Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
File: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft (raw, json)
Hash identifier: LcHnGeR/DhIUYsAXfQ9Q/+e80rzGab6w8DKB3ZOUDPY=
Subject key identifier: C8:28:A5:07:93:DF:56:6C:87:44:8A:50:1F:03:71:AC:A0:99:A8:B4
Authority key identifier: F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
Certificate issuer: /CN=f970049cba7f39aeed31d65313c7b953f3fda135
Certificate serial: 019CE55A1CD391C2BA8C1AEFA3523D5B6750
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
Manifest number: 1693
Signing time: Fri 13 Mar 2026 04:00:13 +0000
Manifest this update: Fri 13 Mar 2026 04:00:13 +0000
Manifest next update: Sat 14 Mar 2026 04:00:13 +0000
Files and hashes: 1: 1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl (hash: eEXFOfOK7+u4CTHwuxNPpM5Wko3i5m2nrlehzoR8Ock=)
2: 9O4dKfnZgTgqWB_iiNETLsmvwXY.roa (hash: B3+44Wl16VVGNQlYDiIt0cK5DguWkC82Gzjl2M8qljQ=)
3: 9wP7mpH_B0PGwWv5_AlRe4xldiA.roa (hash: zYLWTc75j+s7gKIa+ebYI+LbuI7qKTL5YSAgcKHFymE=)
4: HUC0yUJUDgqy27kx_QVtwVTYAPk.roa (hash: CyeQ43VG6tD5RMnxhr0UsmCBVHZpmO9VtiFMAauD0/c=)
5: OuUlmrN0axWfSqeYSWZ3VFyR9gQ.roa (hash: QKGtXpsKu8AS09muhwUu1IIbo7MS1z9kgfO0GKSJA9I=)
6: UgGCU0bNSuQOEElr01rlVK8sU_Q.roa (hash: AacHgDrHZ+OvhSoYCRcjSoSerNRKqDKHnF8VQ9u1BE8=)
7: Wp-glj4jLDxWifTRA7ilsUKXI0w.roa (hash: vAjHOys3Ggc83LnsEZEpKy5P5ZSFbz3QKqyxgLEsEXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:5a:1c:d3:91:c2:ba:8c:1a:ef:a3:52:3d:5b:67:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f970049cba7f39aeed31d65313c7b953f3fda135
Validity
Not Before: Mar 13 04:00:13 2026 GMT
Not After : Mar 14 04:00:13 2026 GMT
Subject: CN=c828a50793df566c87448a501f0371aca099a8b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f1:16:b0:08:73:47:c9:64:93:bd:30:29:bc:
16:b3:a3:f3:1a:14:c8:87:32:02:2f:f2:dc:c8:dd:
96:fa:db:6d:36:2b:58:d9:94:2b:cd:c0:26:a4:81:
e0:33:f8:36:85:11:c7:b8:fd:f2:8c:d3:ff:02:b3:
af:0b:c7:ff:33:d2:9e:be:94:2e:e2:cf:23:fd:98:
ba:0c:60:73:27:d5:de:1b:34:4d:ea:99:ab:e1:35:
89:00:e6:cf:ed:70:59:96:06:8b:0d:7a:ff:41:f1:
18:93:28:19:8f:60:d6:60:20:01:5e:11:5f:63:19:
ab:54:a8:c4:be:38:5e:fe:1b:0e:7e:41:68:f6:0f:
72:02:2b:b8:9b:0c:88:1b:01:e0:81:1b:57:8f:06:
48:23:fb:9d:d4:ee:56:59:4f:65:08:b5:2e:02:a4:
94:d0:c2:3f:37:50:8d:b9:79:93:1c:a2:3d:57:24:
19:dc:45:2d:d3:ab:0d:05:c1:b5:70:a9:a3:a4:59:
78:b9:41:d9:f8:34:1a:9c:1b:86:58:22:df:80:94:
97:83:48:51:21:aa:bb:66:40:04:bf:c9:67:c2:34:
78:7d:7e:1e:ab:f1:bb:7d:c0:2a:7d:b0:35:12:0c:
0b:83:15:d2:ac:3f:d4:e7:f4:9b:48:42:8a:75:eb:
ee:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:28:A5:07:93:DF:56:6C:87:44:8A:50:1F:03:71:AC:A0:99:A8:B4
X509v3 Authority Key Identifier:
keyid:F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:a4:97:c1:2e:19:e9:51:8c:6e:d3:ad:85:12:12:de:f8:bb:
0d:b4:b7:bf:e2:a8:89:08:9c:cd:93:c5:b8:56:16:70:2d:3b:
73:c1:ff:1a:4d:e4:6a:6d:52:13:df:1f:7c:f3:aa:5c:1a:b4:
0c:86:8c:16:dc:f5:22:be:9b:df:ae:d8:c3:cf:a9:82:64:fa:
af:67:db:9e:85:81:47:c5:52:fe:32:91:da:68:e6:7c:89:7d:
b9:c0:71:74:cf:4c:42:2a:a9:3e:20:03:9c:c4:92:0b:59:4a:
ab:c0:c6:e7:8c:64:d9:97:ec:1d:20:39:7a:2f:7c:eb:ef:3b:
4b:fd:fc:32:d8:75:8f:2b:68:a9:8b:ad:6e:05:a3:67:a3:08:
af:ab:23:95:c7:8d:1d:d3:98:5d:96:28:bf:59:8f:a2:0a:5b:
e9:09:da:42:cc:59:85:e3:2d:ce:08:04:2d:77:35:81:15:ac:
d2:2e:29:a1:d4:6f:3b:60:6a:b0:c9:55:be:b2:42:bf:36:1a:
42:ed:9f:85:94:e9:ca:8e:01:b9:23:1a:de:a0:26:58:d8:34:
fd:7d:8a:4b:fa:c1:38:1f:7c:a6:d0:b0:c6:58:f2:57:c9:98:
e6:65:c3:d0:a1:26:79:e6:c3:aa:6c:76:4b:63:5c:59:16:31:
da:0c:76:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 10:05:27 2026 by rpki-client