrU16bqHoGy2xh9XxsU9osNps.roa (hash: /uTZPWaskDiwuTtmaYcl1U/fLPuv+/ZTx4jUSu0Cxmo=)
3: WQ55TI7O_Y3_x9hkYSvF2UvokSE.roa (hash: TZOmAdpezSY7WR8DK0sxR8J5sP9pIOwu7JtZmeFi+dA=)
4: Xo0HtF99gxJMn4wPrAO-wCRos34.crl (hash: 5iRP+JgLyosx47b2Q51s1pv/SSV9iFM0T60bSEcAoQU=)
5: ZjJCoFoY4vkCAYGodEJRPnkGA1E.roa (hash: IBH/AgeMMVSuYzKj8XBPFVbLx3ITGxDTcTWy5mB/4kk=)
6: cBiAa5mhSgA43crHBox7ENCMzz0.roa (hash: o+Wpg4wmE93CRBVaPQJ3jYatCSCBt6U/zsJRrbAFVqU=)
7: hgl809tjaX7Gbv4DItgm3ScJV_4.roa (hash: 1spmr6hLWhe0MEAFi9Vr2mFMBf7qQUqSQroJeyohJqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:ca:a9:a0:62:9d:d3:ed:2b:41:e3:aa:21:5e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Mar 26 01:01:06 2026 GMT
Not After : Mar 27 01:01:06 2026 GMT
Subject: CN=f687a57eb648bd46b0c50f625b5c1dcf789b5f68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:63:ec:44:ff:0d:34:3b:64:bd:c4:12:97:ba:
12:76:d4:56:2c:1e:15:ad:d2:0d:aa:e5:4e:3e:cd:
37:31:0d:2e:8e:9c:29:c8:8b:08:1a:12:e0:ab:d0:
78:de:99:59:7c:e9:d3:88:c0:e9:7e:ea:fa:fa:8a:
5b:c3:56:a8:f0:05:a2:0e:30:b8:0e:12:1b:e6:4e:
47:73:85:fb:c0:97:06:ab:03:63:b7:e9:f3:b0:0f:
5b:b6:e3:cc:cd:3d:94:f1:90:e7:30:ff:5c:26:13:
7f:bf:1c:09:3c:09:28:bd:39:03:85:c9:93:55:9a:
b1:e5:50:bc:06:0b:a6:4e:7d:b6:6f:08:47:54:37:
9f:30:49:f9:80:e1:5f:53:d2:c8:58:19:eb:4b:69:
20:a6:f4:90:a9:d7:69:33:9c:e1:a2:4b:3a:76:64:
c8:f7:1f:85:8f:19:92:d6:86:08:6f:2a:d3:de:c7:
be:f9:0a:f4:ce:31:33:0b:0a:d5:c2:c5:3f:14:41:
1a:5a:0b:84:4f:0f:58:6e:0b:59:e1:8e:19:cf:a1:
05:d5:ca:63:00:a2:74:aa:86:e2:bf:8b:21:ef:ee:
02:cb:8c:e3:fe:d4:65:f4:94:41:6e:cf:63:26:5d:
1e:a0:5b:1c:84:ab:bb:64:ca:9a:8a:72:d0:e5:e1:
73:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:87:A5:7E:B6:48:BD:46:B0:C5:0F:62:5B:5C:1D:CF:78:9B:5F:68
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:eb:25:02:47:55:65:ac:9f:f7:df:90:06:a2:8a:f2:e2:df:
ea:1f:25:74:d0:15:d8:dc:b0:ac:68:2f:2b:dc:82:eb:f3:f5:
68:cf:59:b3:57:ee:00:f5:49:17:3c:c5:d0:3e:2e:ba:a4:4f:
02:2e:39:66:23:9f:35:41:c5:35:21:5e:54:fd:76:e7:8e:63:
1c:7c:b8:d4:0d:8f:1e:b4:79:38:44:4a:80:97:97:8d:43:7d:
6f:5f:25:f5:8d:ad:1b:9d:cb:99:96:c3:c8:ad:7e:f0:a5:1d:
63:ff:3a:f8:86:28:f8:49:95:3f:02:69:2c:85:76:ee:ff:ff:
ba:5c:d9:0f:9a:4e:60:fb:d5:35:04:d3:d2:14:34:a8:10:24:
65:24:c3:11:c7:78:f7:eb:fd:0e:24:e6:c8:c7:a7:17:3d:a2:
41:b3:80:6e:78:2b:d2:fd:21:9c:34:2c:73:8b:11:34:39:b7:
7a:da:a4:fa:1a:ea:2d:1a:0e:27:fe:ef:26:eb:d7:eb:94:47:
1d:d2:4a:82:79:cf:c9:b0:cc:38:10:7a:7d:6f:72:85:b7:5c:
f8:a8:e4:45:a5:35:2e:dd:a0:e0:b7:d3:d0:d0:84:57:6d:4b:
4a:54:76:3e:6c:03:01:b4:cc:3c:67:7d:9a:1f:3f:f9:90:7a:
6c:6b:7e:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:03:04 2026 by rpki-client