Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
File: XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft (raw, json)
Hash identifier: 3sW5wtSoMAaqEaLxldo7fGaiUOZUHSTgWkWQipTuAco=
Subject key identifier: E1:10:D7:D5:FC:5F:89:42:E9:9C:10:87:94:36:00:DB:6F:93:F8:3B
Authority key identifier: 5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
Certificate issuer: /CN=5dc67c6be367ab9e941d1427d050449447b8865c
Certificate serial: 019D3865D9C98B586BA901B0973AEB8943AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
Manifest number: 1896
Signing time: Sun 29 Mar 2026 07:01:31 +0000
Manifest this update: Sun 29 Mar 2026 07:01:31 +0000
Manifest next update: Mon 30 Mar 2026 07:01:31 +0000
Files and hashes: 1: XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl (hash: Ya5cp/BtaL4kX07SaIS/JKgzI2r+8yzj6wctfZC259A=)
2: uSf8YpQ-0ch8yPbVC8hW_1UaI7E.roa (hash: TdBQBjgQL2vkXRlnvGccZPDz+o0AOBvhUDV7Uw/d7z0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:d9:c9:8b:58:6b:a9:01:b0:97:3a:eb:89:43:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc67c6be367ab9e941d1427d050449447b8865c
Validity
Not Before: Mar 29 07:01:31 2026 GMT
Not After : Mar 30 07:01:31 2026 GMT
Subject: CN=e110d7d5fc5f8942e99c1087943600db6f93f83b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e2:8a:33:78:1c:c6:61:c1:59:3b:b7:89:12:
06:72:50:f9:14:88:02:1d:ad:92:31:6f:65:28:08:
3c:fb:9f:33:1e:b9:9c:ff:7d:ba:df:21:a6:40:ee:
70:17:ed:ed:af:67:36:4d:40:a2:65:0e:e4:a4:23:
92:7f:28:39:99:52:65:c7:e8:64:98:1e:43:65:fb:
a0:2d:06:7d:dd:3d:5d:3a:dc:71:8b:f3:03:f5:21:
cf:d6:3f:33:ed:95:cb:78:c8:fa:80:68:3b:56:fb:
0e:fd:5b:3d:5a:06:b8:6f:ca:78:c4:ac:14:6f:ac:
de:da:69:d5:10:68:b0:db:8c:06:dd:d7:66:1c:e3:
e7:92:7a:a3:8e:e0:cb:e4:8d:99:71:3b:12:03:92:
a2:f4:4f:05:52:47:de:7f:4e:66:5c:65:0a:92:1b:
e3:f5:8c:67:b0:2f:fa:6d:26:34:13:1c:01:0c:0c:
e1:44:b5:0a:8f:a1:e6:b3:45:7b:83:86:b0:0f:85:
91:be:3e:f0:43:20:dc:b9:c0:0e:ae:80:75:5c:6c:
1f:61:b5:89:72:ec:78:11:98:49:7b:8a:51:2d:fc:
fd:d7:b6:19:af:2f:7d:3d:38:30:16:37:eb:60:7c:
31:a8:96:aa:43:81:4b:3c:a1:f2:95:20:e9:bb:ac:
8a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:10:D7:D5:FC:5F:89:42:E9:9C:10:87:94:36:00:DB:6F:93:F8:3B
X509v3 Authority Key Identifier:
keyid:5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:64:48:7e:9c:b6:e9:23:94:4b:b3:03:fe:28:4d:dd:93:be:
0f:d9:7f:a6:b5:78:6d:ea:a5:d4:54:05:6a:f8:ab:8d:9a:48:
24:2f:63:9f:88:7a:fb:db:7d:68:3a:68:be:5a:9f:c3:cb:ac:
3e:1f:ce:f9:17:e1:b5:63:4a:70:86:e6:ec:d5:a8:2c:5d:f3:
32:47:2a:5b:6a:85:50:21:f8:e5:1a:1c:64:1a:af:9a:30:9f:
44:8a:f1:41:ad:a2:a3:a1:5f:36:00:9a:f5:bd:7e:21:99:c5:
b1:33:78:78:ff:1c:d4:bd:b6:e8:c0:b2:57:7d:9f:48:ef:b1:
94:4c:90:ba:aa:f8:f1:7f:7f:7e:8c:29:40:80:a1:85:74:bb:
27:40:9e:c9:98:46:7b:a1:87:0b:c7:f7:01:b8:82:28:e6:d4:
ea:77:c4:1a:90:55:13:80:a4:d9:5b:17:d3:f7:e8:9e:25:f1:
f3:b1:fc:d1:da:4d:09:09:50:84:a6:ac:7b:40:c4:24:44:a7:
79:4f:e8:d1:8e:e1:0e:fe:57:87:8a:5d:53:1d:87:ec:01:20:
78:a0:05:42:dd:2a:ae:f4:5a:a5:89:95:c4:91:0c:f6:80:ff:
72:29:14:2f:c4:92:48:70:5c:a2:36:8f:a4:63:c8:36:89:dc:
5c:56:c8:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:33 2026 by rpki-client