Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: cuCLMjhe/kSg4m/8DxM03MBAf+50q99C5Z1SibaH5tE=
Subject key identifier: AB:50:76:D5:71:98:2B:5A:B1:D3:8A:6B:9B:60:B8:6C:79:9F:79:D4
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 019F1A566ABE874A13947161782240CBB852
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 16CD
Signing time: Tue 30 Jun 2026 21:01:38 +0000
Manifest this update: Tue 30 Jun 2026 21:01:38 +0000
Manifest next update: Wed 01 Jul 2026 21:01:38 +0000
Files and hashes: 1: 5bGOVGgpUSjx1uwMkRS9oqXlCJM.roa (hash: gEd4SfTflxW3Gsgz2afT2mctC6KsEwsMe5axMz0injA=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: EeWkvTNqCxc2gjYrxbr7spXquf5bX0WsjzOO9avX5oI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:56:6a:be:87:4a:13:94:71:61:78:22:40:cb:b8:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Jun 30 21:01:38 2026 GMT
Not After : Jul 1 21:01:38 2026 GMT
Subject: CN=ab5076d571982b5ab1d38a6b9b60b86c799f79d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a5:59:6b:ba:1b:27:7d:f4:02:ec:fb:58:98:
01:db:76:78:c8:f4:13:cc:2a:35:ac:3b:af:5e:9e:
1a:ce:af:8d:fd:85:96:26:a6:a5:cc:15:bc:ef:d4:
32:7b:2d:27:27:fe:ee:e8:88:cb:70:d7:b1:59:31:
4b:8c:fc:de:d6:d5:0b:20:ef:02:94:f2:8e:fd:b5:
70:58:45:a8:51:6e:10:01:06:3d:f7:e0:37:02:4e:
18:f4:ce:9d:2f:47:12:d1:3e:54:72:da:fb:eb:4b:
64:b6:23:f6:c0:e0:63:14:51:20:6e:26:80:c7:e9:
be:39:b2:19:48:57:1b:53:f3:0c:e7:0f:5f:d0:fd:
83:b1:cb:29:7f:7b:07:fe:ca:5b:2e:0b:d7:08:77:
d1:a5:90:ec:63:99:7a:6e:cb:70:b2:6f:bc:75:f2:
6c:4e:92:8f:41:a6:5a:a2:5b:f7:f9:3c:02:3c:a2:
c9:c4:2b:a0:c6:5a:3b:3b:f6:2a:38:53:8b:e3:49:
bc:55:90:29:a2:86:df:f1:2f:d6:57:51:d8:a6:78:
75:83:d1:69:6d:a4:f8:48:25:7b:4b:e0:0c:81:eb:
49:28:92:7d:eb:c0:89:8b:a1:03:c7:2f:51:2f:9b:
43:fb:da:e5:96:d0:0a:b6:6b:c7:89:6c:ec:b9:91:
70:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:50:76:D5:71:98:2B:5A:B1:D3:8A:6B:9B:60:B8:6C:79:9F:79:D4
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:32:a1:eb:3a:a9:dd:ed:b9:2e:89:e8:fd:9d:31:46:5a:6e:
08:41:1b:48:18:3d:33:e8:0b:5c:e1:d3:5f:0b:bc:a6:00:25:
52:44:ae:4b:e8:10:b8:ff:db:d6:fe:4b:76:24:0f:21:d3:a2:
f3:e1:f0:0a:e0:3f:f0:e3:db:ee:a4:73:a0:6c:ee:83:33:8b:
0e:d8:a1:14:87:de:48:58:08:4c:8e:0e:4a:78:c3:58:12:d8:
05:0f:0f:30:ac:3c:ae:fd:b9:34:6d:c0:02:db:9a:1b:1a:69:
38:9c:3f:52:e8:f2:3d:bc:3c:3b:35:c1:70:da:ef:c0:89:91:
e4:7e:8e:08:70:c4:7d:a9:33:3d:34:72:7c:b1:d0:25:ad:5b:
db:f6:cf:5a:a0:f5:66:7b:c8:de:e5:91:6e:c0:6f:65:a7:69:
2d:73:51:8f:cd:72:ad:b3:53:89:d0:62:ba:3a:2f:06:5e:96:
b5:64:67:07:6f:86:b1:8e:f2:c4:4c:d0:9d:ec:86:fa:ce:7d:
89:19:0a:bf:fc:09:6f:4d:56:54:d5:c6:9a:95:68:8d:e1:e9:
71:6f:9e:96:37:46:49:3d:31:59:3f:5f:0e:10:b5:45:cc:4d:
35:a4:2e:ea:8e:68:1f:5e:cb:47:43:06:e3:d2:94:f9:f8:fb:
ef:41:8f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:42:12 2026 by rpki-client