Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
File: XBEKKwrrN_DJMqlr279-82whGXw.mft (raw, json)
Hash identifier: qkubgobaoUTh6gmaOaTDXEPuNIN37N6b39T+SJusjtc=
Subject key identifier: 00:13:52:6C:7F:BA:F9:3D:96:7D:BA:DD:95:6B:0C:F4:55:31:EE:D5
Authority key identifier: 5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
Certificate issuer: /CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Certificate serial: 019D39410BC92B8C28A710B1664B1DD29709
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
Manifest number: 13FC
Signing time: Sun 29 Mar 2026 11:00:57 +0000
Manifest this update: Sun 29 Mar 2026 11:00:57 +0000
Manifest next update: Mon 30 Mar 2026 11:00:57 +0000
Files and hashes: 1: NrZRCuerFzj4EhFGKoh_NKbZNxM.roa (hash: 5QAUpIfqv2CVCHxJDOL189fybpsclOVK/PxPIJsB8Xs=)
2: XBEKKwrrN_DJMqlr279-82whGXw.crl (hash: oCK/VnmMf44ZGZ88eJMsPvPtFc0zTUmXhWELYY8HdKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:0b:c9:2b:8c:28:a7:10:b1:66:4b:1d:d2:97:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Validity
Not Before: Mar 29 11:00:57 2026 GMT
Not After : Mar 30 11:00:57 2026 GMT
Subject: CN=0013526c7fbaf93d967dbadd956b0cf45531eed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cd:6b:b6:2f:1f:ff:66:b7:a2:09:8c:60:cc:
b7:c4:f7:a3:e7:11:12:7d:56:c3:d5:d1:99:94:f6:
34:4b:4a:14:dd:c5:8c:6b:0e:cd:78:f6:ff:ee:86:
4b:8e:88:66:fa:b9:19:d3:e1:f0:db:34:d9:4c:3a:
85:0e:d2:d9:7e:32:fd:13:ee:50:d6:ee:17:be:af:
a1:ec:d5:03:f5:2a:d9:de:0d:1a:0b:3d:31:78:a4:
85:fe:aa:1a:2a:99:de:c1:a0:ec:4c:6c:43:96:a6:
80:8f:ec:e2:18:43:ac:17:91:20:28:fa:14:ff:39:
f7:75:42:92:04:b2:11:a6:be:67:fe:b1:3a:4e:6b:
7f:1f:6c:b3:89:f4:b0:84:5d:13:e9:6b:c1:1f:f4:
b2:7c:78:d2:88:99:c8:ee:08:fa:fe:db:39:c9:28:
1f:41:f8:20:65:d7:90:fd:e6:22:e7:80:aa:ec:10:
8b:71:ab:e4:de:cc:9e:75:fe:86:9c:b8:65:c5:07:
aa:2d:56:40:76:58:11:ef:24:84:c0:c1:d5:3d:0c:
8a:dd:d3:f2:f7:32:37:7d:c3:13:51:6f:d5:77:da:
22:49:81:bd:a9:ff:f9:8a:49:a8:2e:9a:87:b0:fd:
f4:ef:49:2f:45:e4:e0:9f:ff:ba:01:51:57:e3:c1:
d4:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:13:52:6C:7F:BA:F9:3D:96:7D:BA:DD:95:6B:0C:F4:55:31:EE:D5
X509v3 Authority Key Identifier:
keyid:5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:dd:65:f0:25:cb:47:67:00:0b:a7:32:94:e1:6c:67:06:64:
5d:dd:39:38:aa:99:00:7c:ca:02:6d:08:d1:7a:de:b5:b1:81:
7a:c7:0b:16:c5:17:a1:bf:c1:ca:46:67:a7:a8:c5:30:b3:d5:
1c:88:22:44:2d:d1:20:3b:36:54:1a:62:cb:f3:d6:c4:41:04:
88:02:0a:d1:86:50:8f:4f:d7:86:25:0a:5c:d7:22:a1:2a:19:
a6:5f:97:93:71:a5:5f:61:74:40:93:e5:dd:ee:34:41:72:dd:
34:c7:57:cc:90:50:bc:5c:25:26:5b:fd:5f:4a:f6:6b:50:1d:
cd:9e:75:ef:c3:8b:50:be:c8:e5:e4:54:44:00:28:c9:ec:47:
74:50:81:8d:ab:c0:7c:40:8a:05:28:d8:cb:2e:da:3a:11:2f:
aa:a2:98:99:ef:e6:79:86:82:01:0a:fa:7c:5e:86:2c:da:9e:
e0:d9:ea:69:7c:b5:c8:4e:a3:b0:57:95:38:c2:b6:ee:04:71:
d0:0e:98:31:4b:89:7e:21:4c:c9:c7:99:cc:0d:ac:f4:b9:da:
76:46:cd:e4:5b:98:0e:0d:64:8e:22:36:0b:76:9d:36:50:ed:
b2:e7:b4:ec:08:2f:20:ee:4a:38:30:2d:57:14:1e:ee:4a:5c:
d4:4d:8a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:43:27 2026 by rpki-client