Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json)
Hash identifier: bWiLuZCWe35J4RAjf7FaFLxCxlYnO1SunF2bx8nt43c=
Subject key identifier: CE:3A:93:2C:1B:A4:D4:86:63:57:08:4B:D3:AF:DC:A4:14:73:36:FD
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 019CE2C7B6C314A3301AE3C89007A92CA10C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
Manifest number: 187A
Signing time: Thu 12 Mar 2026 16:01:04 +0000
Manifest this update: Thu 12 Mar 2026 16:01:04 +0000
Manifest next update: Fri 13 Mar 2026 16:01:04 +0000
Files and hashes: 1: 3M28JHI7FacsIOAJQWmxce2Slr8.roa (hash: YkTIvgr/OPBfSq7cSMGcukiH55SIyz1JhUaAuApclZY=)
2: C28DWNXDejdL7MAcc4Gi6FPgeMM.roa (hash: IsJNEkpniLV6uLgZ6ioRBU52pmL/v472ljfJA8Ci5sE=)
3: Gk3x3dMvMywr2S8J1gmXYe0hnoU.roa (hash: /bwOAvbGES0zjJv2PTCP3py4NDDoCXEMIJubC3y4gDQ=)
4: IK5t8ZtR9FmBC9B2Oc1q_FzsZ60.roa (hash: 99eWXzzKhZzYTyaPK2nn6KPekh7aMTWJKB401rZwNvg=)
5: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: VlJxPXtnnexqjvTZ7uM8kXIiCilMAhrcGZR4ZPFiv7s=)
6: jXdcvBqCE8rVio9YNuEiuZYnuIo.roa (hash: ZtkqLvQ4ehKRiTxaMSbbV1v3/KL7Hxac2TJ9AgS/V8k=)
7: khD-5GIOCtdSW94SprlTc6aKDCw.roa (hash: 9g8S387WfYIRLJ6x0iTubqGcDstg4uHac2ZeVMN70tA=)
8: qH5fLLWJkV1VZnXKxFAToZGD4BA.roa (hash: gujwjiPUnMht5bxbQJ8geZbpehgQ8vnJKIXcFg1nhbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 15:04:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e2:c7:b6:c3:14:a3:30:1a:e3:c8:90:07:a9:2c:a1:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Mar 12 16:01:04 2026 GMT
Not After : Mar 13 16:01:04 2026 GMT
Subject: CN=ce3a932c1ba4d4866357084bd3afdca4147336fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:51:fa:bf:e1:f3:a1:8b:da:b3:2d:0d:d4:4b:
d0:96:78:75:52:9c:ae:43:75:a7:d8:18:b5:64:1e:
e9:fd:1d:db:42:d1:a4:25:90:a5:c8:1e:d6:04:29:
81:e3:e9:e5:6e:59:5d:08:8d:14:de:28:26:0f:a4:
c2:75:82:39:6d:c0:7a:c6:3e:92:29:e7:71:ac:9c:
e1:39:b7:b5:c7:44:e8:12:65:21:87:02:ba:26:6e:
8f:bd:cd:7e:ad:19:21:17:28:19:9b:8d:cc:8f:a3:
90:96:65:a4:5b:44:99:f6:c5:2b:96:65:09:b5:e3:
70:d3:21:c0:57:00:d1:d1:3e:0d:59:b5:62:63:61:
94:8c:64:d7:27:9f:71:3f:1e:7d:df:19:81:a6:05:
41:39:16:d7:fd:80:5d:01:ab:a2:01:e4:f0:5e:38:
30:b3:32:af:1d:66:7d:19:1a:95:8f:fa:8a:55:5c:
b9:7a:9f:20:3a:1d:ff:96:ea:c6:f6:9f:d4:0c:d0:
04:94:b8:67:3f:03:06:c1:c9:7c:d4:fd:56:88:3b:
d8:0f:93:14:28:83:dd:87:e1:53:37:40:f4:ef:ba:
0f:dd:c1:23:75:3d:30:48:90:95:db:ca:7e:80:bd:
a2:b6:bd:8a:63:5c:3f:85:66:e8:06:85:c1:91:de:
72:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:3A:93:2C:1B:A4:D4:86:63:57:08:4B:D3:AF:DC:A4:14:73:36:FD
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:e7:a4:d3:61:32:9f:d5:3c:61:b3:24:42:a4:3d:71:75:ae:
ed:ae:ce:00:7c:c7:a9:45:24:05:8f:12:d9:52:bb:2c:30:de:
a7:e5:56:6f:37:93:22:05:2b:9b:33:ad:6e:3c:9c:fe:04:9f:
d7:df:d6:51:a3:65:9a:6a:d5:89:d5:1d:ca:22:79:c6:6d:66:
d0:36:05:76:86:84:33:17:4a:9f:c4:15:f0:f2:8a:9b:92:45:
b8:c1:5e:f5:8b:a4:c5:e3:2d:7e:45:b7:8d:ff:cf:2f:8d:42:
09:cf:5b:ca:31:4f:ad:9d:6d:94:a5:20:af:64:dc:ba:5f:35:
aa:d6:00:1b:ec:0b:8b:01:fc:94:14:49:3e:3f:4a:ea:bb:61:
42:6b:99:b1:17:c1:a0:60:d5:d4:3b:f0:bb:db:50:cf:7a:8f:
85:65:2b:8f:e9:3e:44:de:1a:73:93:4f:12:63:3f:a7:3d:9a:
3d:2f:fb:74:82:d8:13:20:7d:23:0c:de:be:74:99:a4:4e:1d:
35:41:c0:2d:b1:23:26:30:67:41:85:0b:1a:00:a7:92:e0:d1:
44:c3:5c:d1:af:c1:66:7f:4f:2b:61:c5:35:f4:43:85:24:52:
fa:c3:13:18:b6:f4:39:37:22:d5:63:ba:ee:ce:95:70:44:ab:
05:25:e0:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 21:28:25 2026 by rpki-client