Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.mft
File: xBHDOVke38lmej55EY3SPEAr6H8.mft (raw, json)
Hash identifier: 1kCgtw80+5LUI0U80WHL4pR+Zefv46kXSrVxCfFufJ4=
Subject key identifier: 7E:BA:36:38:87:4D:DC:A4:72:28:E8:33:60:0A:DB:BE:A3:38:11:E8
Authority key identifier: C4:11:C3:39:59:1E:DF:C9:66:7A:3E:79:11:8D:D2:3C:40:2B:E8:7F
Certificate issuer: /CN=c411c339591edfc9667a3e79118dd23c402be87f
Certificate serial: 019D371BC6C84A649EE57F10E440F3E098FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBHDOVke38lmej55EY3SPEAr6H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.mft
Manifest number: 0888
Signing time: Sun 29 Mar 2026 01:01:00 +0000
Manifest this update: Sun 29 Mar 2026 01:01:00 +0000
Manifest next update: Mon 30 Mar 2026 01:01:00 +0000
Files and hashes: 1: xBHDOVke38lmej55EY3SPEAr6H8.crl (hash: 93BH22Ij5nd0ybZOScuUtBxH3rAdY4+cFRbXdQ9ylNQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBHDOVke38lmej55EY3SPEAr6H8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:c6:c8:4a:64:9e:e5:7f:10:e4:40:f3:e0:98:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c411c339591edfc9667a3e79118dd23c402be87f
Validity
Not Before: Mar 29 01:01:00 2026 GMT
Not After : Mar 30 01:01:00 2026 GMT
Subject: CN=7eba3638874ddca47228e833600adbbea33811e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2c:da:c1:f7:5b:06:77:12:36:dc:7c:3c:94:
5a:fc:86:78:c6:39:eb:61:91:a8:68:29:c5:75:32:
ac:d5:9b:53:21:0c:42:8c:f6:63:44:84:35:c7:f8:
ec:43:db:47:ec:c3:87:be:f7:cc:64:8c:3b:8e:1e:
8b:12:a7:29:18:6d:94:67:f0:3d:bd:ec:b5:cb:94:
60:c7:a3:69:fa:2f:bd:d1:e4:9a:18:c6:c6:72:a1:
fc:97:37:dd:9d:0e:2e:1f:4d:a8:82:83:14:54:fa:
11:9a:da:ff:c8:f2:89:9d:34:f8:ee:b2:f0:36:b2:
c8:71:86:da:f4:86:91:bf:5b:c6:6b:60:a3:07:0f:
20:2a:55:fe:44:d2:45:6c:f1:6a:82:db:6a:c9:3b:
ac:65:b7:30:5c:a5:d0:03:33:42:9c:fc:7a:ff:17:
a5:24:c5:3a:9b:2b:49:7b:3e:43:b1:40:e1:52:f8:
1c:40:de:c6:f8:d9:4e:9b:4a:58:1a:78:37:a0:dc:
a8:9c:07:f9:20:26:05:d5:42:01:c0:bc:17:3b:16:
21:8b:9d:32:ca:91:3b:38:89:47:da:53:6b:4f:bd:
18:29:c0:43:32:07:20:06:e8:9e:61:d2:86:60:89:
aa:0e:d8:10:4c:5f:c5:f7:24:9f:e3:16:03:87:42:
cc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:BA:36:38:87:4D:DC:A4:72:28:E8:33:60:0A:DB:BE:A3:38:11:E8
X509v3 Authority Key Identifier:
keyid:C4:11:C3:39:59:1E:DF:C9:66:7A:3E:79:11:8D:D2:3C:40:2B:E8:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBHDOVke38lmej55EY3SPEAr6H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/d23344-b281-42d2-bc33-ecbf7f17f604/1/xBHDOVke38lmej55EY3SPEAr6H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:8e:2a:ac:9a:62:23:09:4e:14:7b:91:29:b9:41:24:63:73:
61:b4:42:92:3d:86:c4:14:1e:f8:28:c5:83:3e:13:bb:80:01:
07:2c:e9:29:e7:85:87:2e:f2:b2:22:b5:68:76:98:88:1a:25:
91:da:4c:e9:0f:f4:ec:b0:29:f3:6d:5e:b3:af:8b:3f:c3:be:
cb:f0:df:d0:e8:b6:e9:3b:bd:fa:c3:43:03:da:4a:b0:a0:b1:
8e:c8:82:8f:f1:75:c4:56:ea:2a:30:91:5d:b8:62:57:e5:d4:
a0:52:30:fa:b1:4e:85:ec:f5:05:3e:d2:5c:69:76:f9:ca:c1:
4e:ac:de:c4:09:49:71:15:f1:14:36:6f:b5:f3:c9:c4:49:b0:
04:81:f4:c6:69:d3:07:65:a7:c4:d6:a4:e5:16:07:09:38:7e:
6b:ad:42:73:9b:be:30:23:2e:f2:6e:d5:d0:80:35:1a:9e:a4:
61:78:0c:0c:17:eb:b3:b9:5e:3e:ac:5f:f1:29:7e:aa:2b:27:
d4:0d:28:2a:47:38:3f:6d:66:78:d5:8a:ad:e8:67:12:a0:a0:
3a:b2:95:47:a3:41:cc:e9:7a:9b:d0:e6:f2:87:e6:fa:04:88:
7c:5b:0e:1a:3e:c1:7d:44:58:2a:ac:84:d4:fb:da:15:18:80:
d1:92:a4:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:36:30 2026 by rpki-client