Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json)
Hash identifier: I1qMR1/OyCvWLb0RyyzRVsupjQCEDhMZ8WdLHJ3syTQ=
Subject key identifier: FE:21:76:F3:2E:75:52:A8:FF:4A:F8:88:A4:CC:54:68:CB:EC:EA:91
Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Certificate serial: 019D26CD6EC6443383F3382F8E99F7345126
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
Manifest number: 0DC3
Signing time: Wed 25 Mar 2026 21:01:30 +0000
Manifest this update: Wed 25 Mar 2026 21:01:30 +0000
Manifest next update: Thu 26 Mar 2026 21:01:30 +0000
Files and hashes: 1: 6y5zOsV9mgf7F2BHXrtRk7xzs4U.roa (hash: u0j0WMKCrPC+ARtOidkhhJpiGvpkSNz5tPW2s6UUp9I=)
2: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: Q8d5RYYcOLnL0hlp6qEQe5PKdQ02f/mmi3xz5GFURS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:6e:c6:44:33:83:f3:38:2f:8e:99:f7:34:51:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Validity
Not Before: Mar 25 21:01:30 2026 GMT
Not After : Mar 26 21:01:30 2026 GMT
Subject: CN=fe2176f32e7552a8ff4af888a4cc5468cbecea91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:54:b0:3a:30:c6:7f:cc:3d:85:34:af:a1:dd:
89:25:ed:4a:48:36:55:5a:59:10:14:ae:a2:df:a4:
b9:9c:21:7b:df:9f:42:ba:83:36:80:9f:6b:02:56:
8d:bc:10:61:4e:12:6e:6b:6a:ab:cb:2a:9b:68:5f:
57:75:11:55:c6:c9:50:80:60:9f:52:03:3c:33:37:
35:c1:62:3f:8e:26:a7:7e:96:d4:4e:b8:6e:c2:cb:
d6:99:03:13:77:12:94:b2:ac:bc:1b:15:4f:d3:59:
c9:b5:4b:eb:6e:11:1e:17:1f:bd:1c:00:a2:22:47:
c2:4d:bd:3a:0f:3c:00:4b:8d:8e:b7:74:83:e6:d6:
15:33:cd:7f:de:c0:49:3c:97:fd:2f:7b:96:ed:f2:
a1:fc:c3:48:c5:43:f6:39:5b:fd:65:fd:bb:22:e9:
c8:39:29:df:2c:1b:6a:b8:59:12:70:9b:e0:63:44:
c7:32:99:31:1a:46:7d:6f:a5:70:e2:97:14:fe:e7:
e1:8d:5b:58:03:cc:3c:47:dc:8c:f0:b8:3e:bb:bd:
19:25:af:f5:c0:7a:40:52:da:73:62:07:62:59:6a:
5b:28:4f:26:4a:37:ce:af:f0:f8:de:b0:4c:9e:8e:
bc:02:54:ad:de:53:bd:cf:ea:25:7f:14:3c:35:cf:
7e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:21:76:F3:2E:75:52:A8:FF:4A:F8:88:A4:CC:54:68:CB:EC:EA:91
X509v3 Authority Key Identifier:
keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:a0:f8:14:20:c9:ab:61:64:0f:9d:b8:4f:c1:e2:83:46:59:
28:36:68:89:c5:3d:19:a0:8c:f3:3a:cb:43:d2:f3:18:7c:ac:
aa:b0:50:1f:08:9f:53:79:30:8f:44:a7:5b:e6:88:0a:4c:c5:
90:e7:87:c4:ce:99:cb:97:6f:c6:4b:c9:33:5a:ac:74:87:45:
7b:3a:9b:18:0b:b5:92:38:ee:92:d6:a0:90:66:24:06:15:dd:
7b:f5:26:1d:17:00:c7:a1:b7:0c:b8:f1:1b:49:05:7c:58:e2:
29:a8:71:a9:cb:89:3b:47:8f:40:aa:ba:14:19:c1:ad:1a:eb:
84:7c:21:ba:be:a8:82:6c:7e:3c:23:18:63:97:0b:c9:17:bf:
46:05:74:2f:ff:2a:18:b5:a6:76:8d:36:10:9a:25:cd:f2:ba:
0f:b0:ba:fe:1a:38:55:a7:65:e8:3c:d8:96:6b:e6:41:7f:9c:
95:00:ba:ee:51:b7:8d:1a:b8:37:9b:51:a4:81:42:2a:b5:96:
3d:ee:a1:79:4a:99:a6:31:00:fd:51:42:42:b4:ac:8f:14:b3:
d1:7b:32:b2:aa:88:5d:99:fd:d3:fe:4c:a6:1a:53:fc:5b:b7:
6c:c1:04:1b:dd:f7:f5:ff:57:90:69:83:cf:f8:50:b7:46:36:
05:9c:9d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:59:08 2026 by rpki-client