Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
File: xcidUmDLNP27s7wlv0rbr0zcaKA.mft (raw, json)
Hash identifier: 8ASOw3RSir3jAPcDMHTH62FqxXB0jLY+jTfYRAlqnS4=
Subject key identifier: 40:1B:7D:E7:26:BF:08:E1:D5:22:8D:58:71:5A:BC:39:5D:CF:16:2C
Authority key identifier: C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0
Certificate issuer: /CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0
Certificate serial: 019F11C09FDAB360824305C53490ABA3B776
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
Manifest number: 0941
Signing time: Mon 29 Jun 2026 05:01:04 +0000
Manifest this update: Mon 29 Jun 2026 05:01:04 +0000
Manifest next update: Tue 30 Jun 2026 05:01:04 +0000
Files and hashes: 1: JD_hILTLs5WiN-GGz9cnjaMmPmg.asa (hash: w3ngbPPlSEh0i5ZlPs9dJQ8lVMYy1vGnqLwn37EOyHY=)
2: xcidUmDLNP27s7wlv0rbr0zcaKA.crl (hash: lLv99Uyym4DuaRPZIZjaznhZTsSw/8NaqRiYB8jfUBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:9f:da:b3:60:82:43:05:c5:34:90:ab:a3:b7:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c89d5260cb34fdbbb3bc25bf4adbaf4cdc68a0
Validity
Not Before: Jun 29 05:01:04 2026 GMT
Not After : Jun 30 05:01:04 2026 GMT
Subject: CN=401b7de726bf08e1d5228d58715abc395dcf162c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c9:72:b8:dd:3c:84:3d:cb:d5:1e:f8:46:01:
19:52:2e:28:51:eb:79:91:c2:a2:98:eb:9a:a6:1e:
e0:69:d8:76:cb:8a:3a:4c:e3:2f:d4:f8:fa:6e:03:
77:d0:53:0f:e2:7d:73:96:13:65:f1:a1:45:96:5f:
e9:1c:0b:15:c5:10:b7:08:48:5d:91:a5:fb:b3:06:
ef:05:eb:77:20:9a:44:63:9b:95:bb:3e:52:51:af:
f8:81:ee:e0:0e:31:66:c1:5f:27:ff:17:e3:8b:ff:
b0:08:a4:b7:db:d3:f7:fa:a0:11:b3:fd:ad:1d:82:
f9:7c:5e:57:3e:0a:18:bc:bb:62:ad:aa:83:01:30:
2d:ff:9c:bd:9f:b5:4b:15:7f:f5:65:c0:2e:3b:eb:
33:e3:0e:fa:1e:c4:46:d2:56:bc:fc:7e:60:b4:3d:
ab:7a:86:0a:7c:23:1c:8a:36:b5:7c:6a:57:c4:df:
b9:cf:96:ef:28:3a:61:fd:75:8a:e7:85:a7:9d:60:
e3:26:10:80:5b:49:d0:12:a3:9c:42:11:58:01:25:
be:d2:d5:13:8b:b0:6e:7c:7a:37:de:79:9d:64:e6:
07:6e:03:35:8c:bd:5e:c8:16:58:3f:e4:a7:99:a4:
80:5f:e4:9f:ab:5a:30:74:12:2f:13:4e:25:67:ba:
a8:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:1B:7D:E7:26:BF:08:E1:D5:22:8D:58:71:5A:BC:39:5D:CF:16:2C
X509v3 Authority Key Identifier:
keyid:C5:C8:9D:52:60:CB:34:FD:BB:B3:BC:25:BF:4A:DB:AF:4C:DC:68:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcidUmDLNP27s7wlv0rbr0zcaKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/623b14-4e6e-4c31-96be-8ebcd09b2bca/1/xcidUmDLNP27s7wlv0rbr0zcaKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:31:99:16:41:38:0f:db:03:8f:e1:f9:d2:a8:dc:e7:4d:89:
8a:7b:69:31:25:ea:e2:f4:1d:41:96:73:64:70:00:3d:37:0d:
89:30:bf:a0:13:31:07:19:3f:7f:6a:ed:f1:9f:fc:7c:5f:e9:
a5:fa:75:da:45:8a:26:69:c8:eb:67:2d:74:a6:65:9b:39:b7:
81:20:8c:3e:a7:5b:62:5f:69:dd:94:45:9a:cb:42:73:85:9c:
21:c4:51:88:69:d8:f9:09:ed:bd:52:64:17:6e:1f:3d:63:16:
aa:6c:45:f2:e4:cc:b2:1a:0d:5b:53:43:d2:c9:f7:b4:2c:c0:
a6:80:14:48:d6:a3:2d:d6:b9:15:a3:28:b0:4b:7d:c1:45:44:
ce:75:a6:c6:c7:c7:14:c5:4c:dd:02:b0:dd:43:31:e5:31:fe:
de:c7:bc:ea:95:3e:cc:ca:5f:b4:d7:b8:95:4f:bb:57:cf:35:
49:61:55:ac:77:b6:2d:3f:d4:ee:cd:cf:2a:1d:87:ef:f2:43:
07:4f:d4:58:cc:36:36:c9:45:6e:34:28:bb:1f:0d:8d:c7:41:
1d:50:f9:da:5e:b0:e5:2f:b4:04:51:f2:83:5b:6d:4e:33:80:
e1:77:1c:f5:d3:24:f6:b4:3d:1a:7c:65:3a:21:d4:24:9e:ee:
5d:94:00:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:33:57 2026 by rpki-client