Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
File: fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft (raw, json)
Hash identifier: cvWKACD+tRlbcefQ3nzIv9GGxFM0wSb8QBYHuqVXgMI=
Subject key identifier: 02:6C:F8:00:1C:73:1F:43:8F:87:86:3A:22:1A:05:8D:F7:CB:9B:60
Authority key identifier: 7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
Certificate issuer: /CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Certificate serial: 019D37C121B80984C3CA39CBFC901F0350A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
Manifest number: 06D8
Signing time: Sun 29 Mar 2026 04:01:37 +0000
Manifest this update: Sun 29 Mar 2026 04:01:37 +0000
Manifest next update: Mon 30 Mar 2026 04:01:37 +0000
Files and hashes: 1: A0kDV6HOq6FdY-LkUzRoio2xA9Q.roa (hash: i9DOUjMa7c5ZM14JioAbWMihtBuOPOBDq4Dq7r6lxQg=)
2: fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl (hash: rBK6SLX5dFMK6VQbqxRGnZKHjEFr/wc1+SCjkSf+65w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:21:b8:09:84:c3:ca:39:cb:fc:90:1f:03:50:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d7856c97beb97c2b386fb958c2db122c57db36c
Validity
Not Before: Mar 29 04:01:37 2026 GMT
Not After : Mar 30 04:01:37 2026 GMT
Subject: CN=026cf8001c731f438f87863a221a058df7cb9b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:06:7b:30:47:52:eb:e0:77:4a:dd:66:b8:
5c:21:a2:94:25:77:af:90:1f:0c:92:9f:fa:74:b1:
23:8a:a7:0d:fd:ae:a3:56:b3:73:52:c7:74:3a:be:
59:13:6b:01:73:b6:7a:37:68:c5:17:28:d4:95:1a:
66:36:cc:75:5f:6c:e4:96:8b:88:d6:7d:0d:dd:a2:
7b:e7:b4:b6:52:16:c6:d1:b5:56:45:5c:28:2d:b6:
83:09:72:c5:da:10:b4:ca:d2:72:75:20:d5:5d:c8:
09:14:82:5d:87:5b:9a:26:80:71:fc:ff:7c:f6:be:
90:00:1b:28:6e:0f:34:6d:6a:f6:33:66:83:cb:32:
fe:d1:83:e2:8e:90:89:09:2c:62:ae:ea:d1:4c:e3:
18:ec:41:a2:13:7f:e7:c8:2f:6e:bd:30:f4:e2:88:
64:34:41:59:64:8a:d3:35:31:1f:7a:b2:88:fc:74:
1b:61:fe:ba:d2:58:d3:c6:03:e5:55:70:18:78:42:
da:7f:0f:92:42:33:73:b9:9d:40:ad:c5:5a:ef:5a:
2c:7f:10:00:63:f3:c7:32:85:a2:7e:7b:fe:e4:2b:
bb:23:7a:bd:d0:ce:99:4c:2f:fb:c5:da:f0:28:10:
1d:a3:db:2c:bd:46:25:68:d0:8b:4e:5f:c0:ca:52:
9f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:6C:F8:00:1C:73:1F:43:8F:87:86:3A:22:1A:05:8D:F7:CB:9B:60
X509v3 Authority Key Identifier:
keyid:7D:78:56:C9:7B:EB:97:C2:B3:86:FB:95:8C:2D:B1:22:C5:7D:B3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXhWyXvrl8KzhvuVjC2xIsV9s2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c03d37-4efc-4c3c-8281-3c738544482e/1/fXhWyXvrl8KzhvuVjC2xIsV9s2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:94:09:c9:e7:9e:c5:ac:98:61:8f:87:da:15:ed:2d:b9:54:
58:e7:96:1f:a2:ca:94:0d:a6:46:79:c2:d5:00:b1:19:45:c7:
dc:d9:2b:9e:48:07:6c:e8:7d:7a:3b:55:6c:8d:97:1e:8a:89:
0c:04:dc:96:6e:de:75:20:cf:dc:64:84:08:af:37:7a:08:ca:
64:c2:dc:2d:c6:0e:ee:08:e9:54:33:2a:57:69:cf:7c:86:e0:
bc:52:eb:cc:64:5b:f5:db:ec:a6:0b:89:6a:62:02:e6:39:b7:
16:37:92:96:86:ca:55:14:4c:5a:4b:ef:fe:c9:19:32:d2:2c:
bd:84:22:94:6d:c1:d3:94:42:e1:30:e0:37:4c:a5:f7:04:07:
47:0c:f6:95:1d:cd:62:38:5b:e4:7d:18:d5:95:57:26:97:ca:
0d:ca:8c:16:4f:dc:a7:19:f7:6e:07:3f:bb:e8:4e:d8:18:76:
89:9a:14:f5:04:56:f7:73:57:55:5a:85:9f:98:3f:69:17:dd:
2e:b9:b6:8e:87:2a:cc:01:df:44:50:3c:5b:89:b1:17:01:ed:
07:c9:2b:c8:7b:31:fe:9d:1c:d2:28:30:de:a7:a3:50:b6:6f:
26:5a:ea:d6:65:c6:f2:bb:6f:d8:15:18:96:6c:c6:0b:ec:2a:
97:6b:7b:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:06:15 2026 by rpki-client