Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
File: xWYvmAINpON9UO07swICd08pLXo.mft (raw, json)
Hash identifier: iHS+arZBGlDi+Otdtf95GxizsDVPjC/U8oWlYyHEn38=
Subject key identifier: 7C:6A:32:B5:09:E8:81:26:55:01:F2:90:13:FC:14:E7:4A:59:F4:72
Authority key identifier: C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A
Certificate issuer: /CN=c5662f98020da4e37d50ed3bb30202774f292d7a
Certificate serial: 019D37C0C8822634C0D753C391116E80F769
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
Manifest number: 04E1
Signing time: Sun 29 Mar 2026 04:01:14 +0000
Manifest this update: Sun 29 Mar 2026 04:01:14 +0000
Manifest next update: Mon 30 Mar 2026 04:01:14 +0000
Files and hashes: 1: nzDQVgvmn8MPp9hP_YWHgwOX3jI.roa (hash: oRVvK6JSGXQQlXi5SI+dzEHrPaQ2vh5FEq0UvDnb9/g=)
2: xWYvmAINpON9UO07swICd08pLXo.crl (hash: dFUUQexAQwKcGvpmGj6VLxz62/1moyMgSvqvjvB/pcY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:c8:82:26:34:c0:d7:53:c3:91:11:6e:80:f7:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5662f98020da4e37d50ed3bb30202774f292d7a
Validity
Not Before: Mar 29 04:01:14 2026 GMT
Not After : Mar 30 04:01:14 2026 GMT
Subject: CN=7c6a32b509e881265501f29013fc14e74a59f472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d9:88:55:5c:d0:80:89:08:67:37:e7:1e:e6:
24:96:0b:b1:dc:e0:3c:8f:87:fd:76:9d:30:6b:3d:
ef:aa:db:0f:12:6b:88:a1:91:b2:d3:99:9c:9b:9b:
55:18:b6:c0:9e:ab:56:fe:1c:de:b7:e8:3e:10:88:
ff:3e:a8:00:2d:35:c4:ce:ea:46:fe:53:bb:35:28:
77:54:f5:bd:85:bd:c1:0c:02:73:c8:2b:31:93:c6:
3a:70:81:c5:de:8b:47:f5:7c:c0:98:86:8a:5d:95:
c2:7a:ad:bb:aa:02:67:bf:84:ad:a4:0d:33:4e:90:
92:7f:03:79:5e:a1:4e:3d:95:f0:0a:f5:27:34:c0:
f6:e3:1c:fd:6f:b2:01:35:87:56:06:2e:e1:51:09:
ce:6f:09:96:4d:31:dd:7e:7b:24:a0:e5:57:d8:fa:
47:4b:9d:98:52:ab:02:5c:75:0a:60:6c:93:69:47:
c7:c5:fa:e2:79:24:52:d1:45:9b:cc:53:9a:a3:7d:
32:6d:fa:46:1d:f6:89:f1:e3:a2:c2:67:93:ad:58:
cc:83:c2:ef:2d:0a:f6:05:10:1c:a4:2f:33:cf:77:
ee:15:d1:74:f6:1a:52:f4:fa:b1:d8:95:fa:b7:93:
b0:33:61:f3:7f:22:01:e0:48:6f:8c:2f:c6:df:a1:
88:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:6A:32:B5:09:E8:81:26:55:01:F2:90:13:FC:14:E7:4A:59:F4:72
X509v3 Authority Key Identifier:
keyid:C5:66:2F:98:02:0D:A4:E3:7D:50:ED:3B:B3:02:02:77:4F:29:2D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xWYvmAINpON9UO07swICd08pLXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5d6c15-a588-41dc-a6a2-f89977a45b60/1/xWYvmAINpON9UO07swICd08pLXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:e7:bc:9f:79:20:85:aa:17:e5:ab:e0:6c:be:88:e2:35:4f:
6d:86:9b:63:af:de:3a:a8:e3:09:15:88:1b:ff:d8:b7:50:7c:
c1:e9:78:ad:94:fa:f0:e8:69:89:b8:5a:4c:9b:b5:cf:38:8c:
c9:5b:b1:df:49:68:29:49:cf:3f:ba:f9:24:c1:ca:66:7f:d2:
91:38:8c:f3:5c:a7:b4:6f:62:4e:6f:a6:11:16:52:2b:c3:4c:
86:71:7f:f4:da:57:35:07:67:64:56:a1:73:32:9f:98:e3:ca:
2f:1b:a0:89:b3:d1:78:f1:a4:95:12:3f:b0:c5:b3:55:46:14:
7a:5c:54:14:4a:6d:34:b8:5a:2e:85:58:d8:70:fa:9f:62:d5:
ad:b9:eb:d9:79:06:f1:99:26:ad:7b:59:72:14:f9:b7:b7:eb:
01:75:91:0d:6a:22:fc:f5:1e:eb:2b:d5:3f:8b:8e:0d:0d:b3:
f6:ad:d5:f2:ec:fe:63:31:43:eb:d8:f0:36:cc:f8:c4:d1:65:
ad:a5:ac:97:2c:dc:d1:bc:50:b0:a1:4c:11:b4:e7:48:94:39:
f4:f6:5d:17:c2:fd:72:c9:22:0c:8d:bb:c7:f5:c0:ba:e1:66:
0a:a1:9a:52:96:b0:c3:b1:c6:35:84:c8:21:aa:fb:ba:d4:01:
82:49:a2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:08 2026 by rpki-client