Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: nvYBy5qI+yLk1iS/nR1oHLdz51MQPp/AKNK1952/PCc=
Subject key identifier: 2B:B6:EA:CE:15:FA:8E:74:E4:EA:B6:91:8F:5D:8F:42:16:94:5A:76
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 019D37C12D4ACD7419429472720AFA2824B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 0A2D
Signing time: Sun 29 Mar 2026 04:01:39 +0000
Manifest this update: Sun 29 Mar 2026 04:01:39 +0000
Manifest next update: Mon 30 Mar 2026 04:01:39 +0000
Files and hashes: 1: bkpFrc_6laoYbGdkqTlHlW-Qe80.roa (hash: p/3gwRkkBDXycKoUYkEzWpJbWT3T+RMybdZ5AMyzIgo=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: sklXajA/2VXXpEu/s4ZQlYyOiu7zBAODvjxSO6FqazM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c1:2d:4a:cd:74:19:42:94:72:72:0a:fa:28:24:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Mar 29 04:01:39 2026 GMT
Not After : Mar 30 04:01:39 2026 GMT
Subject: CN=2bb6eace15fa8e74e4eab6918f5d8f4216945a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:1b:3b:37:fd:5a:d9:1f:05:cd:2b:06:b8:81:
c5:aa:20:ae:45:86:76:a5:58:d4:1e:54:9c:e4:76:
e1:2e:8d:04:f6:34:08:e5:b6:77:58:b2:31:a2:c7:
e7:7c:54:76:1b:22:cf:05:c8:3c:60:f7:a1:2c:f9:
9f:71:1d:4f:1b:c0:b8:a6:23:a0:4a:d0:81:9b:76:
2e:b8:de:29:1f:00:df:d4:99:e0:a4:e1:a7:65:c8:
1c:46:5c:6c:91:4c:10:bb:96:4f:11:8c:c9:3c:0b:
0b:e6:d6:70:01:f3:08:d8:92:74:8c:5e:c1:cd:ef:
03:cf:67:37:df:c1:06:6c:4a:93:33:95:91:bc:8e:
7e:9c:38:48:ab:94:b2:76:75:3e:53:39:7d:03:92:
fb:4f:54:65:4d:72:79:15:62:96:88:d3:a8:a7:16:
e7:23:88:c0:12:12:05:3d:4d:9a:52:ed:e0:dc:f7:
d2:41:20:35:40:59:61:f5:77:5c:9b:64:23:2f:12:
5d:e3:eb:e7:2a:cf:87:8b:31:3d:75:d4:6b:20:9a:
2e:61:4f:3b:b0:79:e0:c1:f8:70:35:48:14:43:60:
87:36:dc:2f:50:d3:06:f8:43:eb:f7:e5:19:b4:c7:
18:3c:90:32:52:62:21:2b:80:cf:03:97:cc:78:59:
2e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B6:EA:CE:15:FA:8E:74:E4:EA:B6:91:8F:5D:8F:42:16:94:5A:76
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:a5:c2:15:c9:71:85:d1:af:bc:4a:5b:e9:b8:b6:f8:90:49:
2b:96:02:22:43:22:a0:20:90:3f:05:1e:cb:a8:f1:ad:3c:56:
47:1a:63:9f:81:f4:5c:c2:92:ae:c8:ec:e1:a2:c1:67:57:27:
4e:dd:5c:23:db:70:c2:62:27:70:16:14:dd:52:2a:b6:b3:4a:
ce:65:85:9c:73:03:22:5e:a7:db:1a:90:cd:d7:9e:9f:de:71:
05:de:a0:a8:22:5e:05:fe:f2:31:f1:5f:02:d2:f9:09:98:9b:
39:08:dd:1d:19:6c:ef:ce:86:dd:ac:86:ed:c2:3e:97:f6:78:
f8:d0:20:9e:6b:19:19:fc:4b:e4:5e:b6:9c:43:7a:a4:66:10:
52:24:4f:00:de:1f:4c:25:4b:ad:ba:e2:e0:5a:a4:c9:82:f7:
58:82:a0:10:43:d5:27:96:bc:3b:86:6d:ca:b6:4c:52:1b:e6:
f4:c3:35:ac:23:ba:01:d9:9d:2b:53:b6:e2:63:a1:c1:4b:81:
41:5d:79:ba:ad:d1:e8:d7:f3:89:a5:3f:27:4f:b2:0c:b8:21:
8e:80:d8:e8:13:dd:1e:86:be:7e:c8:8f:57:09:7d:76:bb:21:
7f:bb:5d:69:ca:85:83:47:7a:4a:7c:b2:a1:5e:cd:8d:9f:5f:
90:c7:8b:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:35 2026 by rpki-client