Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
File: xHC41L-HFAS8pTx3gVME7y6k4co.mft (raw, json)
Hash identifier: 4LBDC+8XRGktKRFMuOjpS3OMFHoRR8dcHc8EK2W6sSU=
Subject key identifier: CA:1E:92:71:1B:0F:91:A6:30:0A:5F:75:A6:FC:6B:4C:39:A3:19:07
Authority key identifier: C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
Certificate issuer: /CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Certificate serial: 019EE58D78C39879D181590D8566B82F1118
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
Manifest number: 0353
Signing time: Sat 20 Jun 2026 15:01:54 +0000
Manifest this update: Sat 20 Jun 2026 15:01:54 +0000
Manifest next update: Sun 21 Jun 2026 15:01:54 +0000
Files and hashes: 1: DnR3n06izuqiF0c6QLmB63bhByA.roa (hash: wXx/mCp3Tb5hj1tTLAH162/y2WEyBpkE4oI2Qluv1II=)
2: xHC41L-HFAS8pTx3gVME7y6k4co.crl (hash: yTrL78+6j5aort3M+ktsd7M5ZbCePSFUUuwOVYq8WFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 15:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e5:8d:78:c3:98:79:d1:81:59:0d:85:66:b8:2f:11:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Validity
Not Before: Jun 20 15:01:54 2026 GMT
Not After : Jun 21 15:01:54 2026 GMT
Subject: CN=ca1e92711b0f91a6300a5f75a6fc6b4c39a31907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e2:74:66:74:70:87:b3:81:f7:e9:c6:33:49:
0f:40:12:5f:86:b3:93:c9:3d:58:e8:3e:49:6e:6d:
04:f2:04:73:ab:b0:d6:3f:b2:c0:f6:7e:b2:07:1e:
b5:fe:0a:6a:a7:9a:20:e2:ad:67:c3:e7:3b:b1:e6:
0e:93:0c:90:ad:a7:71:75:e6:42:5c:37:db:74:40:
b9:b6:93:ac:5c:53:e1:56:a0:9c:65:0b:97:b8:32:
eb:9f:34:98:da:2c:78:eb:a5:6d:e5:d8:ce:c4:b2:
c9:66:05:f2:0b:b7:22:e6:49:82:c0:a1:05:c9:e7:
55:38:69:31:32:d7:f0:65:2c:df:85:b7:39:c1:04:
f6:d9:34:8f:b2:1a:d8:69:cd:29:db:90:38:21:19:
bd:16:42:08:f4:4f:cd:b8:99:1e:a7:fd:d6:52:3e:
d1:88:61:c5:d7:df:8b:5a:6d:28:6e:50:3a:b1:c4:
9e:d6:e8:1a:46:23:6d:70:dc:7f:3e:b6:cd:ee:c1:
0a:15:c7:c4:2a:34:30:3b:0b:a7:fe:b3:58:12:9c:
db:ed:6e:df:3e:09:01:10:b1:0d:55:90:fe:c4:99:
25:51:40:28:ab:f7:78:ac:aa:e6:23:94:8e:3b:32:
d1:55:09:84:1b:b7:31:90:aa:93:de:6b:52:b9:e2:
5b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1E:92:71:1B:0F:91:A6:30:0A:5F:75:A6:FC:6B:4C:39:A3:19:07
X509v3 Authority Key Identifier:
keyid:C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:73:02:7f:77:c6:f5:c9:cf:a4:55:2d:e7:d0:f7:b1:d6:f0:
b0:a5:2d:21:c9:e3:94:e3:dc:ac:44:7f:b7:a5:e4:f0:d0:aa:
dd:b7:0b:80:be:2c:17:dd:8b:a1:69:ab:f9:7e:26:63:19:27:
93:06:35:8d:d3:3b:a1:c2:0a:4e:e7:96:8f:00:2c:cf:2b:42:
14:83:84:0e:17:d5:d0:45:3a:ce:af:65:5c:f9:10:56:8e:2d:
08:4f:0e:5b:89:53:34:9b:b5:fe:ce:b2:99:3f:c4:dc:96:aa:
3d:f2:8c:4e:6f:be:81:95:40:a2:cb:93:4c:03:82:c9:fe:21:
9c:b2:fd:09:44:84:8f:7b:8c:90:40:1d:17:cb:12:4e:20:84:
57:94:19:53:63:49:86:e0:c6:c6:59:08:a7:61:a7:ca:ff:eb:
c1:f0:e4:fd:6f:0a:4a:e5:fc:2c:5a:b1:e8:b8:5d:66:18:15:
a1:8c:b3:72:d2:d7:2d:0e:bf:1e:89:51:b5:40:2f:c9:0c:01:
4a:0a:bd:2a:96:62:fd:cc:f8:bc:2e:0b:e8:fc:67:61:04:1c:
1e:fc:62:9a:24:cf:de:30:6b:34:eb:62:72:70:43:c0:ae:0d:
d1:41:8c:fb:73:99:bf:2f:cf:a2:8d:06:02:61:b4:62:5e:3a:
ff:19:29:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 00:44:32 2026 by rpki-client