Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
File: xPLYuhsZIR-p-cDbVRVFEzECzLs.mft (raw, json)
Hash identifier: YacTt/QJtKe6w+jIovVqhfrLHRctE7wiJMMXz2AYax4=
Subject key identifier: BB:D6:F7:D5:62:A0:58:69:77:5A:FE:FF:BF:A6:10:59:1D:BD:91:23
Authority key identifier: C4:F2:D8:BA:1B:19:21:1F:A9:F9:C0:DB:55:15:45:13:31:02:CC:BB
Certificate issuer: /CN=c4f2d8ba1b19211fa9f9c0db551545133102ccbb
Certificate serial: 019D390A04DC692095427FFF635A863D38DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
Manifest number: 171A
Signing time: Sun 29 Mar 2026 10:00:51 +0000
Manifest this update: Sun 29 Mar 2026 10:00:51 +0000
Manifest next update: Mon 30 Mar 2026 10:00:51 +0000
Files and hashes: 1: GWJI_mFCqJuyDkHldrdzfZ_vzc8.roa (hash: Kba9i+mtRpiR9std+3kLIR0ldljFrDaLsM+dV2wWLHc=)
2: xPLYuhsZIR-p-cDbVRVFEzECzLs.crl (hash: PTeZRGQM2gwZmpgfd5stOXTHudL+zGsyClxEcILA0Go=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:04:dc:69:20:95:42:7f:ff:63:5a:86:3d:38:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4f2d8ba1b19211fa9f9c0db551545133102ccbb
Validity
Not Before: Mar 29 10:00:51 2026 GMT
Not After : Mar 30 10:00:51 2026 GMT
Subject: CN=bbd6f7d562a05869775afeffbfa610591dbd9123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:db:8d:40:51:a9:eb:af:f1:72:fc:33:32:e0:
d8:dc:b7:f4:0c:b6:dc:83:61:80:5a:26:d6:1c:a2:
67:7f:2d:62:48:9f:c5:47:1f:11:5f:1f:bd:35:a0:
b1:02:e9:b6:3e:a2:f3:ae:e6:0b:87:0b:a8:70:6b:
62:14:77:31:fa:0b:ef:2b:ad:2c:dc:e4:c0:a4:58:
b3:9d:4c:5f:2a:0b:d5:cd:5c:c2:08:84:ce:bf:15:
6f:7f:da:04:f7:85:56:de:bb:0a:6d:2f:ff:4d:af:
71:b5:04:65:85:53:5d:5e:15:70:41:65:17:af:42:
05:42:91:b7:7b:c1:2b:f0:10:c2:e6:ed:8d:37:1e:
cc:c4:ba:3b:08:9c:5b:42:b4:8f:0d:30:e9:e7:ab:
c7:ba:59:df:4a:a1:b2:c5:a6:34:32:0d:71:95:89:
ad:39:8a:f3:7f:84:6b:b7:3e:9f:29:04:c4:c1:6f:
7e:c0:37:6b:6c:3f:b2:d8:83:84:ea:07:df:a3:5e:
97:19:d6:17:0b:66:4c:24:e2:eb:2e:9c:a1:4f:07:
51:b0:db:b5:26:15:f5:f8:a3:a8:b8:65:0b:7a:71:
8f:8e:05:e1:92:2c:42:3f:6d:3f:36:94:8e:f2:2d:
33:50:3e:3e:cf:cd:78:a0:4c:c2:36:6c:c5:27:c7:
54:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D6:F7:D5:62:A0:58:69:77:5A:FE:FF:BF:A6:10:59:1D:BD:91:23
X509v3 Authority Key Identifier:
keyid:C4:F2:D8:BA:1B:19:21:1F:A9:F9:C0:DB:55:15:45:13:31:02:CC:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xPLYuhsZIR-p-cDbVRVFEzECzLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/e8c2bd-98fa-4bdf-80bb-c5eee57ed2e6/1/xPLYuhsZIR-p-cDbVRVFEzECzLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:bd:a3:99:d6:4e:f9:21:17:ce:b9:3c:db:eb:28:08:88:ae:
26:83:d0:40:1e:91:a4:85:d0:e6:b6:8b:a0:9a:3e:61:e5:99:
a1:c7:d8:24:ae:52:dd:b9:e5:8d:16:86:dd:87:65:2e:83:56:
dd:a8:64:41:8f:aa:2f:53:a2:8b:69:a4:7e:da:b7:5c:a4:47:
a5:6e:a3:1f:e7:c4:a7:12:32:d8:68:fe:1e:a1:49:93:c4:c6:
eb:0f:6e:22:1d:e8:d5:4c:64:b6:51:cf:61:94:2e:25:73:bb:
25:5d:23:69:4f:55:e6:96:37:d6:8b:ee:60:93:68:ef:7f:39:
1e:73:af:e9:3e:93:a3:a3:bf:1c:5d:1a:12:9d:d6:7e:64:8b:
0d:1c:dc:6e:99:19:04:61:47:5a:10:74:84:ca:a1:e0:52:99:
d3:22:86:a6:af:9d:bf:78:7d:b3:ca:5a:0d:9a:48:e4:e2:fa:
d1:58:1f:79:6c:52:f8:fa:0f:56:f8:f2:d6:52:ea:06:28:20:
67:7e:49:d0:aa:9c:3b:bc:3e:61:5f:50:1e:55:29:88:b3:cf:
dd:e5:08:2b:92:6a:45:3a:4b:45:2a:6c:0f:eb:69:82:f9:b1:
44:cb:ec:76:d5:c1:be:51:6b:3f:4e:56:1c:fe:a2:09:fb:f9:
ce:76:a3:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:41:38 2026 by rpki-client