Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
File: _XjxP_qS8HTr5VfSotKa0Noz5dg.mft (raw, json)
Hash identifier: WpEcSiF2JrH8xbW1dUDXv2DyPV+nK+4vVPNk+hCbnN0=
Subject key identifier: 96:5B:B0:D9:20:52:0D:97:96:DD:06:E0:20:F2:F7:3C:B6:21:89:B4
Authority key identifier: FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
Certificate issuer: /CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Certificate serial: 019D2704B4BAE554C8C24EE5807F376C5B07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
Manifest number: 0DDF
Signing time: Wed 25 Mar 2026 22:01:52 +0000
Manifest this update: Wed 25 Mar 2026 22:01:52 +0000
Manifest next update: Thu 26 Mar 2026 22:01:52 +0000
Files and hashes: 1: H7yvjO1PteMvFud2cVf980xvhOM.roa (hash: RhQsj0SDsU/JKqzjG9Bf/mkgnMQmL8vD/s9sreGOu30=)
2: _XjxP_qS8HTr5VfSotKa0Noz5dg.crl (hash: m8urYm8IykShmF2XAhOd2wV993xYHW08XoIMN1jBApw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:b4:ba:e5:54:c8:c2:4e:e5:80:7f:37:6c:5b:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Validity
Not Before: Mar 25 22:01:52 2026 GMT
Not After : Mar 26 22:01:52 2026 GMT
Subject: CN=965bb0d920520d9796dd06e020f2f73cb62189b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:70:be:b0:b1:23:bd:a0:52:c8:a0:e7:32:cc:
df:d4:41:9c:9c:5c:78:ff:dc:18:44:56:f9:8a:dd:
12:80:07:d0:ba:28:d2:ef:82:c6:7d:f9:52:9e:e4:
fa:49:c3:e5:01:21:f6:9d:66:eb:1d:be:d2:5b:f0:
06:1e:3c:33:27:9f:77:d2:aa:3e:21:58:bb:b8:ac:
4a:4b:eb:79:0f:99:8f:a3:c5:7e:a7:0e:74:e2:7c:
bf:c8:02:6d:76:3f:5f:af:90:38:9a:c4:10:0b:60:
3a:be:5b:67:84:17:c8:86:9f:22:7e:0c:c6:18:b3:
82:ff:c7:97:47:9e:a0:68:fc:65:4f:13:3f:8f:f2:
c4:e9:5e:2b:a7:34:f2:a9:9b:2c:b0:b5:73:5e:78:
bd:4b:4a:40:45:11:95:34:38:ff:76:f6:fa:c7:ef:
cc:31:b0:bc:a1:4e:db:75:3b:33:4b:f3:1c:3a:77:
b5:67:30:23:1c:05:75:ef:e5:3f:29:bb:8c:8a:9b:
0f:fd:fb:bf:23:f6:ef:69:b7:54:09:08:a3:9c:6f:
54:fe:6d:ec:ab:62:83:fa:3b:32:7a:7e:cc:1e:d6:
4f:48:22:94:bb:19:7e:12:15:e1:2d:d6:c0:72:7d:
f3:47:4d:c4:a9:23:e3:9f:74:dd:7a:06:c9:5f:cf:
b4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:5B:B0:D9:20:52:0D:97:96:DD:06:E0:20:F2:F7:3C:B6:21:89:B4
X509v3 Authority Key Identifier:
keyid:FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:19:92:3b:e7:47:87:e5:e1:c5:13:f6:ce:55:4f:a6:74:b3:
49:21:6d:36:cf:d0:92:c1:c3:0a:0d:66:d7:05:64:18:41:17:
69:4f:f6:07:01:42:ba:08:f4:97:37:ca:bb:91:bc:23:5b:d6:
06:0f:5c:5c:7a:17:a5:1e:db:d7:2e:26:74:89:d6:6c:f6:a6:
86:37:6e:b7:6d:38:a1:90:f9:35:f4:ec:60:dd:d5:26:a5:04:
c3:10:bc:24:ac:1d:46:7e:f7:2a:76:8b:38:2c:16:08:89:a8:
e6:79:03:b1:63:72:64:c3:96:54:d3:86:66:87:fd:e2:9f:57:
35:0b:fe:97:84:af:90:0f:d7:9f:c3:04:66:f0:a1:0a:9b:8e:
66:9a:d1:0d:40:d4:f1:44:aa:0a:bb:83:c5:07:ed:0b:2e:d4:
33:ac:5f:4b:ef:34:5b:26:fb:c5:f4:66:7b:84:4a:80:c7:bb:
c5:c3:75:1f:ba:68:5e:85:ab:fe:dc:f2:46:1a:7d:ea:fa:67:
d7:f7:c1:3d:4e:7f:cd:80:16:ad:ac:5d:9c:69:6c:f1:20:c1:
94:18:33:bc:2d:85:ee:35:09:ec:43:16:cd:3b:ef:e7:61:3c:
e7:02:47:99:ee:27:01:da:e5:03:0e:2b:51:b4:47:b7:18:01:
5b:d6:cd:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:35 2026 by rpki-client