Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
File: xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft (raw, json)
Hash identifier: SYWWI7nb/Rvq8Bjg/7BPJqE87a20Ss96DUwvAhY4bPM=
Subject key identifier: 8A:35:9F:10:88:11:D0:BC:81:72:A0:FD:F9:15:D4:29:F6:81:7B:0E
Authority key identifier: C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
Certificate issuer: /CN=c613276cbca6793c33457a9bf22fc10b382301f4
Certificate serial: 019D382E1A4F50AD0D4BEF5849F139DBBEFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 06:00:38 +0000
Manifest this update: Sun 29 Mar 2026 06:00:38 +0000
Manifest next update: Mon 30 Mar 2026 06:00:38 +0000
Files and hashes: 1: Ey9RDTUKNtpxucDL595am7oxv5w.roa (hash: Tn0c8HJjvP0UNfrsMJSn4uo3H3SBrrgbKleOBTQq0Rg=)
2: xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl (hash: 8ojb/oSY8OcvLOJxOgBji0cyGmOEYz1WrBKK+PB0B9M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:1a:4f:50:ad:0d:4b:ef:58:49:f1:39:db:be:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c613276cbca6793c33457a9bf22fc10b382301f4
Validity
Not Before: Mar 29 06:00:38 2026 GMT
Not After : Mar 30 06:00:38 2026 GMT
Subject: CN=8a359f108811d0bc8172a0fdf915d429f6817b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:36:99:e8:43:6c:7b:8c:7d:6f:85:45:61:11:
56:70:37:05:09:69:ba:53:e6:12:05:c8:24:03:7f:
88:48:2d:b6:a2:10:e8:65:34:84:b4:a1:f5:ad:ad:
dd:d6:e4:f2:17:16:77:dc:c1:91:17:c1:f5:9d:50:
31:07:3c:c0:f1:b5:2e:0c:e8:9f:5c:7c:a4:fc:aa:
66:18:30:ae:a8:e8:07:8d:23:90:32:ed:91:11:68:
1d:18:71:f5:b4:84:f1:bd:89:9d:c9:cc:40:d1:6d:
01:03:b3:58:04:7c:6c:a8:05:83:83:20:24:bc:0e:
a9:83:33:02:41:ae:72:e1:e2:4f:fe:b6:f8:ab:a7:
b5:70:6e:f6:a9:7b:a6:df:1f:bb:66:a3:3d:5c:94:
25:47:72:70:b3:0a:e4:98:ce:43:21:60:ee:19:7a:
b5:b8:92:a8:53:3c:9d:a8:f9:fc:fb:69:bd:44:7c:
07:b7:ff:95:cd:10:bf:43:2e:0b:58:a3:95:c9:77:
af:6d:4a:bc:16:b4:61:fc:03:ec:2a:2b:9a:82:de:
4d:09:e2:44:1e:eb:0b:01:d6:10:b4:a6:01:f7:d6:
9b:59:1b:fc:c4:62:d0:d2:61:7c:f9:41:3c:1c:eb:
c8:6b:20:28:2d:10:56:fc:bf:88:31:de:b3:9f:45:
61:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:35:9F:10:88:11:D0:BC:81:72:A0:FD:F9:15:D4:29:F6:81:7B:0E
X509v3 Authority Key Identifier:
keyid:C6:13:27:6C:BC:A6:79:3C:33:45:7A:9B:F2:2F:C1:0B:38:23:01:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhMnbLymeTwzRXqb8i_BCzgjAfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2818b6-1c13-4724-be92-8cd438b5f260/1/xhMnbLymeTwzRXqb8i_BCzgjAfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6b:7c:fa:e1:82:e7:ac:36:5d:3a:9c:a1:0d:00:9e:87:e4:
61:26:2a:f0:38:3d:f7:20:ec:5c:03:13:df:d0:25:a7:a0:e0:
9b:f6:53:5d:89:3f:0a:01:dd:10:c8:1c:7a:70:bb:ed:a1:b9:
3c:fa:a1:6f:61:cc:7e:5e:77:8e:9b:9f:fd:d4:cb:73:aa:7d:
8a:e9:04:18:23:4b:26:eb:2e:36:22:22:3e:26:7a:a0:a6:bc:
62:9e:e9:0d:63:83:46:3f:c1:30:e3:cd:e1:6b:f6:be:0d:c8:
a2:4e:95:79:0d:62:d7:49:c7:68:16:18:39:a9:89:c2:e8:f7:
b0:c1:17:f7:2e:e1:36:5c:7a:59:b2:8d:90:e7:33:9f:9d:ed:
a1:c2:8e:63:3d:0a:67:98:c8:2e:4b:25:ec:08:5d:6b:ef:43:
56:e1:82:6c:e4:d9:2d:a7:3e:74:a6:6f:30:92:44:04:45:0c:
f1:93:43:f8:c3:09:fe:69:bc:65:87:83:97:6a:f5:16:be:80:
8c:fc:83:19:fa:d4:d4:f0:b1:76:46:78:9e:92:87:2b:96:13:
a4:81:86:96:50:f8:17:4c:79:0d:98:f8:88:e3:fc:ef:ea:18:
0b:de:a4:f3:24:af:57:db:ff:91:dc:92:de:b2:e6:7c:5c:0d:
75:cc:53:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:09:57 2026 by rpki-client