Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
File: xN8L0EqoQ-aAgvbezgeYcytviDI.mft (raw, json)
Hash identifier: zFZDPVKb1/lD1aXX+D4mkP50geNc9HXmvdIP8p0914M=
Subject key identifier: 65:1D:6E:02:4E:73:94:39:E9:36:CB:0C:42:0C:56:C2:C7:78:CD:27
Authority key identifier: C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
Certificate issuer: /CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Certificate serial: 019E1E6C9B4392120137D85E731F50C3CFE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
Manifest number: 1898
Signing time: Tue 12 May 2026 23:01:34 +0000
Manifest this update: Tue 12 May 2026 23:01:34 +0000
Manifest next update: Wed 13 May 2026 23:01:34 +0000
Files and hashes: 1: Bufh8fLfGuFcJIRDH90wZyey3vQ.roa (hash: 97pbnQhhP+W/DGuiQ6yzPinj80mmymwV5CPqsqreqm0=)
2: aCjEV-QnOk8LOF5MzDA0-UkFuK4.roa (hash: Xqrg7NBvSV9yvVpUUwp51n6WbUWMsfHL/0GgkjRTj1U=)
3: gjKej6nLmog1Pdhy2m7-nfTgjGw.roa (hash: q4iLVi9p7pL885pUO6lukqaAAVZW6+EWxQvMee6AK60=)
4: phc_rWomL_SloTsFG0Feb3oexB8.roa (hash: vPwplBARp1RlzeoBKfqMgLEmEz1s7NkUpEh7QDk9mPM=)
5: xN8L0EqoQ-aAgvbezgeYcytviDI.crl (hash: 8U0pBDU3QC1Y9l1Xo2BmYtcjydDZtfzxk8oIkfYaa88=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:9b:43:92:12:01:37:d8:5e:73:1f:50:c3:cf:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Validity
Not Before: May 12 23:01:34 2026 GMT
Not After : May 13 23:01:34 2026 GMT
Subject: CN=651d6e024e739439e936cb0c420c56c2c778cd27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8e:f1:41:f5:a5:d4:a2:2c:16:da:ab:61:44:
c5:f5:c6:dd:fc:f0:d1:43:1f:4e:9e:26:e7:b7:df:
03:41:db:bb:29:32:aa:ab:30:24:e2:84:ab:25:d1:
ed:c5:e5:42:6a:10:50:a8:09:4f:4c:21:3b:45:60:
ab:5c:6b:71:82:8e:7a:28:dc:23:d7:53:7d:70:8e:
d0:71:7a:08:8c:d9:e5:1c:60:de:a1:90:1c:40:72:
dd:94:ed:4c:cc:e6:bc:b8:a1:6f:9c:83:88:b6:f5:
10:4d:39:b1:87:19:a2:e5:73:10:e2:93:64:4f:1c:
fc:67:f6:99:19:db:f3:40:3e:a6:89:fa:ee:14:c5:
54:8e:62:88:a8:47:a3:84:5c:2b:e8:cd:2b:74:39:
f4:6b:23:06:99:6a:54:b4:ae:cd:c0:13:51:dc:76:
3f:cc:a3:e1:05:32:ba:7a:eb:79:69:98:fa:77:43:
d3:b5:6e:32:a7:1a:44:df:93:07:54:5e:d8:b7:29:
3b:1c:20:b3:0b:0a:4b:23:62:79:a0:97:bb:eb:bd:
aa:d0:37:a0:4d:79:14:cb:7b:87:53:1c:87:bf:7e:
83:55:98:43:55:2f:0c:9b:f4:20:2f:0d:51:07:6c:
6e:f0:6a:0b:71:9c:ce:27:7d:b1:ea:5c:41:5e:23:
fd:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:1D:6E:02:4E:73:94:39:E9:36:CB:0C:42:0C:56:C2:C7:78:CD:27
X509v3 Authority Key Identifier:
keyid:C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:9b:e5:d5:09:95:c8:6a:cf:bf:6b:8d:ba:ff:9e:8e:13:63:
57:bf:9a:f6:fc:eb:9d:9c:c3:6f:77:46:4d:d2:91:fb:83:5e:
ed:24:73:88:cf:d1:16:b3:be:48:e8:46:e8:3b:74:2a:04:24:
b3:d5:99:24:22:5d:6e:be:d2:cf:35:c7:0e:fb:52:45:99:fd:
50:14:87:c4:e0:ca:7f:16:a3:e8:81:e8:49:a5:f2:a0:99:df:
f9:c2:c2:ff:d2:17:59:80:58:f7:fa:6e:76:4a:cc:4b:a4:7f:
ab:9b:05:8a:4e:ae:e5:10:86:3a:8f:22:75:68:44:9f:f4:c7:
e7:2d:40:37:a8:66:74:c4:cc:cd:89:9e:91:d7:ba:87:1a:b8:
d3:2a:fa:e8:59:9a:a0:c3:33:67:1e:8b:6b:ca:1c:6e:50:09:
e0:98:2a:3e:35:56:db:49:80:09:77:07:fc:ec:fb:a1:35:89:
f9:55:c7:03:03:b2:6c:f7:71:59:ae:05:d4:5b:fa:03:c4:13:
cf:a5:83:cf:e7:70:85:dc:8f:6b:12:e6:2e:c1:45:0e:d5:f7:
97:2f:0b:33:7a:a8:e3:7b:fb:16:be:78:e6:72:bc:68:74:91:
65:91:f4:25:01:f1:04:c0:4a:7c:43:12:86:f6:87:1c:2c:e0:
81:82:d8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:13:14 2026 by rpki-client