Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
File: xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft (raw, json)
Hash identifier: 6NqrE2mUTTunD43OjnVKFXB380rxniOTRzwUrJwy+kE=
Subject key identifier: DE:52:85:83:74:81:75:58:3A:16:84:43:A8:48:19:0F:48:85:BD:47
Authority key identifier: C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
Certificate issuer: /CN=c59c41daf0092b703bc059ba1353f071ed12199b
Certificate serial: 019D284E04D0237E5A82510B46B4E08A28C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
Manifest number: 181A
Signing time: Thu 26 Mar 2026 04:01:34 +0000
Manifest this update: Thu 26 Mar 2026 04:01:34 +0000
Manifest next update: Fri 27 Mar 2026 04:01:34 +0000
Files and hashes: 1: 8cS6Qj5MYE4B8boPnbZ2kcXbU-k.roa (hash: AKR29eJxFVsOMPaiI3uGdOD049mIqIl+nuPgud2mgtc=)
2: xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl (hash: PZSnilAJMByRaFWG3VxsWgtvYNsOvkvqYpDLnr+GpIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:04:d0:23:7e:5a:82:51:0b:46:b4:e0:8a:28:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59c41daf0092b703bc059ba1353f071ed12199b
Validity
Not Before: Mar 26 04:01:34 2026 GMT
Not After : Mar 27 04:01:34 2026 GMT
Subject: CN=de528583748175583a168443a848190f4885bd47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:66:02:ab:46:cb:69:1d:b3:4d:61:d6:77:f9:
fd:fd:c9:35:0f:e5:e6:e3:9b:59:77:f0:7c:ad:78:
5d:4e:bc:ce:49:bd:ca:00:74:1a:8c:13:d4:94:31:
f4:22:72:65:ff:63:e1:a1:f1:22:37:a7:61:c5:3e:
c7:a1:6f:c6:60:bd:9e:49:65:ab:0a:f1:57:f0:ae:
dd:1c:58:36:22:e9:e6:8c:d2:a7:f2:d4:87:21:c1:
6c:a9:1e:76:a6:2b:cd:e6:b1:03:a2:2c:ae:1b:bd:
06:ab:46:2e:5e:fb:dd:ba:28:4f:51:ef:86:1c:ea:
de:e5:5f:6c:1c:29:78:7b:9b:13:ed:3d:08:e1:08:
27:76:7a:c0:77:ea:cc:78:fb:e8:6a:f5:93:5f:20:
7d:4a:03:3d:45:67:2a:96:8a:bc:73:a5:b1:03:1a:
d3:c6:fd:dc:72:11:9d:9b:2b:4c:f9:fb:60:fc:2f:
7b:47:93:f7:eb:1d:73:03:d2:83:9c:08:ad:de:fa:
43:37:a1:f5:87:74:64:db:c9:6e:af:0c:76:46:71:
12:37:87:e7:52:5f:9e:12:fa:68:df:d1:ae:bf:23:
89:51:46:30:13:dc:0a:91:ca:dd:29:f1:1a:e7:83:
a0:7e:5d:a5:be:39:a0:d1:03:19:78:8b:86:c8:97:
d0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:52:85:83:74:81:75:58:3A:16:84:43:A8:48:19:0F:48:85:BD:47
X509v3 Authority Key Identifier:
keyid:C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:83:45:79:f5:50:68:53:1e:d4:cf:85:99:9d:dd:9b:55:be:
6b:d5:26:d2:41:41:7e:d5:07:42:e4:19:4c:89:5b:eb:84:19:
c9:0f:6e:3c:67:97:49:e3:02:35:45:f6:43:42:c6:94:39:f2:
2e:44:a5:30:02:3e:e8:e1:77:72:02:04:b7:21:7f:bb:51:89:
36:82:48:ed:80:2b:48:06:39:56:78:3e:28:b8:83:d5:58:92:
86:c2:de:38:db:6b:7c:2e:79:0e:2e:c3:90:1b:12:b3:78:93:
ea:06:25:5b:1a:6b:64:69:16:85:84:da:89:11:c0:69:27:62:
11:30:03:6e:69:1b:a6:12:6a:4c:c4:25:07:e0:61:3f:ad:af:
0b:35:10:d3:26:b4:f0:24:e9:5a:96:fe:eb:c2:1d:72:f3:9f:
c0:d0:bd:c8:db:2a:9b:27:72:f5:9b:91:a0:28:1e:ff:24:42:
a0:b6:a4:50:2d:ee:7a:4e:5c:d9:57:db:2c:c4:e1:33:c9:17:
b2:b7:e7:71:58:62:55:6a:c6:d4:98:36:8c:19:26:a5:d5:85:
92:f8:b0:d0:1b:2e:10:c1:ca:e9:32:15:54:9f:b8:ee:8b:b5:
7d:ac:5d:b6:21:8f:36:29:b8:8e:3c:85:5f:7a:79:fc:7a:7c:
16:be:9f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:27:45 2026 by rpki-client