Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
File: xHC41L-HFAS8pTx3gVME7y6k4co.mft (raw, json)
Hash identifier: /qwORaPwrudLbBfRq6vWjXCqhgSjojYW2Z89k1Nlscs=
Subject key identifier: 4F:19:A2:FD:58:8F:C5:9F:08:0A:85:E4:85:CA:99:C2:AC:68:48:16
Authority key identifier: C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
Certificate issuer: /CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Certificate serial: 019E1EA2B9B9D99672BE4D51225D28F1A27B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
Manifest number: 02EC
Signing time: Wed 13 May 2026 00:00:41 +0000
Manifest this update: Wed 13 May 2026 00:00:41 +0000
Manifest next update: Thu 14 May 2026 00:00:41 +0000
Files and hashes: 1: DnR3n06izuqiF0c6QLmB63bhByA.roa (hash: wXx/mCp3Tb5hj1tTLAH162/y2WEyBpkE4oI2Qluv1II=)
2: xHC41L-HFAS8pTx3gVME7y6k4co.crl (hash: ABPgdIwJ51xLaQk+wJoCckRfWAR1pOPga3XcYbyXoqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:b9:b9:d9:96:72:be:4d:51:22:5d:28:f1:a2:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Validity
Not Before: May 13 00:00:41 2026 GMT
Not After : May 14 00:00:41 2026 GMT
Subject: CN=4f19a2fd588fc59f080a85e485ca99c2ac684816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:74:2a:a2:b0:cb:4b:9f:9b:da:86:e6:77:22:
fe:c6:1f:28:3a:fb:b5:7a:2f:ae:9b:0d:66:d0:48:
6f:6a:2d:4c:83:30:59:cf:f8:07:d6:ae:e2:71:9c:
1b:e4:19:29:0c:c4:8f:be:b0:f3:31:a0:52:42:27:
8e:70:e0:a4:31:81:39:95:c8:d7:04:d2:ca:3b:33:
0e:3d:90:31:02:b2:1f:b6:c8:36:dc:5a:0a:a1:04:
d8:9e:c7:6d:bb:f4:e3:b5:8f:c9:40:66:5a:f2:02:
d2:ee:25:fb:f9:40:a5:50:07:79:37:15:8f:b9:5f:
08:30:c7:bc:a7:e9:a8:f7:f6:fc:57:ee:3c:d5:63:
66:bc:71:1f:80:81:ae:76:27:b8:7a:9c:bb:f4:ce:
2b:c2:36:9c:d8:73:d2:6b:49:e1:13:80:ee:0f:a5:
2b:e7:fd:32:a2:f3:35:7e:4e:d8:c6:60:48:19:05:
b9:c7:5a:3d:69:06:30:e4:90:ef:ad:07:e8:b8:40:
58:45:67:eb:8e:ae:61:0c:06:d9:74:88:2c:c8:9b:
eb:83:d1:ca:89:c2:15:4d:43:1f:7f:eb:12:aa:14:
1b:47:e0:66:27:86:95:1a:9e:81:df:f2:e5:cd:41:
ff:73:a1:b8:9a:46:a7:df:26:55:28:d2:71:08:e5:
b6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:19:A2:FD:58:8F:C5:9F:08:0A:85:E4:85:CA:99:C2:AC:68:48:16
X509v3 Authority Key Identifier:
keyid:C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:d7:a4:38:12:8f:8f:49:12:e4:db:63:f7:5d:df:f1:71:cc:
a5:11:7c:9e:44:51:4f:15:c1:e4:ad:ac:71:b2:82:a2:92:36:
90:af:6c:d5:f3:b6:e8:27:49:09:b6:d9:96:6b:a5:52:04:0b:
23:d2:9a:4d:c6:19:87:23:2b:a7:24:d7:1d:b2:38:00:6a:27:
c3:70:07:d1:f7:07:4b:68:8b:66:37:30:e9:61:c2:38:94:d0:
89:ff:e6:60:27:a6:5f:35:fb:ba:33:d0:5f:26:09:fe:4f:ea:
53:38:b5:da:8c:cb:ce:11:5c:dd:a9:3e:5f:81:6b:68:62:60:
cc:4d:60:f3:e0:81:90:0c:4c:3b:48:bd:bc:34:1a:6f:c2:3e:
30:3d:ed:d6:26:51:23:71:e1:c0:75:09:42:e9:64:f2:58:f8:
c3:7b:1e:8f:66:08:4e:9b:2f:49:f6:8c:0c:fd:f4:7f:fb:37:
02:07:10:2c:76:05:47:fe:f9:f9:3a:c5:4a:80:51:8b:bb:7b:
2a:7d:8f:f2:66:22:6d:7b:a4:3e:fa:a4:fd:ba:89:ae:6e:28:
bf:4b:2a:a0:f0:d1:53:5c:2c:50:b6:63:75:83:d6:ef:e7:32:
ef:06:8b:82:e8:e0:3c:18:07:c5:dd:26:8b:4a:35:a1:04:6e:
b5:47:29:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:53:59 2026 by rpki-client