Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
File: xmCFijitXhG3sYk5KIO8g-trNh0.mft (raw, json)
Hash identifier: lOlqhsTUleMF4U2XoPZMQjfiSGymKkV00SmKomVU+Zw=
Subject key identifier: AF:37:01:7A:BD:21:E9:1F:BA:EE:94:73:28:5F:EB:42:18:5A:18:8B
Authority key identifier: C6:60:85:8A:38:AD:5E:11:B7:B1:89:39:28:83:BC:83:EB:6B:36:1D
Certificate issuer: /CN=c660858a38ad5e11b7b189392883bc83eb6b361d
Certificate serial: 019D389C691EA852913DCAEC13D1D9F5CF20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 08:01:07 +0000
Manifest this update: Sun 29 Mar 2026 08:01:07 +0000
Manifest next update: Mon 30 Mar 2026 08:01:07 +0000
Files and hashes: 1: xmCFijitXhG3sYk5KIO8g-trNh0.crl (hash: jb1kd8dAANCxE4FvXgpmrN34Q72ZXOAPW5SflemiHGA=)
2: xpQHQe9JK1CUe7FrE6UQJmb2ot8.asa (hash: 4NpowpxrTh5AKJl4K8wnIP5UZeAISCMu/TY3f9v3FM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:69:1e:a8:52:91:3d:ca:ec:13:d1:d9:f5:cf:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c660858a38ad5e11b7b189392883bc83eb6b361d
Validity
Not Before: Mar 29 08:01:07 2026 GMT
Not After : Mar 30 08:01:07 2026 GMT
Subject: CN=af37017abd21e91fbaee9473285feb42185a188b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:df:b7:77:18:ab:02:d2:a6:84:48:9e:01:f7:
a9:19:44:3b:fc:3f:f1:f1:f8:1e:18:61:94:fd:ee:
73:8f:92:f9:47:1a:d3:a6:88:84:2c:f4:1a:f2:ae:
9c:9d:2a:f0:8d:e7:98:0f:a9:92:0f:42:52:ce:e8:
f7:9c:aa:3a:a1:70:2a:85:a5:8c:62:2a:15:55:75:
b5:21:c1:ac:f1:55:de:57:f6:8b:a6:05:71:c8:09:
49:95:93:7d:44:af:19:fd:d4:db:b2:92:6a:c0:bf:
05:6a:41:63:e2:96:df:e2:96:b5:ef:9b:56:92:19:
fe:f2:55:9b:48:7b:74:1b:32:66:f6:4c:33:cb:70:
35:c3:46:d3:9a:9e:e2:ea:86:37:05:eb:f9:91:c5:
4b:e0:86:7f:8f:da:08:9f:66:67:5d:4e:24:41:13:
df:f0:91:d7:0d:29:43:c4:eb:22:4b:88:99:bc:ef:
6d:a9:56:47:06:bf:3c:57:29:46:93:f2:da:6d:f7:
fa:ca:16:d7:b0:4a:01:9d:73:64:d9:c1:c9:22:93:
61:7f:4d:90:72:51:12:72:bf:8f:dd:7f:f1:c2:67:
a2:cf:27:83:83:42:2b:84:12:61:70:93:f9:aa:fb:
e5:71:2e:7a:1e:2c:b1:9a:94:9a:da:82:e5:ae:77:
8e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:37:01:7A:BD:21:E9:1F:BA:EE:94:73:28:5F:EB:42:18:5A:18:8B
X509v3 Authority Key Identifier:
keyid:C6:60:85:8A:38:AD:5E:11:B7:B1:89:39:28:83:BC:83:EB:6B:36:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:72:4c:54:ac:ce:b2:75:ea:48:69:e5:20:3a:ca:87:6f:92:
3c:5a:53:30:5e:b5:8f:0f:d7:78:51:5f:10:07:dd:52:3f:be:
76:6c:b1:88:52:51:c3:79:c7:7b:99:5e:cf:de:ad:b7:98:1c:
cf:ef:4d:da:d1:6e:31:34:90:b2:7f:b6:ff:37:27:b4:9e:26:
f4:f4:71:ac:71:45:87:18:df:22:f7:de:0a:5c:27:0e:23:fa:
e4:e6:f7:db:2f:3c:65:86:9c:79:b5:f8:34:65:ac:a7:b1:c6:
c3:b6:50:fa:93:22:3b:20:b5:8e:fc:62:0a:cc:f0:70:8e:05:
36:dc:04:bc:59:8d:fe:ae:4b:36:ba:f5:79:db:f3:c0:6e:28:
12:03:40:94:25:09:52:65:8f:ff:92:26:40:09:7c:bf:1c:34:
cc:7f:bb:d0:0b:2b:73:6c:df:07:ae:fc:6e:0d:6f:33:e1:8d:
2c:a9:9d:a2:75:be:3a:9b:fb:f7:0d:24:cb:88:87:eb:54:09:
e1:2d:23:9b:7d:10:38:00:8c:c9:39:03:ae:88:2f:5b:df:7c:
38:42:38:a8:bd:40:06:85:42:e8:2a:1f:06:3a:3b:0e:9e:a6:
9a:71:ba:7f:37:72:6f:14:e9:28:a5:ac:d7:6b:bf:db:23:ae:
06:06:6b:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:35:24 2026 by rpki-client