Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
File: xHC41L-HFAS8pTx3gVME7y6k4co.mft (raw, json)
Hash identifier: IIV46XR569G14oPHAOpGrKfaEKP1GbNxw/4Sk7lhO1w=
Subject key identifier: 39:2D:DD:89:8A:3F:90:D6:0F:46:92:8C:AB:B5:94:B2:88:95:9A:81
Authority key identifier: C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
Certificate issuer: /CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Certificate serial: 019D12342643594AF96F3CCFB395A5C5BAE5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
Manifest number: 0261
Signing time: Sat 21 Mar 2026 21:01:40 +0000
Manifest this update: Sat 21 Mar 2026 21:01:40 +0000
Manifest next update: Sun 22 Mar 2026 21:01:40 +0000
Files and hashes: 1: DnR3n06izuqiF0c6QLmB63bhByA.roa (hash: wXx/mCp3Tb5hj1tTLAH162/y2WEyBpkE4oI2Qluv1II=)
2: xHC41L-HFAS8pTx3gVME7y6k4co.crl (hash: 1ANwYlyOSCaa8GvmTo2jL+6pZ2dsBLyBKtsg0E3GM9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 22 Mar 2026 14:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:12:34:26:43:59:4a:f9:6f:3c:cf:b3:95:a5:c5:ba:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Validity
Not Before: Mar 21 21:01:40 2026 GMT
Not After : Mar 22 21:01:40 2026 GMT
Subject: CN=392ddd898a3f90d60f46928cabb594b288959a81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:58:be:96:e3:d2:9d:34:72:0a:ed:4e:9f:e0:
94:ef:21:02:83:f9:99:51:b3:a7:f0:64:bd:d9:51:
5c:3e:2e:f8:65:78:f7:28:a7:85:b7:89:37:87:83:
b7:4a:13:ec:41:87:04:4c:01:06:51:41:6b:2f:b1:
b3:dd:b1:8e:dd:19:05:1e:f1:a3:cd:54:fe:fe:4e:
ca:c9:73:1a:35:06:17:a1:8c:45:a2:d3:a8:1e:5e:
b0:d9:56:cd:5a:44:25:39:26:a0:c0:b9:35:8b:e3:
1b:fe:dd:7d:8c:fd:b1:51:f2:c9:7b:fe:c9:9f:0d:
74:20:ba:4b:d9:6c:64:d6:94:8a:da:cd:42:be:42:
bf:a7:2d:c2:bd:88:64:05:50:da:c4:4f:e6:56:01:
34:19:4c:38:e9:40:2a:0b:c6:a0:23:6b:4f:6c:22:
1a:d1:61:d3:e0:86:6f:19:c3:19:de:46:90:92:e0:
d0:f1:f0:4f:9a:90:fe:b1:7b:07:3a:0c:fc:41:b1:
4f:38:bd:db:6b:1a:ab:53:62:23:80:1a:f7:bc:02:
6b:ef:f1:07:a4:69:ab:a7:a4:41:ae:f7:79:54:5e:
ab:c3:26:cd:be:42:70:75:27:be:94:98:f2:4c:ee:
b3:78:0f:f0:47:86:80:1b:01:76:3c:1b:43:6f:2d:
7b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2D:DD:89:8A:3F:90:D6:0F:46:92:8C:AB:B5:94:B2:88:95:9A:81
X509v3 Authority Key Identifier:
keyid:C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:ae:bf:b8:c5:e1:57:8d:c5:03:09:de:70:e7:3a:e0:5e:28:
0b:50:08:dc:a4:9b:4d:25:3a:a6:f5:61:e4:ed:61:2e:29:e6:
7c:59:ba:a5:49:07:7d:0b:a9:4c:b7:ea:52:15:30:91:a0:36:
1c:15:d2:1c:eb:01:bc:db:1a:1b:4a:66:05:9d:5a:d3:03:0e:
91:30:11:eb:f2:1e:08:d8:8a:2a:d5:50:c2:0d:00:b6:f4:78:
0f:7c:79:d6:6b:5b:bc:af:4d:7b:89:31:a4:9f:46:31:19:67:
36:5f:fd:29:16:b7:0f:d4:31:ee:8f:bc:c4:e2:78:b8:97:62:
af:69:82:02:65:d2:43:eb:72:96:ae:a1:d4:fc:9f:f2:11:32:
b0:0d:71:7c:c1:14:a4:b2:be:2e:75:94:c1:e3:e1:10:30:16:
7e:1b:4b:1a:a1:0d:73:62:ec:77:3c:d6:d1:16:34:a0:15:aa:
9e:fd:cc:75:d0:82:59:7f:e4:44:bd:55:24:c5:b4:ed:58:5f:
14:54:02:9b:9c:e3:1d:53:84:b0:1d:8d:d4:87:d2:7d:9e:f5:
e0:93:4e:33:74:30:be:96:f4:01:eb:8b:6a:57:99:2c:8a:c1:
48:61:4f:98:22:ff:75:f8:00:6e:27:7a:b2:36:0c:f8:ee:00:
ec:69:8c:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 22 00:08:27 2026 by rpki-client