Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier: defsdtsvNl0h8bUlVbRo/qawPRxbYhokqKycSbcbUvQ=
Subject key identifier: BB:82:A4:79:A5:C0:34:D3:5B:5E:21:74:3C:9F:84:F2:77:02:6C:EB
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer: /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial: 019E04072594DB12ED436CCF7C331E937C39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number: 174E
Signing time: Thu 07 May 2026 20:00:37 +0000
Manifest this update: Thu 07 May 2026 20:00:37 +0000
Manifest next update: Fri 08 May 2026 20:00:37 +0000
Files and hashes: 1: RA_P8M2CbE3vpnTaUf4TR1pQq4c.roa (hash: sqZi/SBA/dg8k8Qf9vK6EYY7YFO+mp6oMfC87nRDLEY=)
2: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: HQBq9Qit83CgHQuusXasKbRVe9EGcqiovQgR4MOuOlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 May 2026 20:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:04:07:25:94:db:12:ed:43:6c:cf:7c:33:1e:93:7c:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Validity
Not Before: May 7 20:00:37 2026 GMT
Not After : May 8 20:00:37 2026 GMT
Subject: CN=bb82a479a5c034d35b5e21743c9f84f277026ceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f7:9e:3b:59:d7:a0:50:f3:10:7b:de:dc:84:
ae:b8:39:24:0b:1c:24:5e:2e:94:d2:14:d5:90:2e:
19:e2:28:9d:a8:38:12:10:1a:4e:41:d2:f7:d2:ec:
30:70:ce:fc:30:66:9f:06:57:80:8d:e0:08:37:10:
1a:fc:5a:5e:51:66:16:8f:fb:d7:19:58:6c:ef:ff:
f3:7d:a2:9c:f9:32:52:f5:66:9b:eb:dd:36:0d:40:
9f:d5:ae:73:eb:22:0f:6b:d7:b0:11:9b:45:81:35:
e4:7a:7d:ed:6e:ba:7b:1b:0c:f9:1a:aa:ea:58:a5:
6a:7d:a7:b8:47:74:df:23:01:e3:98:ee:9e:ea:ec:
ef:eb:85:99:fe:32:3d:86:46:d2:14:ba:94:04:38:
47:73:5f:95:94:d7:a3:2a:74:4e:dc:80:45:3f:65:
f8:f3:b8:15:81:c9:40:88:af:ed:4f:d4:f6:f4:53:
a1:b7:3c:b3:26:b1:90:59:6d:bb:63:41:03:a7:06:
d7:19:a7:51:a7:0d:1a:d3:40:5a:9d:c0:9c:23:3d:
5c:92:05:31:b1:3b:19:23:c0:c6:e9:32:c9:09:e0:
30:e6:bc:bc:af:d5:cc:93:af:b8:36:81:a3:0f:7c:
48:57:ae:d4:a3:31:d8:4d:e0:64:7c:98:c0:26:7f:
6d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:82:A4:79:A5:C0:34:D3:5B:5E:21:74:3C:9F:84:F2:77:02:6C:EB
X509v3 Authority Key Identifier:
keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:9f:64:90:73:4a:41:a1:78:3a:20:6f:83:66:86:0e:64:cc:
37:e6:1f:a3:76:87:4f:5f:89:2d:9e:55:52:ce:bf:c0:a9:a6:
d8:62:d1:a8:55:91:7f:e1:4f:0c:83:ee:f8:26:0e:1f:71:2a:
14:d2:42:99:87:49:ad:95:28:7b:a6:83:c5:3f:02:fd:59:3b:
ca:0c:58:ee:5e:bb:19:e4:d5:67:95:ea:df:cf:5d:de:53:b0:
06:e4:99:dc:dc:9f:02:91:d7:82:e1:66:ba:5a:c3:82:4f:60:
89:66:9a:3e:3c:b2:ba:4f:b1:17:68:9f:4a:ee:81:e5:37:2f:
06:97:99:26:07:df:5f:f6:ce:37:6b:97:e4:be:82:a5:55:8f:
67:cc:f7:4a:9a:9d:4f:88:0c:c3:3f:3c:eb:0f:3f:5f:71:65:
27:1b:5d:cf:88:1d:54:a3:90:9f:ff:c7:60:d9:f3:d3:a7:5f:
0c:64:00:85:95:03:04:98:8f:0b:29:4b:08:87:ea:8a:81:4d:
d4:64:8e:48:ef:f7:19:1c:fa:6e:60:ce:71:c9:02:31:c7:9b:
dc:38:30:76:e9:fb:95:d3:17:3a:cb:5b:82:37:f7:5a:13:ba:
38:8f:8e:17:9c:f0:14:b7:33:c7:88:a6:d9:a4:d9:81:38:a7:
ac:eb:ad:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 8 03:20:43 2026 by rpki-client