Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
File: xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft (raw, json)
Hash identifier: ry5+kbj1qzJH/Nx/1vl0EbW4EcKnNpMGlTYvwHDTlok=
Subject key identifier: 59:EC:23:E5:A6:42:06:B2:AB:25:82:CE:47:C9:04:E9:D6:3D:2A:7F
Authority key identifier: C6:2F:08:03:C4:29:8E:15:6D:56:3B:D4:F2:07:CB:5B:83:61:02:6E
Certificate issuer: /CN=c62f0803c4298e156d563bd4f207cb5b8361026e
Certificate serial: 019D390A66390A625AC14B8474EA0AB4CD72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xi8IA8QpjhVtVjvU8gfLW4NhAm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
Manifest number: 148B
Signing time: Sun 29 Mar 2026 10:01:15 +0000
Manifest this update: Sun 29 Mar 2026 10:01:15 +0000
Manifest next update: Mon 30 Mar 2026 10:01:15 +0000
Files and hashes: 1: k6Kk-SSfPt5X64syTmG4cY1i-K0.roa (hash: CudYTrmTazmdAPM102kIxAqGfFrQWQy3gnFrCAxwveE=)
2: xi8IA8QpjhVtVjvU8gfLW4NhAm4.crl (hash: HlMfHd3fgqAWaoyVNtuXT6dM17sLJK59B5+BnWAbrTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xi8IA8QpjhVtVjvU8gfLW4NhAm4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:66:39:0a:62:5a:c1:4b:84:74:ea:0a:b4:cd:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c62f0803c4298e156d563bd4f207cb5b8361026e
Validity
Not Before: Mar 29 10:01:15 2026 GMT
Not After : Mar 30 10:01:15 2026 GMT
Subject: CN=59ec23e5a64206b2ab2582ce47c904e9d63d2a7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:62:e6:e4:dd:a6:45:4e:b8:40:d2:9e:f6:6a:
03:40:57:9b:f3:a9:4f:7e:b2:48:22:e5:1b:0a:0e:
62:19:a8:a1:b7:36:9b:e4:d5:3f:60:fe:af:ae:62:
24:58:f1:06:f0:d6:42:1a:42:ae:45:db:e5:ea:13:
c4:de:4e:1e:39:6f:8f:a2:74:49:3e:83:de:9c:9d:
94:55:c5:70:0b:96:5f:1f:ce:eb:6c:ef:a9:11:3c:
ce:9c:28:95:20:d2:2a:7b:28:71:79:62:03:a0:9b:
07:ba:07:d9:4a:9f:a3:1f:22:20:ff:d6:88:d3:eb:
f9:dc:db:52:6c:7b:b2:4e:9b:d1:94:47:3e:1c:62:
29:1b:35:bd:72:e6:c5:5f:5c:b3:a4:1a:a2:27:a1:
d2:23:ae:e4:4e:ba:48:a0:01:fa:16:b2:2c:d8:a4:
2a:44:ed:5b:d1:a0:33:62:8e:61:53:14:51:ab:ad:
f7:f8:ea:c5:c2:ae:c1:90:f8:e4:89:61:ec:40:db:
08:73:8f:b3:6b:70:95:7b:fa:dc:5e:a3:01:87:05:
af:91:8a:53:ca:7e:82:e9:21:7e:7f:f9:bc:ec:fc:
14:0f:22:33:90:a8:f0:ea:8e:d3:44:66:d6:6d:6a:
47:6d:70:b8:a2:28:da:d0:e5:bc:8e:0e:14:a5:7b:
f2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:EC:23:E5:A6:42:06:B2:AB:25:82:CE:47:C9:04:E9:D6:3D:2A:7F
X509v3 Authority Key Identifier:
keyid:C6:2F:08:03:C4:29:8E:15:6D:56:3B:D4:F2:07:CB:5B:83:61:02:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xi8IA8QpjhVtVjvU8gfLW4NhAm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/7dda1c-87e0-4b49-bd9b-3deba1666e9b/1/xi8IA8QpjhVtVjvU8gfLW4NhAm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:f9:b3:b7:98:b5:22:df:1b:a9:93:77:6c:2d:48:f0:17:c3:
ae:a1:69:8c:cf:f2:f5:9e:e8:c6:da:a5:a5:15:a1:71:41:51:
eb:c4:f2:ef:27:4f:d6:f9:b6:b4:ec:46:cc:4e:79:16:25:75:
ba:43:2a:08:8b:62:7d:56:c3:05:6f:d4:1e:db:61:e6:c8:da:
eb:d2:ff:a7:db:a7:82:1f:20:8c:71:15:18:28:06:c9:c3:ee:
4e:9d:f9:07:68:c9:ac:7c:2b:9f:0f:6e:74:1d:4d:f9:79:0c:
44:fc:0c:f1:82:07:56:26:16:bd:f1:8a:59:85:a5:2d:19:44:
61:c7:b4:36:27:cd:41:4b:6a:5e:93:c2:28:5d:b5:3e:0a:9e:
24:0e:a9:38:c1:2f:75:cf:02:2c:35:3a:71:3d:42:d3:69:41:
1d:20:97:18:b7:59:d1:60:8a:be:fb:9b:6e:61:70:3e:1e:d7:
49:b9:d8:7a:da:9a:18:b0:99:d5:55:02:63:a5:b3:82:dc:42:
fa:0c:bb:0b:cf:e9:e3:c5:41:0b:35:d8:7c:1b:61:0f:2a:f8:
52:09:22:66:eb:71:64:82:1d:89:91:93:7f:43:90:41:6d:29:
a7:5a:a8:84:be:a7:5e:2f:42:ae:71:25:fc:01:23:57:9e:28:
50:4c:7c:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:29 2026 by rpki-client