Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
File: xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft (raw, json)
Hash identifier: DIYBu1y7JXYCumBye5ps8Rbg13H9momXU2Hcx74t5nA=
Subject key identifier: 61:E0:70:A8:EB:8D:20:CD:EE:2D:38:42:75:24:B2:06:31:99:30:4D
Authority key identifier: C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B
Certificate issuer: /CN=c6c00c553a54da05b93635a654cada03c6d9df2b
Certificate serial: 019D382E058BA4B82B9EF47EB148F199C3E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
Manifest number: 0961
Signing time: Sun 29 Mar 2026 06:00:33 +0000
Manifest this update: Sun 29 Mar 2026 06:00:33 +0000
Manifest next update: Mon 30 Mar 2026 06:00:33 +0000
Files and hashes: 1: 5Vieq-wulwB6FaJx0xDN_dm4FF4.roa (hash: QYUnQtWcGZ16DHSfHYt9mKOqdeXlb5mTBtNDg7p01bA=)
2: xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl (hash: eZcMOkUBiecPdCD2JpD2Y3N0uM2DjNQSjdwdj3Pld0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:05:8b:a4:b8:2b:9e:f4:7e:b1:48:f1:99:c3:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6c00c553a54da05b93635a654cada03c6d9df2b
Validity
Not Before: Mar 29 06:00:33 2026 GMT
Not After : Mar 30 06:00:33 2026 GMT
Subject: CN=61e070a8eb8d20cdee2d38427524b2063199304d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4d:83:d7:4a:02:8d:c3:c7:d5:37:42:a2:c8:
e1:ac:33:da:3f:cf:64:44:6c:dd:47:12:6e:9c:24:
c7:52:45:f5:99:a6:de:10:03:57:38:82:02:f8:39:
81:25:8a:5b:9a:3f:a0:a3:43:39:20:41:2f:92:2a:
c1:a0:f1:c7:4e:e7:6f:94:4a:3a:ac:32:d6:e8:8d:
0b:98:80:d4:be:da:3b:f0:12:2f:dd:b1:ef:dd:fa:
01:bc:95:26:be:f8:02:83:0d:51:14:e4:41:4a:22:
b0:7a:5f:5b:ea:dd:14:1e:13:4c:1e:3d:5e:02:7e:
f1:8e:41:f8:de:5d:be:2c:81:3e:f1:af:df:9e:34:
2b:b3:3c:32:4c:1c:d0:22:39:00:70:8d:b4:c6:c9:
a5:b1:1d:83:81:fe:e3:41:ec:3b:e5:b4:99:6a:f3:
4d:60:2e:6c:c0:8f:4c:ee:27:69:70:4f:b6:7b:7a:
02:78:4d:73:88:95:c3:20:d1:3d:db:b1:f2:fe:a9:
2f:80:c5:fa:c4:ff:e4:f0:8d:75:e3:a1:ec:53:10:
cf:33:08:68:97:0f:b2:e7:a4:62:6e:a3:f0:70:37:
19:8d:d7:ef:ee:f6:47:a4:97:f2:06:b5:d6:60:ab:
5d:98:0a:00:e0:b3:34:41:f7:3d:be:92:be:b0:6c:
34:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E0:70:A8:EB:8D:20:CD:EE:2D:38:42:75:24:B2:06:31:99:30:4D
X509v3 Authority Key Identifier:
keyid:C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:cd:c6:bb:eb:7f:93:76:1a:c2:6b:a8:aa:bc:89:d9:d5:ef:
b4:69:77:8d:9e:49:a5:01:aa:d3:e7:8a:7d:ef:a4:9e:41:67:
4c:ae:c0:d4:82:29:9c:0d:ba:bb:6c:07:ce:78:77:1e:45:15:
d9:17:94:69:cb:1c:e4:7e:ba:c5:be:9a:a9:7d:6d:85:0a:64:
ae:f6:d5:f3:73:5d:ed:bb:e1:35:11:34:83:b0:e6:89:2d:e9:
a3:6c:2e:7e:63:7d:99:a3:dc:3b:c5:a8:4d:0e:c0:81:f9:02:
b8:59:45:89:f8:16:79:30:69:20:92:7a:3e:5b:13:c7:95:24:
dd:26:e6:b1:24:1b:da:05:b6:51:95:55:8c:bd:1d:f7:f4:fa:
4b:cf:aa:24:eb:27:a1:2a:2e:93:3a:4d:be:10:6a:ed:e2:5b:
90:e0:a9:df:57:b3:8c:2d:6c:5c:03:00:e2:c1:0d:f9:6b:16:
54:d1:f4:a2:30:01:94:49:77:ff:b7:85:aa:87:c0:89:a1:89:
9f:90:b0:f1:76:66:5c:b0:d5:f8:13:ec:1f:ee:86:9d:e0:fc:
20:2f:6d:66:8a:2e:ce:0f:84:32:ed:e8:31:3e:7a:03:af:52:
89:e8:8a:f0:36:02:46:1a:e0:fd:20:4a:c6:b6:3b:f7:b5:77:
8f:b9:f3:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:18:31 2026 by rpki-client