Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
File: xHC41L-HFAS8pTx3gVME7y6k4co.mft (raw, json)
Hash identifier: SFMZiEv24NKdB51dHaoQTBagd0IaVCY5lZTnlVsL8UQ=
Subject key identifier: DB:D3:44:01:87:57:02:C2:0D:05:E3:23:33:86:37:8B:57:1E:F3:18
Authority key identifier: C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
Certificate issuer: /CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Certificate serial: 019D29618C008A8D2D4CA593F2B2F6AC8FB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
Manifest number: 026D
Signing time: Thu 26 Mar 2026 09:02:31 +0000
Manifest this update: Thu 26 Mar 2026 09:02:31 +0000
Manifest next update: Fri 27 Mar 2026 09:02:31 +0000
Files and hashes: 1: DnR3n06izuqiF0c6QLmB63bhByA.roa (hash: wXx/mCp3Tb5hj1tTLAH162/y2WEyBpkE4oI2Qluv1II=)
2: xHC41L-HFAS8pTx3gVME7y6k4co.crl (hash: N5osQBI+k6G6BnRBbR6T0Cs1NFwC/0c82gDHogMdC4Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:8c:00:8a:8d:2d:4c:a5:93:f2:b2:f6:ac:8f:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Validity
Not Before: Mar 26 09:02:31 2026 GMT
Not After : Mar 27 09:02:31 2026 GMT
Subject: CN=dbd34401875702c20d05e3233386378b571ef318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5f:37:b4:29:50:6d:4c:14:f4:57:56:6c:51:
f7:68:9f:5c:a3:c9:73:35:de:74:4d:34:72:90:ec:
31:bb:11:64:4c:ee:8b:9d:3c:93:3b:1d:74:1b:19:
56:b6:de:dd:a8:e5:e6:0e:de:03:da:2e:f7:16:2c:
c7:60:0a:29:f4:aa:c5:16:90:ff:82:44:4e:97:fa:
bf:5e:0e:50:ef:79:18:94:03:c7:70:11:b1:93:4a:
41:25:af:22:de:69:54:e9:53:7c:f1:06:fe:26:e3:
3c:52:36:1e:e1:3c:55:61:65:d2:c2:d7:6d:cc:7f:
26:5c:71:69:06:e4:dd:80:c0:ff:f1:8f:82:82:1d:
a5:c0:b2:62:94:72:33:50:d3:83:49:05:cc:e3:ab:
b1:5d:4a:19:d1:79:24:36:37:90:1e:90:1b:11:38:
e0:07:1e:78:34:65:8f:01:f4:25:c5:d5:41:aa:7b:
3a:99:2b:9d:31:93:e5:24:95:9f:b4:69:c3:35:d4:
44:03:7e:3e:ff:0d:e1:47:43:a3:fb:a7:80:bc:7b:
79:66:e0:a3:88:a2:04:91:9a:4c:ff:55:3c:b7:fe:
59:b9:96:5d:51:0c:e0:c6:db:6c:f5:36:69:a7:80:
46:d3:97:41:fd:56:83:66:1b:8b:71:d6:6a:e2:21:
0c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:D3:44:01:87:57:02:C2:0D:05:E3:23:33:86:37:8B:57:1E:F3:18
X509v3 Authority Key Identifier:
keyid:C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:37:d0:20:70:ba:40:7c:90:9e:23:d3:c2:eb:ca:7b:d0:b2:
a4:91:d4:7f:b7:2d:00:52:ea:59:89:8d:44:bb:50:56:d9:31:
06:c0:8c:94:64:a7:6f:17:af:2c:49:ca:98:01:91:d1:9b:ff:
54:68:9b:07:ae:81:32:f1:f6:39:48:a6:33:c3:2e:57:75:c0:
39:fa:9d:e9:47:82:23:49:9e:7c:9d:77:c2:a6:c3:be:0d:e9:
1d:d6:c9:38:ca:c2:5b:b2:aa:b7:c5:2d:e5:49:28:20:b9:28:
2f:e7:06:19:9f:a0:81:f5:68:cc:5b:c6:9a:4c:1d:19:95:ca:
d2:bd:b4:9d:bc:26:21:13:bc:e3:f8:d5:ea:63:ed:96:8d:5f:
fe:4f:e8:d1:71:59:81:96:77:cb:18:98:49:89:3e:2c:80:e1:
16:95:c6:d6:93:98:bf:7b:95:b9:a4:23:f1:d2:3c:30:ae:02:
65:3a:13:8e:2c:a7:06:87:75:08:4b:5a:b3:a1:2f:4b:50:5e:
3e:2c:fd:e7:11:ea:7e:e4:85:5e:52:6f:f2:d0:e2:81:62:53:
2f:47:05:75:a1:23:27:44:db:0c:26:6d:73:36:74:06:78:74:
e0:96:d4:35:0e:c1:a8:dd:43:24:93:8b:6a:eb:5e:79:0d:70:
17:83:9f:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:57:04 2026 by rpki-client