Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
File: XHbv8miEvwBiB9cis7AaRNK1YZk.mft (raw, json)
Hash identifier: NL3p4Rfp5EjshodxufmmivgAvQXLw85hX72jCTacK+U=
Subject key identifier: 4D:4F:30:5A:80:67:3C:8D:A2:A4:76:E6:A1:47:6A:70:F0:7F:25:7E
Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199
Certificate serial: 019D382E542F16EDA53D7DAFEA07D6F36CC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
Manifest number: 10C6
Signing time: Sun 29 Mar 2026 06:00:53 +0000
Manifest this update: Sun 29 Mar 2026 06:00:53 +0000
Manifest next update: Mon 30 Mar 2026 06:00:53 +0000
Files and hashes: 1: XHbv8miEvwBiB9cis7AaRNK1YZk.crl (hash: bscwV3qW/0gLuD5F6ZO5NOBtqSyc5KXpFITbVejxU+o=)
2: _YZBO3azDWzDB7ElIM22F0xnwLk.roa (hash: 4qcIMPGCjL8+gfTaAVV6FW+AJO4ktZWbZTXBgVeKur0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:54:2f:16:ed:a5:3d:7d:af:ea:07:d6:f3:6c:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199
Validity
Not Before: Mar 29 06:00:53 2026 GMT
Not After : Mar 30 06:00:53 2026 GMT
Subject: CN=4d4f305a80673c8da2a476e6a1476a70f07f257e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1b:1a:b1:63:14:11:e5:83:f5:0b:2e:47:1a:
d8:9a:9e:7e:7d:ca:f6:06:ce:6c:00:2c:52:27:e0:
3f:ff:47:fd:73:91:e2:ba:50:88:6f:b6:48:c2:bf:
e6:f5:e6:37:fb:e5:fd:e5:be:85:5c:cc:90:b3:16:
e3:e3:5b:ab:6c:b6:cc:3e:18:fe:cf:e7:cd:29:b3:
9b:b5:8f:76:ba:ff:29:93:9f:00:b7:ba:b4:8a:53:
1d:33:8b:66:0f:1f:95:08:31:5b:5e:3a:76:1b:4e:
e1:e0:cf:09:d4:88:78:85:38:95:5d:a0:e4:d8:77:
12:5c:d3:8c:f9:76:ee:a4:37:e7:98:02:37:14:39:
d0:cc:b6:60:9e:0c:96:dd:80:88:d4:c2:d3:46:12:
44:81:59:7a:ee:51:5e:fc:c4:dc:a5:d4:56:b5:be:
64:35:9f:54:aa:dd:5f:aa:40:16:b9:d8:ed:d1:6d:
ea:67:b5:01:18:06:df:db:ad:d6:23:78:e4:43:1e:
da:e7:5e:ca:9a:53:85:80:ba:dd:de:ae:66:a0:cd:
58:0a:32:cf:09:00:0b:67:e6:73:4f:cb:f4:56:73:
d6:6e:18:34:80:29:ae:ca:75:ae:64:31:d3:9b:1d:
4c:dd:7f:fc:4d:ec:4c:9a:a5:39:5f:9b:47:c1:04:
60:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4F:30:5A:80:67:3C:8D:A2:A4:76:E6:A1:47:6A:70:F0:7F:25:7E
X509v3 Authority Key Identifier:
keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:83:e7:0b:4e:4e:97:14:03:31:3b:a3:cc:ce:30:58:60:45:
2d:f4:71:0f:2a:be:0b:02:69:15:ed:0d:e1:24:fd:03:cf:ea:
80:13:bc:c9:91:df:ad:a0:31:ae:8e:f0:f6:d7:d9:ea:e1:00:
47:fe:73:ff:0d:e7:e2:f2:e9:15:7f:9c:b1:95:2f:1b:d1:22:
1c:b7:b1:1b:2d:ed:50:6e:9a:3b:91:b8:c6:ae:7b:ca:c9:b0:
2d:f7:68:a7:c4:3a:f3:a5:69:0a:c6:bd:c0:a7:e0:a5:df:76:
15:62:6b:37:e2:8c:01:84:01:99:fb:34:fe:7b:30:dd:92:3d:
55:1a:e4:eb:2a:f6:4f:85:c9:0b:ac:9c:6d:c6:15:da:75:d2:
20:09:e6:79:2b:58:21:51:ee:8e:4f:44:13:7a:14:bf:5b:f4:
47:71:1c:72:d4:92:16:ce:96:8d:77:14:3b:16:08:aa:d1:9e:
63:80:7e:df:ba:4e:22:e9:bb:98:d1:2d:f7:59:06:15:57:cf:
2f:bf:bd:a3:e5:12:4d:06:4d:e1:6c:e8:f5:1a:cd:ea:ef:61:
a8:88:79:61:d2:87:6d:c2:ac:64:7d:b9:27:e8:0d:85:82:de:
08:e2:9c:2e:cd:c5:3f:4a:65:6e:d2:40:af:a2:0c:4b:96:ec:
00:70:54:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:43 2026 by rpki-client