Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
File: xJkOwgER9C-2LzmoHHOSqSGVW_I.mft (raw, json)
Hash identifier: VE/BktTOrci/9OzThvXSlfbeyMfEe1dLRlbPie6W+s4=
Subject key identifier: EA:8E:47:65:22:D6:FE:76:2B:4F:AE:6D:15:76:1A:83:1A:8A:BD:ED
Authority key identifier: C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
Certificate issuer: /CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Certificate serial: 019D2816F2B33C88E7849EE0E44F090459A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
Manifest number: 04E9
Signing time: Thu 26 Mar 2026 03:01:25 +0000
Manifest this update: Thu 26 Mar 2026 03:01:25 +0000
Manifest next update: Fri 27 Mar 2026 03:01:25 +0000
Files and hashes: 1: 9xmBM7L_OxbERlsRfyJd0cq_X64.roa (hash: eKCgpHNS7X6MicYQsrZGeTzZ5yIaoRnXGdc8m8M+l4U=)
2: xJkOwgER9C-2LzmoHHOSqSGVW_I.crl (hash: wq+Gh6xrHs+OSrEfTjrUGvk2Q+Z7a2Asm08ZdCt5XOg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:f2:b3:3c:88:e7:84:9e:e0:e4:4f:09:04:59:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4990ec20111f42fb62f39a81c7392a921955bf2
Validity
Not Before: Mar 26 03:01:25 2026 GMT
Not After : Mar 27 03:01:25 2026 GMT
Subject: CN=ea8e476522d6fe762b4fae6d15761a831a8abded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2f:dd:55:8b:d7:00:5d:3b:93:c6:06:88:4c:
71:0a:ab:03:df:3b:83:7f:7e:ee:5e:1e:0f:98:10:
76:97:7a:f8:00:b1:29:35:33:ea:e5:01:3a:ed:ac:
58:d5:78:a2:d1:72:e0:3a:2d:e4:b4:69:8b:c1:ec:
33:89:ae:20:b9:1f:eb:a8:f6:63:33:09:91:23:c0:
77:0d:5b:2b:a0:41:15:3a:6b:f0:5a:5b:70:d4:cb:
2c:38:e0:d8:ee:76:74:d5:c6:6c:8f:91:31:f6:a7:
e5:f6:d4:88:f4:38:16:7c:44:09:1b:e2:48:da:8c:
2e:1b:85:bd:87:ef:96:db:a9:46:b7:ef:9d:c2:72:
1f:81:11:a4:b6:83:b6:f4:8e:cf:57:b8:88:52:b1:
c2:31:7f:42:20:f5:a6:46:0a:fe:9b:10:8f:44:ab:
f4:ff:fe:d1:1c:42:b3:0d:8d:4b:0e:7d:b6:9a:8c:
23:92:f5:0d:fb:23:82:f0:6b:90:ab:5b:14:80:a1:
2b:3f:00:94:0d:3a:03:3c:1b:54:0d:7f:e1:04:6e:
a3:d4:dd:68:bb:f9:db:7c:2a:4a:4e:fc:83:f1:9e:
58:96:e4:84:04:93:55:a4:63:72:e8:90:7e:1d:6e:
5e:ad:0f:4d:5b:4e:69:2b:f7:99:92:cf:e1:a9:4f:
85:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:8E:47:65:22:D6:FE:76:2B:4F:AE:6D:15:76:1A:83:1A:8A:BD:ED
X509v3 Authority Key Identifier:
keyid:C4:99:0E:C2:01:11:F4:2F:B6:2F:39:A8:1C:73:92:A9:21:95:5B:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xJkOwgER9C-2LzmoHHOSqSGVW_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/9c7ce4-2cd4-4854-8840-b0fe9221efb7/1/xJkOwgER9C-2LzmoHHOSqSGVW_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:15:1f:76:4e:eb:e8:1d:26:84:bb:8a:80:8b:ff:ec:72:10:
ef:5e:eb:4d:4b:f5:2a:9f:62:bd:be:17:03:c7:6f:1a:44:39:
f8:56:46:16:fe:a8:84:50:98:c6:b3:d3:3c:b5:74:6d:d5:8d:
b5:a5:ce:8c:3f:30:3c:01:b9:bd:ad:b1:bb:45:3b:77:de:24:
16:d8:1d:16:2b:fd:ba:5a:f7:e0:30:66:e8:6a:f4:32:c6:f8:
f8:5a:d4:04:25:05:b8:18:c9:30:17:b6:14:43:36:1f:a7:4d:
dd:cf:3d:3d:17:cf:ea:56:17:9d:db:fb:a9:3d:57:7a:2e:39:
1b:1e:cf:76:bb:75:79:d5:18:fc:dc:65:ba:c7:27:f6:bb:4b:
b2:af:ef:69:87:29:38:d6:c1:9d:a2:9b:d9:f2:d6:f1:43:50:
26:ec:3b:52:25:57:16:5d:8f:d5:35:23:50:47:a9:fb:b3:55:
09:5e:d1:d8:07:1b:2c:4e:5b:ad:e3:cd:37:9b:41:ab:f1:2a:
5c:cc:c2:1e:c2:62:14:4b:b1:d2:ae:2f:5b:ea:e2:cc:40:8a:
d3:8c:fc:07:c5:77:ff:1b:fe:b7:d9:23:91:de:33:11:7d:ce:
75:5b:ed:46:6c:65:1d:c0:17:bc:24:7f:36:a2:f0:a3:49:79:
61:ce:40:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:54:30 2026 by rpki-client