Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
File: xN8L0EqoQ-aAgvbezgeYcytviDI.mft (raw, json)
Hash identifier: HbzS7MeuURYdNIOoo2e8s8az6E2sWDi/xuBe92MD+Ms=
Subject key identifier: 9B:A8:AC:3B:D8:6C:15:F3:11:5E:44:3B:0A:61:EE:C9:91:31:49:62
Authority key identifier: C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
Certificate issuer: /CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Certificate serial: 019D2B176E5C4A72F2DCDE2CC0071B47CBF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
Manifest number: 181A
Signing time: Thu 26 Mar 2026 17:00:48 +0000
Manifest this update: Thu 26 Mar 2026 17:00:48 +0000
Manifest next update: Fri 27 Mar 2026 17:00:48 +0000
Files and hashes: 1: Bufh8fLfGuFcJIRDH90wZyey3vQ.roa (hash: 97pbnQhhP+W/DGuiQ6yzPinj80mmymwV5CPqsqreqm0=)
2: aCjEV-QnOk8LOF5MzDA0-UkFuK4.roa (hash: Xqrg7NBvSV9yvVpUUwp51n6WbUWMsfHL/0GgkjRTj1U=)
3: gjKej6nLmog1Pdhy2m7-nfTgjGw.roa (hash: q4iLVi9p7pL885pUO6lukqaAAVZW6+EWxQvMee6AK60=)
4: phc_rWomL_SloTsFG0Feb3oexB8.roa (hash: vPwplBARp1RlzeoBKfqMgLEmEz1s7NkUpEh7QDk9mPM=)
5: xN8L0EqoQ-aAgvbezgeYcytviDI.crl (hash: H6xWWDss+GZxnBeWcGgLZLucnMdD8i6BvR0Iuas0iSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:17:6e:5c:4a:72:f2:dc:de:2c:c0:07:1b:47:cb:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Validity
Not Before: Mar 26 17:00:48 2026 GMT
Not After : Mar 27 17:00:48 2026 GMT
Subject: CN=9ba8ac3bd86c15f3115e443b0a61eec991314962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:78:c5:2d:71:85:04:85:c2:26:77:7f:90:c0:
72:01:35:e3:42:d3:d1:c4:a0:f5:c2:5d:1b:61:92:
0a:1d:0b:36:5a:f2:93:19:41:73:bc:aa:af:eb:79:
10:40:78:d6:59:26:0c:ef:2b:43:ab:41:79:ee:28:
22:aa:1f:e9:17:44:14:97:7b:37:5e:dd:75:71:f8:
bb:16:b7:80:1c:9f:01:03:d7:30:03:10:6e:d1:1c:
8a:9e:e1:55:5c:61:51:36:88:a2:91:47:a8:8d:63:
dc:c6:32:09:b1:2b:5f:d0:6d:51:d9:64:06:b4:d1:
0b:ce:a1:46:89:e0:8b:9a:e0:58:0e:c3:32:34:68:
dd:40:2f:39:4a:fa:8c:72:1f:34:53:4f:4f:81:f3:
cc:a4:69:c3:71:22:fd:c7:f9:62:56:36:36:67:58:
73:3d:bd:d7:d3:1c:bd:62:78:af:5a:f8:72:04:a2:
96:c3:6a:91:92:42:26:14:29:3a:d8:1b:b1:e9:5e:
52:5d:e7:e3:94:9d:b3:16:af:10:f5:6c:74:f3:4b:
bf:c0:e1:00:2a:a3:84:0e:7f:37:10:88:32:f0:cb:
d0:79:39:50:42:0d:c1:1e:1c:c4:61:c3:f6:3b:15:
11:7b:dc:cb:04:cc:b3:51:93:f0:17:43:6b:75:27:
37:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A8:AC:3B:D8:6C:15:F3:11:5E:44:3B:0A:61:EE:C9:91:31:49:62
X509v3 Authority Key Identifier:
keyid:C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:89:4a:64:25:ca:ed:64:a1:fe:ec:c4:5b:9c:0e:6c:23:0a:
e2:45:f5:c8:ec:98:4e:f0:6a:73:b3:e5:ec:9c:e3:9b:59:55:
73:bb:af:24:1b:57:d9:8c:81:b7:fd:18:ab:a6:00:9e:fd:71:
3f:81:22:44:63:ee:b4:14:3b:69:23:61:fe:1e:6f:9d:ea:73:
6c:65:cd:73:a5:e8:3d:8e:24:ed:7b:52:87:81:00:3e:e9:1c:
65:60:9c:80:7d:85:ad:c1:ea:23:28:e6:e2:26:94:a9:fc:0b:
ad:f4:49:b6:ba:ac:f2:f5:f8:25:f7:01:fa:fd:1c:4b:d4:06:
6c:f0:dd:25:7a:28:ea:3b:87:d8:6d:05:51:6d:12:29:4f:90:
8b:85:74:4d:d8:24:08:56:4c:bb:2e:44:e8:bb:4e:48:b6:cb:
06:f9:df:49:c0:0e:17:2d:c0:44:23:dc:01:08:ad:cc:0b:6c:
c4:34:fb:71:df:37:ff:56:fb:31:59:06:a5:59:4b:ee:47:a7:
1a:60:e1:cc:09:50:fa:2a:60:0b:67:72:62:45:cf:47:27:a3:
04:95:35:f5:6b:18:b8:90:cf:93:1e:e2:f4:3d:c5:c2:ed:38:
43:45:65:7e:30:1f:e9:14:8a:e3:f9:87:e0:1f:18:1e:69:a9:
a0:a1:09:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:43:55 2026 by rpki-client