Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
File: x0HESpzVjhJWkGY32TXDGQ9_6xo.mft (raw, json)
Hash identifier: c1t58QMEynPq7ASBn2ZomctKKp2eUegVB6c64jxTiGM=
Subject key identifier: 4C:48:1E:EC:3E:E9:EC:E8:9B:81:20:95:15:87:79:96:F7:CE:81:BA
Authority key identifier: C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
Certificate issuer: /CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Certificate serial: 019CACB49DFF393A20BA0B260AE4055021DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
Manifest number: 15E8
Signing time: Mon 02 Mar 2026 04:00:43 +0000
Manifest this update: Mon 02 Mar 2026 04:00:43 +0000
Manifest next update: Tue 03 Mar 2026 04:00:43 +0000
Files and hashes: 1: sfmIc9gq5iDCMduVv_7--cWSu5U.roa (hash: o6P8lrqhFhaoqVSr9JiiRBUP/HqFrxkLK5sB6PXFGw8=)
2: x0HESpzVjhJWkGY32TXDGQ9_6xo.crl (hash: 7VH55Z453kzfb8LSBiDwg6Aiz6xG1/dyuF0yczoBl8s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:9d:ff:39:3a:20:ba:0b:26:0a:e4:05:50:21:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Validity
Not Before: Mar 2 04:00:43 2026 GMT
Not After : Mar 3 04:00:43 2026 GMT
Subject: CN=4c481eec3ee9ece89b81209515877996f7ce81ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ed:ce:c6:db:5a:72:ee:2a:8e:07:89:11:37:
a0:00:89:71:4e:67:77:60:9f:63:d3:af:be:c1:9b:
c2:3b:61:e1:d7:7d:cd:1b:a6:9f:c1:a9:7b:a3:1a:
7b:e8:ce:d8:3e:4c:ac:2c:ac:55:89:66:ff:4d:07:
75:bc:74:c9:ab:12:4b:05:e1:a4:d5:44:1c:a3:e9:
95:cc:ca:fb:f6:41:4c:fd:18:9f:b3:61:53:c1:59:
5b:da:43:7b:51:11:03:e7:71:74:0e:54:35:a3:a0:
62:e7:43:37:81:ee:ad:1c:21:f5:07:ab:bc:76:16:
eb:21:97:03:16:ea:db:4c:78:e9:2c:d5:0a:c3:19:
eb:9e:94:e2:36:98:eb:49:ea:54:11:71:19:d0:79:
05:a2:53:ff:43:fa:d7:94:0c:a2:9d:7c:59:a5:c4:
1f:31:9f:94:ca:c9:86:f4:71:01:ca:de:91:dd:7d:
02:cf:b4:2f:1a:84:28:83:f2:3c:87:26:31:2f:05:
c1:d9:62:9c:1d:c7:c5:2a:8d:3e:fe:29:9c:67:97:
10:87:73:d9:1e:22:55:02:c4:2e:1e:de:02:a0:a4:
0d:0d:2b:32:8a:7a:9e:6c:e6:04:9a:72:5a:f4:56:
c3:1b:57:2c:c1:01:26:32:33:b0:f0:2b:15:6d:60:
f1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:48:1E:EC:3E:E9:EC:E8:9B:81:20:95:15:87:79:96:F7:CE:81:BA
X509v3 Authority Key Identifier:
keyid:C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:ca:11:bf:cf:aa:26:76:76:40:d6:10:f4:5a:4c:28:3a:5b:
c9:31:8a:f6:b2:a8:1b:a9:fa:cd:8b:58:ff:45:b3:95:52:61:
c4:7b:91:cc:f2:b5:4c:73:c6:76:79:a3:85:d3:62:07:15:1f:
15:7e:c9:81:98:fd:34:5f:7a:b9:51:1b:c8:b9:0a:0d:64:3e:
ed:f1:6a:1a:b3:e6:b3:c1:f5:e9:14:f6:12:72:e3:e4:39:f1:
15:ad:7f:9f:d1:91:ab:36:06:21:e2:fc:26:b9:b3:dc:23:dc:
61:37:98:2e:11:83:26:eb:b5:9f:c4:6e:be:77:6a:76:35:eb:
21:ed:4a:cb:78:8e:a0:5c:65:e5:4a:73:ba:c7:e4:62:36:4c:
0b:58:20:71:93:db:5c:6b:3a:06:07:24:5d:e1:32:43:d0:85:
1d:ac:9c:b7:63:97:3f:78:28:a6:d6:19:43:20:ec:47:2f:44:
f0:bd:30:da:4c:0e:f5:76:ac:c6:4d:e2:e4:4d:10:b0:98:a2:
41:a0:9d:a7:af:43:8f:e6:77:8a:53:5b:da:5f:93:69:5f:76:
b5:39:e6:5e:75:7a:0d:54:e2:22:17:84:9d:99:82:39:40:84:
8d:2a:a9:dc:e1:23:51:ec:85:34:5b:d5:9c:22:5e:e8:dd:fd:
61:5e:2c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:24:08 2026 by rpki-client