Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
File: xN8L0EqoQ-aAgvbezgeYcytviDI.mft (raw, json)
Hash identifier: 7N1SL4D7Qb2BmU4FLliR73czFggSKf4Zlc7r1qaq76I=
Subject key identifier: 64:52:B4:9C:2D:AA:57:BF:C5:82:C6:B8:7C:CE:52:78:8B:B0:8B:D7
Authority key identifier: C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
Certificate issuer: /CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Certificate serial: 019D29299844EE751D637D6764CFE3AFF691
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
Manifest number: 1819
Signing time: Thu 26 Mar 2026 08:01:24 +0000
Manifest this update: Thu 26 Mar 2026 08:01:24 +0000
Manifest next update: Fri 27 Mar 2026 08:01:24 +0000
Files and hashes: 1: Bufh8fLfGuFcJIRDH90wZyey3vQ.roa (hash: 97pbnQhhP+W/DGuiQ6yzPinj80mmymwV5CPqsqreqm0=)
2: aCjEV-QnOk8LOF5MzDA0-UkFuK4.roa (hash: Xqrg7NBvSV9yvVpUUwp51n6WbUWMsfHL/0GgkjRTj1U=)
3: gjKej6nLmog1Pdhy2m7-nfTgjGw.roa (hash: q4iLVi9p7pL885pUO6lukqaAAVZW6+EWxQvMee6AK60=)
4: phc_rWomL_SloTsFG0Feb3oexB8.roa (hash: vPwplBARp1RlzeoBKfqMgLEmEz1s7NkUpEh7QDk9mPM=)
5: xN8L0EqoQ-aAgvbezgeYcytviDI.crl (hash: 5X+H8fd10VI/WlWaS82fcjEuyRIAQyHWmdBen3+vjZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:98:44:ee:75:1d:63:7d:67:64:cf:e3:af:f6:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Validity
Not Before: Mar 26 08:01:24 2026 GMT
Not After : Mar 27 08:01:24 2026 GMT
Subject: CN=6452b49c2daa57bfc582c6b87cce52788bb08bd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:04:46:29:70:74:6b:f6:bc:02:69:9c:b8:09:
af:b5:07:2b:c3:d4:e9:5f:86:0d:33:fd:54:16:88:
a4:0d:23:49:c5:51:5b:c8:bb:d2:59:97:df:89:9a:
51:ca:79:8c:dd:a6:40:68:22:63:0e:e8:e3:7f:ee:
0a:a3:bd:5e:e9:6e:e8:c7:e2:a2:1c:0d:7a:e2:86:
3b:ad:0a:2a:d8:26:b4:a0:20:68:60:e3:f6:aa:6a:
44:41:46:79:f4:b8:2f:38:ce:ed:16:d1:f9:8f:bf:
c3:87:85:da:72:ca:ac:d1:c2:27:07:55:ce:0d:c3:
6d:ef:51:1d:d6:6b:e3:b4:6e:4b:56:52:9c:11:61:
74:7b:3f:96:61:c3:81:26:d2:26:81:68:50:75:d2:
a2:cd:e1:f9:26:48:ed:12:1b:79:57:be:10:f0:93:
a4:6d:ef:a8:e4:c4:96:50:b3:54:80:1f:ef:ba:b4:
c0:0b:ae:78:28:ac:86:78:cd:20:11:c1:3b:d5:fe:
27:d3:1a:8b:c1:6a:60:23:27:5e:69:9c:61:02:d5:
e1:9c:dd:a2:85:d4:14:79:89:25:5a:a3:ed:fc:9b:
40:eb:94:c0:dc:d4:bd:9c:ec:ab:e8:e5:b5:47:40:
b5:61:5e:29:a8:a5:4d:2e:b2:5b:54:81:26:92:bc:
9d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:52:B4:9C:2D:AA:57:BF:C5:82:C6:B8:7C:CE:52:78:8B:B0:8B:D7
X509v3 Authority Key Identifier:
keyid:C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:1f:99:1f:ee:71:57:e2:87:aa:c8:da:69:7c:a1:dd:7c:4b:
f2:27:a6:fe:f8:ca:ce:ee:a9:d4:72:f4:fb:43:5a:e4:e6:a9:
e9:98:0c:9c:d2:b9:e1:ed:fa:d8:db:a7:b6:62:01:27:4e:78:
4d:2f:79:cf:51:3b:34:cf:33:77:c7:dd:14:2f:29:2c:df:a5:
52:b1:56:53:ff:00:8e:dc:61:ca:d2:79:5e:d9:de:01:37:83:
a9:eb:7d:dc:31:93:6f:61:88:7c:ba:25:a2:30:50:73:c9:50:
12:e1:5e:a7:bd:6a:9c:7a:e6:29:49:31:0f:86:78:c2:da:5e:
7e:50:85:de:49:80:03:03:d1:51:51:f5:54:01:64:c5:f7:d8:
a2:9d:7f:f9:98:7f:8a:ee:77:f2:fe:3e:fb:29:06:64:72:06:
d5:b2:f4:a8:ac:0c:4f:d6:d0:15:5f:6d:2d:12:2b:da:26:40:
bf:38:98:b4:ed:86:e7:5b:7f:93:1d:3a:4c:89:55:28:50:63:
1c:0a:93:a7:f9:cd:29:9f:e6:7c:a0:f7:f4:fe:04:dd:ad:02:
cc:6d:5a:17:45:7e:d9:0b:0b:2e:1f:08:4d:10:1a:b0:cd:24:
d7:3e:ed:e2:8a:e9:be:8a:44:ce:62:9e:15:3b:68:a7:00:6f:
f0:c9:56:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:26:58 2026 by rpki-client