Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
File: x0HESpzVjhJWkGY32TXDGQ9_6xo.mft (raw, json)
Hash identifier: 4kPT+++cgrcsBIW3IVmIN+mGPwTqxv+kPE1Per7dxmE=
Subject key identifier: 6C:7C:02:99:5F:72:FF:6F:0A:4B:77:FD:C5:2C:31:53:93:4F:2A:8D
Authority key identifier: C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
Certificate issuer: /CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Certificate serial: 019D9C2C82DB855F4D3B5913939B289C4225
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
Manifest number: 1664
Signing time: Fri 17 Apr 2026 16:00:55 +0000
Manifest this update: Fri 17 Apr 2026 16:00:55 +0000
Manifest next update: Sat 18 Apr 2026 16:00:55 +0000
Files and hashes: 1: sfmIc9gq5iDCMduVv_7--cWSu5U.roa (hash: o6P8lrqhFhaoqVSr9JiiRBUP/HqFrxkLK5sB6PXFGw8=)
2: x0HESpzVjhJWkGY32TXDGQ9_6xo.crl (hash: f7yaGiXdj360C7tESdlMVNnhbjfvq51SIDA+OjJ1+X0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:47:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:82:db:85:5f:4d:3b:59:13:93:9b:28:9c:42:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Validity
Not Before: Apr 17 16:00:55 2026 GMT
Not After : Apr 18 16:00:55 2026 GMT
Subject: CN=6c7c02995f72ff6f0a4b77fdc52c3153934f2a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:70:57:cf:42:62:6e:a4:df:dd:ec:7f:dc:50:
2d:ab:31:b5:b3:82:a6:95:9b:2f:82:a2:e0:87:3e:
d7:c4:64:4d:fd:05:4d:bf:57:b6:ac:cd:3c:12:73:
98:cf:ac:89:78:8a:60:01:86:b0:e8:f0:23:7e:b9:
88:b7:e4:6e:47:56:24:aa:2f:06:f2:92:ca:99:15:
05:04:2a:00:fd:70:a7:ba:81:4a:33:6c:e0:5b:ad:
80:79:1e:7e:d4:99:ae:ee:2d:cf:9d:bc:01:3c:eb:
b1:73:4b:76:5d:72:50:67:ee:cb:dd:00:ca:83:cf:
cb:d1:39:8a:3c:7a:5a:46:6e:c0:71:6d:46:a5:e8:
0f:fa:fd:d5:db:11:fc:de:b7:43:65:0e:ce:72:22:
72:ef:9c:69:fb:61:27:02:55:60:d0:58:e0:87:a1:
cc:8d:0f:0a:49:15:10:1c:fb:40:a8:c7:91:ef:96:
7d:12:1d:00:f8:e2:4b:42:95:4f:d1:ee:c5:eb:3e:
ad:58:5b:a4:26:1e:84:bf:bf:8e:78:1d:af:8d:1b:
7e:05:f0:98:6b:17:71:4e:5f:e4:ae:de:9c:d2:b5:
91:8a:ac:e4:a6:f3:c6:c2:05:d6:69:e5:b9:51:9b:
45:b5:d9:05:4d:0b:01:e5:e6:16:ea:62:a7:f7:56:
67:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:7C:02:99:5F:72:FF:6F:0A:4B:77:FD:C5:2C:31:53:93:4F:2A:8D
X509v3 Authority Key Identifier:
keyid:C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:45:af:41:62:c2:6a:20:60:57:2e:39:71:ea:ad:14:be:27:
ca:86:cb:11:18:3e:86:79:71:90:3b:1f:c9:3b:d9:90:5d:34:
37:f0:19:86:3b:e3:bc:7d:0d:fc:df:c9:61:5a:a8:2f:d4:b4:
79:38:95:0d:08:07:46:03:c0:3c:2e:91:92:58:e7:45:d2:c6:
07:da:b6:5a:ca:20:92:e1:3e:8a:3f:49:a0:34:84:4f:02:99:
35:a1:e6:cc:b5:67:bb:8c:97:18:60:f5:eb:b7:20:bd:ac:c1:
c7:43:88:52:f4:4a:e2:c8:4d:d0:0a:f0:8d:7a:71:2d:8e:f7:
b8:26:71:4e:cb:43:16:29:df:66:f5:ee:10:a3:93:45:e4:23:
eb:01:7d:ae:41:1b:ce:8e:32:91:1a:00:44:31:65:f4:16:a9:
a5:5a:29:ed:80:df:30:38:5b:bf:eb:be:fd:95:12:e5:d4:de:
f2:76:ad:aa:0f:8c:ad:07:17:fc:1b:e7:af:58:83:80:0a:4e:
67:67:11:5f:7a:6b:dd:b7:a5:f3:a8:0c:b4:38:fb:3a:82:a4:
14:f1:35:02:8e:22:2d:bc:d7:ad:ba:10:68:9b:34:cc:af:5e:
9e:75:1b:0d:6b:44:ca:9d:9a:e5:c4:60:37:34:b7:c5:21:cb:
81:87:0a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:28:17 2026 by rpki-client