Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft
File: xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft (raw, json)
Hash identifier: rUlOvOxGoZoYaVumnV91fAmUMu/TuWpI0Ksyl3xFJN4=
Subject key identifier: E9:23:15:15:FC:CB:ED:A9:95:09:C4:F8:FC:0F:6D:2E:3A:DA:66:C6
Authority key identifier: C5:D1:8E:1A:1D:C6:55:8C:4D:BA:73:1E:FA:32:76:9C:45:F5:4B:A0
Certificate issuer: /CN=c5d18e1a1dc6558c4dba731efa32769c45f54ba0
Certificate serial: 019D98F52841977164D7756A9A34AA906828
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdGOGh3GVYxNunMe-jJ2nEX1S6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft
Manifest number: 18BE
Signing time: Fri 17 Apr 2026 01:01:36 +0000
Manifest this update: Fri 17 Apr 2026 01:01:36 +0000
Manifest next update: Sat 18 Apr 2026 01:01:36 +0000
Files and hashes: 1: xdGOGh3GVYxNunMe-jJ2nEX1S6A.crl (hash: yLH5IwcAuEkD4Qn7eNAgX84ZnXgVMO87QgxzhzvTdJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/xdGOGh3GVYxNunMe-jJ2nEX1S6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:28:41:97:71:64:d7:75:6a:9a:34:aa:90:68:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d18e1a1dc6558c4dba731efa32769c45f54ba0
Validity
Not Before: Apr 17 01:01:36 2026 GMT
Not After : Apr 18 01:01:36 2026 GMT
Subject: CN=e9231515fccbeda99509c4f8fc0f6d2e3ada66c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:66:b8:a1:8f:02:ad:a0:28:bf:b3:c9:53:9a:
ef:c5:82:0b:d6:2f:90:6e:a5:46:59:b9:7a:1b:86:
a0:0d:a1:fe:b3:11:03:b9:d5:b6:aa:d8:2e:ae:3f:
75:25:69:b2:d4:80:26:d0:bc:f6:30:14:cf:75:2f:
e6:00:fd:78:16:80:79:c0:47:42:e2:4d:30:2e:b6:
b6:56:7d:c6:8c:57:bf:0e:c6:0d:f2:6b:58:82:fa:
62:34:f3:df:2c:c6:b8:18:d0:45:9f:b4:21:3a:96:
d9:2a:59:67:ce:0a:cc:63:d1:7b:d3:a7:3f:2c:cb:
4d:b5:eb:de:03:85:11:61:f6:93:67:46:4d:38:2c:
6e:13:1d:c5:08:b5:4a:e7:03:f4:e8:1a:66:0e:50:
12:d6:09:77:9c:22:fb:5e:9d:7b:ad:bf:88:e4:18:
f8:60:01:17:25:14:84:6c:24:78:19:a6:c3:19:43:
4d:f4:11:19:73:71:54:15:c2:6d:89:10:8b:61:d2:
30:b7:37:3b:17:a7:0b:0a:38:2e:93:f9:e9:5a:11:
72:7c:f4:ce:4e:ad:f1:2f:c3:d1:42:a7:0f:63:70:
80:35:a9:cc:87:f8:63:66:f7:93:a6:d7:69:75:a5:
f5:fe:be:24:aa:7e:07:7d:c6:d9:cc:32:bc:24:42:
87:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:23:15:15:FC:CB:ED:A9:95:09:C4:F8:FC:0F:6D:2E:3A:DA:66:C6
X509v3 Authority Key Identifier:
keyid:C5:D1:8E:1A:1D:C6:55:8C:4D:BA:73:1E:FA:32:76:9C:45:F5:4B:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdGOGh3GVYxNunMe-jJ2nEX1S6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/6f6b07-2e45-410f-9318-1cbe661a63ff/1/xdGOGh3GVYxNunMe-jJ2nEX1S6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:1f:17:41:d0:8c:2b:73:18:4f:b5:65:6e:c4:db:76:27:3c:
8d:2d:9c:ad:22:49:89:75:f8:fb:fb:10:57:8c:95:66:82:9a:
4d:f1:d8:8a:85:33:be:a0:6e:a8:2b:cc:36:5d:cf:61:55:91:
65:e9:dc:78:2f:41:b6:43:0a:f4:6e:4d:41:de:9f:98:43:47:
8e:8d:08:cc:fe:b0:90:eb:b5:6e:9d:37:1e:9b:fd:fb:5a:01:
00:1f:97:b7:25:ef:57:74:57:8a:89:8d:b3:d0:6b:21:a9:37:
79:99:c1:a5:68:09:d7:e1:3a:57:10:50:d5:5e:9f:4f:44:4c:
3e:5a:a6:62:8f:58:3b:9b:4c:44:f0:45:f7:41:c0:47:19:42:
a7:9b:f0:40:8c:59:e2:b2:9a:d7:7d:a9:10:c5:bb:b3:1d:2a:
bc:24:bb:90:3b:ec:95:17:b6:9b:be:57:2d:91:66:75:f7:f0:
60:4d:64:9f:03:e3:b1:6d:f3:29:56:49:d3:22:24:4b:25:c4:
2d:ea:4b:ba:32:5e:99:db:83:75:96:05:17:27:19:e5:ed:7b:
26:15:f7:10:10:be:23:3c:f9:12:4b:75:6e:fa:5f:a4:7d:a8:
0f:11:ea:5b:38:e2:b8:61:ea:cb:0d:b7:df:22:db:66:23:b7:
32:e4:ee:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:33:41 2026 by rpki-client