Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/XcKN1dDOGOISxpsKAlHp1hVxysY.mft
File: XcKN1dDOGOISxpsKAlHp1hVxysY.mft (raw, json)
Hash identifier: fFetqiqVzlsG1yl4XPt2pwYNQwR0/7OFnyHBNzQeJAY=
Subject key identifier: 8D:DF:DE:FD:58:92:1E:F5:77:55:8F:E4:E5:8A:95:C7:92:41:EE:73
Authority key identifier: 5D:C2:8D:D5:D0:CE:18:E2:12:C6:9B:0A:02:51:E9:D6:15:71:CA:C6
Certificate issuer: /CN=5dc28dd5d0ce18e212c69b0a0251e9d61571cac6
Certificate serial: 019D3941B42D611C616B12364BED187A0552
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcKN1dDOGOISxpsKAlHp1hVxysY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/XcKN1dDOGOISxpsKAlHp1hVxysY.mft
Manifest number: 0135
Signing time: Sun 29 Mar 2026 11:01:40 +0000
Manifest this update: Sun 29 Mar 2026 11:01:40 +0000
Manifest next update: Mon 30 Mar 2026 11:01:40 +0000
Files and hashes: 1: 6m3pa9Ng-lepr-XcBTqn1gqY_DY.roa (hash: iDACbKqYbxyRt0xcPBz5G+LTNPwkr4+BIktwxOzGi4w=)
2: XcKN1dDOGOISxpsKAlHp1hVxysY.crl (hash: PZDqZMQteyE23UlmCdRw9lZhk/hE9cQqcCkKMW0nGjw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/XcKN1dDOGOISxpsKAlHp1hVxysY.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/XcKN1dDOGOISxpsKAlHp1hVxysY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XcKN1dDOGOISxpsKAlHp1hVxysY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:b4:2d:61:1c:61:6b:12:36:4b:ed:18:7a:05:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc28dd5d0ce18e212c69b0a0251e9d61571cac6
Validity
Not Before: Mar 29 11:01:40 2026 GMT
Not After : Mar 30 11:01:40 2026 GMT
Subject: CN=8ddfdefd58921ef577558fe4e58a95c79241ee73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:77:05:96:bb:0a:80:02:20:48:d1:dd:73:2a:
80:e5:c6:b2:f8:a6:dd:19:e5:6a:d4:c5:bd:4f:ea:
68:cf:28:ba:b3:46:54:96:ed:fb:18:e7:6c:c1:30:
4a:8c:e8:bc:a4:82:bc:60:a5:b6:e6:f2:18:73:93:
35:ae:b5:fe:e6:be:e5:5e:a6:5f:9c:7f:b2:d2:ac:
6f:8d:be:86:6e:48:46:f1:59:fc:bb:8b:b8:31:f1:
64:e7:80:b6:5a:27:f9:82:60:83:e9:91:96:7e:35:
0a:0c:8f:4a:45:ad:14:ee:28:a0:1e:7b:8b:65:f3:
bd:a1:ad:f6:1b:4d:2a:24:db:d4:58:5f:84:0f:06:
70:e5:53:ed:e2:cc:ef:a5:34:cb:05:18:33:9d:0f:
97:f3:07:a6:03:b2:6e:b9:8a:78:7b:3a:83:a2:05:
b3:15:07:e3:17:6e:2d:8d:d4:5f:e0:68:3e:d0:36:
b1:c5:af:c4:6e:1e:ac:c0:46:07:28:92:a0:69:af:
8f:5a:e2:e1:20:eb:e8:4e:24:d6:8f:97:b3:58:3e:
6b:73:3d:6c:b1:cd:81:cc:9a:85:d7:60:db:c7:94:
a4:50:22:fe:04:65:2c:d3:c6:27:4f:4d:ee:40:b8:
0a:d3:b1:42:15:55:05:26:98:f8:4b:6b:55:21:fa:
0c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:DF:DE:FD:58:92:1E:F5:77:55:8F:E4:E5:8A:95:C7:92:41:EE:73
X509v3 Authority Key Identifier:
keyid:5D:C2:8D:D5:D0:CE:18:E2:12:C6:9B:0A:02:51:E9:D6:15:71:CA:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcKN1dDOGOISxpsKAlHp1hVxysY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/XcKN1dDOGOISxpsKAlHp1hVxysY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3256b4-4160-4d14-b44f-241e8fe27381/1/XcKN1dDOGOISxpsKAlHp1hVxysY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:91:0e:cd:73:fb:58:18:94:3f:9f:ef:c3:f1:6d:1a:fa:4f:
0b:c1:72:53:a1:9d:e1:ed:8d:77:5d:fc:59:80:e1:57:2d:50:
2e:6f:d3:d8:4c:d4:3e:fb:97:fd:7c:b4:f9:1e:eb:74:7a:33:
59:92:0f:6b:7c:ee:c1:1f:2b:c2:f8:9b:07:d1:f2:d6:b8:a1:
59:e7:a0:d0:7d:80:e7:20:ac:50:51:bc:d5:68:f3:2f:8d:58:
e5:f9:ef:6f:1e:d4:0d:8e:4d:5d:cc:a1:5e:17:f0:0c:92:fb:
2b:50:aa:fa:55:f8:83:a9:03:37:ba:e1:f9:6b:53:c1:33:4b:
ac:bf:41:77:6b:ba:a9:5e:00:e6:66:70:14:97:9b:43:d6:53:
0e:0e:dd:3b:a3:c1:81:ff:aa:a9:31:19:1b:15:13:34:02:a4:
b1:fd:af:36:73:95:35:a3:82:9a:b5:92:49:b9:9c:cf:f0:c2:
4e:90:a1:85:fe:3f:ea:d0:ff:65:8c:06:83:d7:52:ea:70:63:
b4:d2:2d:af:80:21:43:d6:92:30:21:d0:d8:69:23:04:5b:56:
12:3a:db:b0:6d:55:d8:05:79:cc:01:67:88:ae:a2:1c:3b:d8:
6d:68:73:df:45:db:6a:cd:3e:d5:e0:78:de:70:d6:82:32:4d:
fc:0e:fe:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:01:05 2026 by rpki-client