Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
File: DxgybgAap_xW-DUxMVN2-equCYg.mft (raw, json)
Hash identifier: mVaWJtThRm4o7sHu8yh5zIjT9HxGh5ohLq4xjxqWols=
Subject key identifier: 30:3F:8F:A9:B4:60:73:B0:39:6E:34:F4:03:CD:96:10:6E:74:19:C4
Authority key identifier: 0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
Certificate issuer: /CN=0f18326e001aa7fc56f83531315376f9eaae0988
Certificate serial: 019D2A3B5C62086BCC4C0CE0AC26DD03DD34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
Manifest number: 0AFF
Signing time: Thu 26 Mar 2026 13:00:26 +0000
Manifest this update: Thu 26 Mar 2026 13:00:26 +0000
Manifest next update: Fri 27 Mar 2026 13:00:26 +0000
Files and hashes: 1: 64Gcj0h8vNXf7GFNZxmMm2mfr1E.roa (hash: pu8wgjr4VrA4g+LsPAV0cojDn7FfUUvf2NSJDNpkiw8=)
2: DxgybgAap_xW-DUxMVN2-equCYg.crl (hash: HAtOIO/g2mSGgHm6/maFV6N5ugFV57ekC+NbOuekxBY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:5c:62:08:6b:cc:4c:0c:e0:ac:26:dd:03:dd:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f18326e001aa7fc56f83531315376f9eaae0988
Validity
Not Before: Mar 26 13:00:26 2026 GMT
Not After : Mar 27 13:00:26 2026 GMT
Subject: CN=303f8fa9b46073b0396e34f403cd96106e7419c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bc:ab:c7:25:22:9e:05:22:5d:8a:70:0f:e3:
5e:8b:f2:72:54:03:54:02:74:16:62:8a:f9:da:a7:
6d:ee:51:db:98:38:75:e9:19:1d:91:00:17:da:7d:
40:d1:02:4d:1f:5f:1d:ca:88:3d:31:27:3c:db:f6:
0f:18:8f:c5:6d:1a:93:21:da:45:72:a3:4b:36:67:
41:9e:be:f9:e1:d0:49:8b:51:f9:7e:98:dd:83:0b:
2d:55:76:6c:30:8f:0b:ab:10:50:49:48:0d:58:a6:
a3:49:be:e7:86:26:e7:96:83:c1:a6:bf:cc:29:2c:
49:c3:fb:6b:56:13:de:7d:51:c0:70:c2:ff:c3:c9:
da:74:e4:12:43:f9:03:c8:a7:b7:07:8b:28:5e:68:
85:25:34:b0:d9:2e:e8:c8:c2:c2:53:6d:cb:42:20:
06:96:63:45:ba:4f:fd:7a:ba:84:92:99:71:b5:89:
42:1d:b2:6e:d8:cb:13:c9:0f:69:01:cc:3c:d2:76:
0d:27:af:21:59:8d:0c:08:6c:1e:ab:cc:29:35:85:
d4:97:0a:c5:86:00:a2:55:93:6d:c0:00:18:af:35:
6e:05:24:b6:cd:0d:c2:79:81:47:98:ab:d5:4e:7b:
b0:3f:bb:d8:77:4d:75:92:17:5e:b4:65:46:65:c1:
5e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:3F:8F:A9:B4:60:73:B0:39:6E:34:F4:03:CD:96:10:6E:74:19:C4
X509v3 Authority Key Identifier:
keyid:0F:18:32:6E:00:1A:A7:FC:56:F8:35:31:31:53:76:F9:EA:AE:09:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DxgybgAap_xW-DUxMVN2-equCYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/a7e45c-f297-4520-abe6-6b813693bc8c/1/DxgybgAap_xW-DUxMVN2-equCYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:be:1b:bf:41:44:75:0e:12:05:ba:f8:63:3e:ee:6e:fb:2b:
67:05:34:f9:c6:d1:4a:2a:c2:fa:06:42:4c:91:f3:b7:0c:43:
d1:84:fd:5c:fc:2b:ba:0d:bc:51:d3:65:63:61:06:d3:12:99:
30:2c:7e:c4:4c:ed:e2:e2:81:c6:0e:68:4f:30:e3:08:e8:51:
28:55:3b:69:c8:90:d8:f3:5f:1c:60:24:e9:d0:a7:56:77:c0:
ec:ec:58:19:93:8e:41:4d:10:fa:a2:3d:bd:5e:3b:c0:91:26:
d3:e8:73:ae:3f:21:ed:57:5a:43:98:de:ca:05:77:4a:1a:2e:
e3:94:58:30:b2:7d:f0:a2:dd:61:d8:1d:36:5f:1e:45:29:b5:
52:55:48:e2:0d:fc:c8:64:5d:75:a5:7a:37:67:05:99:03:aa:
fe:1a:07:b6:80:4f:5b:6a:92:2a:e8:ce:87:7f:34:6f:df:b2:
bd:02:b5:c0:db:f7:c7:66:fa:bc:bc:b3:00:5f:7c:8c:7f:45:
7d:ba:ea:2e:a9:ce:27:be:64:60:a8:71:44:79:14:27:ed:25:
30:53:92:6e:cb:4f:9f:21:b6:fd:8e:25:b0:87:64:c0:12:c6:
f3:8f:69:42:b1:02:71:00:32:c0:88:2d:8b:ca:9d:c6:6d:69:
d4:cb:b6:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:54:36 2026 by rpki-client