Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: bEd9WC/4DrBl5eLPcJ7J031kcqxBoH+YK43d2CseKG8=
Subject key identifier: 6C:9E:52:9C:1D:82:05:12:DA:49:3B:DD:BC:71:49:57:BB:6D:39:6C
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 019D26280590E31D2A6CD959B71A690BBB79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 15CA
Signing time: Wed 25 Mar 2026 18:00:50 +0000
Manifest this update: Wed 25 Mar 2026 18:00:50 +0000
Manifest next update: Thu 26 Mar 2026 18:00:50 +0000
Files and hashes: 1: 5bGOVGgpUSjx1uwMkRS9oqXlCJM.roa (hash: gEd4SfTflxW3Gsgz2afT2mctC6KsEwsMe5axMz0injA=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: kDpDU7+DNyydfcScD1CGY54z5HxPQVmkWvktPqEnsQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:05:90:e3:1d:2a:6c:d9:59:b7:1a:69:0b:bb:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Mar 25 18:00:50 2026 GMT
Not After : Mar 26 18:00:50 2026 GMT
Subject: CN=6c9e529c1d820512da493bddbc714957bb6d396c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d9:83:73:ed:9f:24:2d:43:80:02:c9:be:d6:
ac:9b:84:8b:fc:0f:fc:25:f0:4f:36:77:4b:ba:cf:
b5:4e:14:e1:33:d7:2d:35:40:a0:97:69:9c:3d:a2:
de:e2:c3:1f:1d:de:2f:96:3a:5e:83:e1:28:7c:42:
a7:e3:29:a9:8c:e9:00:97:c6:87:f9:61:c0:77:a1:
70:8d:77:50:2d:90:08:d2:a5:90:43:3e:7b:f3:7c:
c2:e7:33:81:a9:2d:fe:0d:2e:dd:eb:84:00:f5:52:
bd:48:8c:a7:d9:4a:3c:0d:03:f3:eb:3e:15:58:c2:
ff:72:c7:f4:13:f8:0a:34:93:30:7c:fc:da:ff:d4:
10:03:5e:dd:d4:cf:1b:fd:9d:40:48:c6:92:8b:a8:
d4:7a:10:2b:24:b5:ee:5d:b2:c7:20:bc:39:b1:b6:
2f:59:58:7d:af:78:6f:6e:27:d6:c4:2b:80:c8:e6:
6b:50:96:0b:02:12:8e:1c:8f:1a:f5:ae:20:85:28:
6e:7a:f3:5d:68:c1:73:fb:7a:6f:19:cf:42:d9:d2:
49:bd:da:f1:4d:48:09:2e:70:76:7f:2b:67:49:8b:
28:6d:4c:a8:c1:e7:98:f8:dd:4b:f8:30:e2:1f:ed:
3d:fc:ad:8a:42:fe:99:19:cb:38:4d:c8:01:46:fe:
6f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:9E:52:9C:1D:82:05:12:DA:49:3B:DD:BC:71:49:57:BB:6D:39:6C
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:f9:54:31:ba:76:ee:e0:7d:68:63:87:78:a7:2e:7e:10:fc:
c6:b6:aa:56:d8:26:d4:1f:73:45:ac:16:1e:45:b9:9e:2e:19:
e5:90:5e:94:68:76:aa:67:9e:9b:b6:1d:9e:36:4f:e5:b0:5e:
9b:e9:0f:c7:d7:8a:24:ce:5f:13:c9:19:79:65:c0:fe:84:50:
b7:b0:db:f2:d0:42:b4:cb:6d:39:5a:20:86:f4:c5:4c:41:b4:
f0:60:cb:76:a2:ca:46:47:c3:f6:7e:68:b2:f0:b5:d9:d5:b1:
db:8f:93:be:79:aa:03:32:46:91:e1:d2:25:8c:63:e7:6d:0e:
7c:ee:82:8e:19:0d:0f:e4:71:ec:61:a3:51:65:18:98:6b:5b:
73:44:89:d6:74:51:71:3e:2d:7c:54:b5:e0:88:38:eb:1e:2d:
f4:3b:db:7a:1c:70:6f:69:48:31:13:e4:0c:b6:91:da:73:66:
eb:f1:9f:65:27:5a:5e:8d:3c:7e:73:48:03:04:4c:58:f3:aa:
4d:fe:ec:12:3d:34:60:11:f9:3d:bd:88:ad:92:82:8c:db:63:
d0:74:76:5e:6f:0a:58:ca:a9:94:b3:7b:66:20:a2:0b:a6:5c:
c8:12:7c:4a:1f:0c:2f:7f:37:bd:44:2d:b5:1e:e4:d4:b0:18:
ef:67:e4:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:18 2026 by rpki-client