Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
File: xmJhwznF7fjYxIPwjka4SAqAXvE.mft (raw, json)
Hash identifier: ffZTi24zBgpxAz61eqX8FCglLeZGEo/BMvoiaSzBpwI=
Subject key identifier: AF:71:FE:1A:00:FE:DD:4B:A9:32:E6:42:56:50:E6:A3:71:EB:33:07
Authority key identifier: C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
Certificate issuer: /CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Certificate serial: 019E216DC0F0768E352955733B2D627C5E7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
Manifest number: 1844
Signing time: Wed 13 May 2026 13:01:41 +0000
Manifest this update: Wed 13 May 2026 13:01:41 +0000
Manifest next update: Thu 14 May 2026 13:01:41 +0000
Files and hashes: 1: GkysysiUBXozBtdhxp6l182WpJ8.roa (hash: VR1FnjecjyRiwX08EOHPvLrD5A0SMs3OVYweJtUa454=)
2: xmJhwznF7fjYxIPwjka4SAqAXvE.crl (hash: bdB5/+sqNfjpYs1dKQYjypj80hrYWpAhABikMDkNXXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:21:6d:c0:f0:76:8e:35:29:55:73:3b:2d:62:7c:5e:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66261c339c5edf8d8c483f08e46b8480a805ef1
Validity
Not Before: May 13 13:01:41 2026 GMT
Not After : May 14 13:01:41 2026 GMT
Subject: CN=af71fe1a00fedd4ba932e6425650e6a371eb3307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:58:da:b9:03:f9:a3:7c:fd:75:47:de:c9:ad:
ba:db:32:15:7d:ce:dc:c7:76:03:e6:26:db:cd:7e:
a1:e0:4d:75:d3:62:16:c3:c5:3b:76:40:50:a3:58:
76:27:8a:d8:89:3f:19:6b:1c:ac:d2:94:5c:93:8f:
c7:ad:e0:11:ae:6c:46:b2:ac:15:db:f3:12:36:8a:
55:74:8b:52:d1:90:6f:5b:b3:78:50:2c:46:ce:2b:
c6:f5:aa:a5:81:bf:5c:a4:ca:26:ab:19:b7:f1:d9:
d0:2b:46:ec:0a:41:41:e8:f1:22:93:48:39:c5:03:
1a:d7:ba:0b:5d:75:6b:cf:96:45:25:46:0b:73:08:
e5:b6:3a:d8:7d:61:dd:3c:00:eb:8c:4e:c3:91:f6:
be:12:8d:e0:c1:85:e8:2a:aa:8f:81:29:0d:a8:f6:
d8:98:43:fc:3a:d1:84:04:66:00:e3:65:3a:82:0b:
f0:27:e4:39:d9:a7:7d:69:a3:b0:59:76:2e:57:51:
ba:50:cf:67:60:79:d1:98:66:6b:8e:88:3b:d9:bc:
95:16:5c:80:f9:4a:5f:11:eb:9d:a1:22:dc:e0:00:
a9:af:83:30:d6:05:e2:27:fc:6f:1c:44:d5:df:dc:
0a:5e:7e:02:07:40:89:45:a6:62:73:64:29:b1:c3:
da:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:71:FE:1A:00:FE:DD:4B:A9:32:E6:42:56:50:E6:A3:71:EB:33:07
X509v3 Authority Key Identifier:
keyid:C6:62:61:C3:39:C5:ED:F8:D8:C4:83:F0:8E:46:B8:48:0A:80:5E:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJhwznF7fjYxIPwjka4SAqAXvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/525952-7afb-443d-af0a-77c3e1c8f6de/1/xmJhwznF7fjYxIPwjka4SAqAXvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:8b:d6:cf:e3:07:9d:ac:92:cc:e2:14:80:a7:e0:07:f2:c2:
2c:2a:67:93:68:b4:1a:07:73:dd:5e:55:a4:08:a8:f4:fa:86:
ba:11:df:53:8d:0a:69:93:e9:c0:69:91:a5:72:ce:39:93:e6:
aa:b3:48:55:44:f1:8a:e4:ae:ed:0c:c3:3d:5a:da:d1:ec:0b:
49:25:23:be:56:35:1e:b2:8d:6c:ce:60:48:3b:9b:3e:a8:1a:
e3:25:ce:ca:5b:97:9f:bd:e9:1d:03:7b:9d:e8:ae:cd:8e:e3:
64:f7:96:ee:94:f3:2e:27:f8:90:05:71:57:e4:62:22:ef:92:
a0:94:50:01:b1:83:6c:d4:94:15:f3:4c:21:0c:9e:11:ce:38:
bd:9b:e0:b3:86:fd:1c:b5:19:0f:fb:02:fe:4a:28:b8:b1:ca:
c4:87:9f:ea:e1:41:37:cc:de:78:c0:52:b6:1d:76:04:98:0b:
bd:aa:99:b8:5c:62:9a:13:9e:72:b7:59:8f:67:02:39:76:f9:
19:24:32:14:c3:5e:f7:6d:23:3f:03:35:d7:43:93:e2:7a:ca:
49:95:66:b2:55:dd:01:5e:79:fa:09:f5:09:03:9a:db:d6:51:
24:37:02:47:91:b5:19:9b:62:b1:b4:92:58:19:5b:fd:10:56:
f6:3e:8f:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:20:32 2026 by rpki-client