Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
File: xLejOGcjuooupILHtoAxpUEirE8.mft (raw, json)
Hash identifier: nBklsI5JiLKfq5BypusCwObQ1q+ycegfI9idP9x3t2Y=
Subject key identifier: BC:F7:DA:1A:A7:6B:54:1B:5F:28:B1:5D:96:F4:A0:74:0E:DF:AF:5E
Authority key identifier: C4:B7:A3:38:67:23:BA:8A:2E:A4:82:C7:B6:80:31:A5:41:22:AC:4F
Certificate issuer: /CN=c4b7a3386723ba8a2ea482c7b68031a54122ac4f
Certificate serial: 019D39412DFC0AB720CE31237EEE0559BA4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
Manifest number: 06F6
Signing time: Sun 29 Mar 2026 11:01:05 +0000
Manifest this update: Sun 29 Mar 2026 11:01:05 +0000
Manifest next update: Mon 30 Mar 2026 11:01:05 +0000
Files and hashes: 1: Mk6KT-G0Nd_n-6Ue0npJ0Pqa4CI.roa (hash: 2cQhzB6rvIgJcWKL8JGJ8AUuDd5CAqSH0lZjme07urY=)
2: xLejOGcjuooupILHtoAxpUEirE8.crl (hash: AeEqLv4Uh4ACMImmu0sfMdKrrWVFspdfDA5r2IPXAj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:2d:fc:0a:b7:20:ce:31:23:7e:ee:05:59:ba:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4b7a3386723ba8a2ea482c7b68031a54122ac4f
Validity
Not Before: Mar 29 11:01:05 2026 GMT
Not After : Mar 30 11:01:05 2026 GMT
Subject: CN=bcf7da1aa76b541b5f28b15d96f4a0740edfaf5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8e:6f:ba:cd:f1:41:33:94:5e:51:22:f6:e2:
66:2c:ab:55:07:d5:4f:4d:fc:55:88:12:48:57:b3:
25:5a:b0:0e:8c:25:0b:a2:21:95:f8:7b:9f:72:64:
a4:ed:aa:ca:92:28:46:5a:f0:5a:2c:63:9d:22:b1:
6f:ac:72:8a:1f:50:1d:79:8b:4c:91:63:63:e4:24:
ad:a2:f3:1c:91:d6:48:f9:dc:24:5e:ce:80:38:0f:
40:52:3d:0d:ce:a8:c9:ee:07:b4:34:5c:23:76:59:
22:bb:68:85:fd:8c:da:31:21:c3:b8:f0:b4:6c:34:
06:1a:0a:b5:14:7b:a5:38:26:29:d4:46:db:eb:2e:
af:bd:7b:cb:89:b7:09:86:a9:66:a4:77:fa:db:90:
ba:37:a4:9f:63:5e:8a:7a:81:34:c5:f0:bb:fe:a9:
2d:18:83:ea:e0:36:42:bd:28:bc:88:33:87:53:36:
62:a1:1e:9c:14:99:31:85:4d:f0:12:32:9e:bd:b7:
1a:82:29:ef:01:26:95:08:2e:bf:a3:03:69:e3:58:
8d:5e:4c:5e:7a:2e:70:95:bf:d6:e9:93:c6:1e:57:
bb:b6:18:a5:14:12:87:b8:ab:96:bb:ea:51:61:be:
d8:48:cd:2f:b4:38:e4:ec:b4:34:be:f6:f2:16:52:
f6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F7:DA:1A:A7:6B:54:1B:5F:28:B1:5D:96:F4:A0:74:0E:DF:AF:5E
X509v3 Authority Key Identifier:
keyid:C4:B7:A3:38:67:23:BA:8A:2E:A4:82:C7:B6:80:31:A5:41:22:AC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xLejOGcjuooupILHtoAxpUEirE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/aa7bf6-6525-4394-80ba-bd40dfae7886/1/xLejOGcjuooupILHtoAxpUEirE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:b2:a7:5b:9b:40:d9:ee:d2:f7:55:74:1b:c1:a1:1a:f9:03:
46:98:bc:a9:ac:37:b4:76:71:24:22:9a:31:ed:63:d5:ce:2c:
30:ab:93:c7:c2:41:3a:6a:fc:96:77:ad:c8:2c:40:41:42:d6:
a9:24:f9:38:67:98:8a:f7:5c:5d:82:c0:a1:7c:ab:00:6b:30:
3d:a6:a9:c4:e4:6d:f8:4c:c7:5a:b8:d1:b7:45:3e:98:02:61:
35:a6:f1:60:c1:10:41:f0:b1:e7:7e:7b:09:f8:da:36:61:02:
ca:f7:26:bb:c5:21:ee:11:65:11:b0:21:b4:a0:95:99:48:04:
bf:6d:b7:f9:64:6a:d1:e7:f4:99:a3:8a:44:73:de:43:c1:0a:
b3:10:24:a5:71:17:31:94:2d:5e:bc:1a:ed:50:03:65:34:05:
ec:2b:08:45:52:84:ed:25:c6:fa:9a:61:60:64:fd:41:d2:cb:
52:b9:9e:4d:91:2c:78:73:15:44:a9:8d:8d:6c:4b:e5:c2:ec:
f9:fd:cb:9e:15:84:97:f9:b4:f3:4b:ab:b1:b5:d3:88:61:f6:
d8:d6:b6:a6:7c:eb:eb:1e:b0:98:51:f0:d8:8c:c4:9b:6f:55:
5a:2d:87:76:d1:e6:14:9a:14:0d:a2:f6:9b:f0:f3:4f:d5:fd:
02:0a:01:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:02:02 2026 by rpki-client