Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
File: XEwop1rJaVHcOEAKgPnvOqryqss.mft (raw, json)
Hash identifier: cO7gmZUpQckZxeEL1V93L+Xy1IFwWnSLIavUGhUU048=
Subject key identifier: FF:83:43:F5:33:82:13:0F:4B:39:41:A8:70:57:86:CD:5B:15:79:7D
Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Certificate serial: 019DCFE321F77857F3596CAC109E3B313181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
Manifest number: 18DE
Signing time: Mon 27 Apr 2026 17:01:02 +0000
Manifest this update: Mon 27 Apr 2026 17:01:02 +0000
Manifest next update: Tue 28 Apr 2026 17:01:02 +0000
Files and hashes: 1: 9hnY7Mi-DWWNXT8zxPWlDMpFkVY.roa (hash: KmgeWMyp8Cb4dRrZsFfQDYyQitlhpxsyGtinqL7w4YI=)
2: XEwop1rJaVHcOEAKgPnvOqryqss.crl (hash: NPcp0NV5YzfKsRw3pXI7FezjEw/2zWE+qBlIdnRIGGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:e3:21:f7:78:57:f3:59:6c:ac:10:9e:3b:31:31:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Validity
Not Before: Apr 27 17:01:02 2026 GMT
Not After : Apr 28 17:01:02 2026 GMT
Subject: CN=ff8343f53382130f4b3941a8705786cd5b15797d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:72:55:d0:a6:2a:24:3c:ab:8a:41:2c:e4:f7:
8c:ae:4e:58:fb:1e:65:fc:41:b9:f8:af:8d:69:8e:
7c:ed:5a:d7:29:18:d9:e8:a7:c7:fd:0a:72:d2:1b:
30:a2:e1:4a:e8:d4:01:1a:5c:d8:f8:9b:90:fe:cb:
03:a6:1b:2a:db:02:b4:bb:09:f4:c7:31:7f:7f:f9:
1c:85:3c:0e:59:64:ba:26:47:46:d1:ba:0f:09:83:
4d:70:68:be:64:9e:b2:21:95:47:51:76:75:45:c4:
4f:84:32:ca:c7:93:0c:21:f0:e9:05:22:61:7f:90:
ec:6d:3e:c7:93:b8:64:3f:2f:ef:75:ed:ca:35:1c:
75:67:1c:fd:03:58:be:59:c8:25:cd:36:15:1e:e1:
e5:0b:7b:b9:a1:6c:bc:11:bf:c6:18:16:0e:d4:03:
fd:88:70:19:8d:7c:da:69:28:3f:fa:5e:58:0b:e8:
3c:36:84:1e:31:f8:4a:44:8d:87:2a:08:9e:75:85:
d2:1d:c9:6f:52:22:9e:10:38:41:03:c7:b9:b2:71:
96:9b:01:42:f3:d2:ad:51:6c:de:f8:a2:d8:c3:b6:
c4:15:a9:c2:3a:3c:49:be:1a:77:3f:56:eb:b6:12:
cb:32:49:c6:4b:6c:55:f9:a7:69:24:b2:e9:5e:23:
c3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:83:43:F5:33:82:13:0F:4B:39:41:A8:70:57:86:CD:5B:15:79:7D
X509v3 Authority Key Identifier:
keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:bb:3d:fa:ee:76:3a:60:bf:33:3d:ba:57:76:55:33:63:d5:
db:bb:cd:39:23:66:a0:9f:ea:cc:1d:16:96:de:c2:ad:1c:60:
f4:d7:d0:a3:b0:b1:d1:b2:91:35:54:75:8e:b0:a0:5f:81:45:
00:9b:b4:76:31:84:5c:93:cc:63:78:f5:be:e6:93:c6:38:e1:
cc:35:98:4b:1b:5e:aa:b5:16:7f:f1:25:99:e2:c5:f9:1f:11:
d0:60:c7:a4:ce:bb:bc:39:53:61:70:fc:ce:cc:f9:b7:d6:d0:
b8:c7:be:14:ab:62:58:fa:47:85:3a:2c:b7:57:ba:5c:b7:d0:
4c:fa:0d:48:41:bc:a2:1d:8a:c6:61:37:01:83:1c:f8:7f:67:
11:13:38:9d:96:2e:63:e7:7e:a6:bd:ef:f1:43:10:b7:ce:ce:
47:df:34:ca:b0:1a:7a:34:ec:d9:f6:90:1b:07:82:64:1d:3c:
14:5d:63:2f:8a:ec:35:60:ab:6c:98:58:af:42:07:fd:3b:2e:
c3:bf:5f:5c:c3:67:5b:29:dc:76:58:ba:02:76:66:1f:01:73:
c3:46:80:e7:d4:49:50:54:af:d9:14:99:0d:9a:6e:fd:92:b5:
24:86:66:70:82:e2:57:90:a6:10:6a:96:80:e7:4a:66:54:f3:
ff:28:bb:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 21:06:33 2026 by rpki-client