Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
File: Xo0HtF99gxJMn4wPrAO-wCRos34.mft (raw, json)
Hash identifier: QfihdVK35DefKlStgmFxTFYFfiJZvU73AzZydwCoyH0=
Subject key identifier: F1:4B:0B:97:0C:9B:A1:D8:F1:BC:43:7F:C5:8E:FE:04:09:F9:28:00
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 019CADFE93C2C3B60125491FD365F610F500
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
Manifest number: 1862
Signing time: Mon 02 Mar 2026 10:01:08 +0000
Manifest this update: Mon 02 Mar 2026 10:01:08 +0000
Manifest next update: Tue 03 Mar 2026 10:01:08 +0000
Files and hashes: 1: AtV2hA3YXGqznUtgR3uB6bOY8lI.roa (hash: E9jIH1WdWmHG5Hqaca5c+6ilzJbhu15ZC+JxJ/GcG+0=)
2: EoMrU16bqHoGy2xh9XxsU9osNps.roa (hash: /uTZPWaskDiwuTtmaYcl1U/fLPuv+/ZTx4jUSu0Cxmo=)
3: WQ55TI7O_Y3_x9hkYSvF2UvokSE.roa (hash: TZOmAdpezSY7WR8DK0sxR8J5sP9pIOwu7JtZmeFi+dA=)
4: Xo0HtF99gxJMn4wPrAO-wCRos34.crl (hash: LhM2SAv016HZgGlw5gTDhQynSW1j6htcLPapyPYmWJg=)
5: ZjJCoFoY4vkCAYGodEJRPnkGA1E.roa (hash: IBH/AgeMMVSuYzKj8XBPFVbLx3ITGxDTcTWy5mB/4kk=)
6: cBiAa5mhSgA43crHBox7ENCMzz0.roa (hash: o+Wpg4wmE93CRBVaPQJ3jYatCSCBt6U/zsJRrbAFVqU=)
7: hgl809tjaX7Gbv4DItgm3ScJV_4.roa (hash: 1spmr6hLWhe0MEAFi9Vr2mFMBf7qQUqSQroJeyohJqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:93:c2:c3:b6:01:25:49:1f:d3:65:f6:10:f5:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Mar 2 10:01:08 2026 GMT
Not After : Mar 3 10:01:08 2026 GMT
Subject: CN=f14b0b970c9ba1d8f1bc437fc58efe0409f92800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ee:0d:d7:9c:a8:dc:1d:f5:10:f6:fd:57:13:
d8:f0:c6:83:f5:62:eb:69:42:7a:15:10:84:6e:8b:
ee:97:82:07:3e:7b:ba:68:f8:84:9d:b0:7d:05:26:
ef:39:58:ba:e6:77:42:4b:43:9f:b3:3e:f1:1f:62:
bc:be:07:df:e6:4b:02:39:ed:bc:d3:89:07:f9:be:
1f:85:1e:96:22:25:8f:69:ab:5e:e8:5f:f0:7f:0d:
6a:43:81:19:a2:12:5a:f0:b1:9f:bf:d1:41:3c:69:
76:a7:b0:31:31:1e:49:b1:62:44:a0:a0:f2:7a:07:
75:ca:94:a5:93:54:bb:92:05:a0:fd:c3:fd:65:cb:
b5:25:63:7b:b4:ad:80:3f:f0:a9:07:50:8f:d1:5f:
4d:d5:4b:22:3c:0f:10:61:2f:af:cd:be:a7:94:45:
4f:ff:b9:39:a4:31:e6:fa:1e:e4:bb:a4:3a:3e:3f:
72:ed:56:fc:b7:92:92:8a:fa:50:c3:b1:d5:04:77:
3a:20:c9:e0:62:37:fa:de:c2:0c:1e:ea:87:89:e5:
17:f0:25:f0:04:b1:69:d6:83:0b:18:85:bf:af:51:
a8:ac:b9:b7:02:da:d5:fb:3b:4c:10:d3:0e:fe:50:
1f:8b:49:45:46:89:b7:1e:a3:3e:e3:cd:41:03:1e:
1b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4B:0B:97:0C:9B:A1:D8:F1:BC:43:7F:C5:8E:FE:04:09:F9:28:00
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:38:36:90:f2:eb:1f:5d:8f:d7:30:21:67:4d:3e:99:c8:20:
88:39:df:5a:85:d9:5b:76:a9:6f:3e:bb:e8:19:2a:02:fb:7b:
a9:20:f1:b9:02:03:d9:e3:12:8d:31:f3:21:c4:57:16:10:b6:
d9:16:03:f0:89:8e:2f:00:8b:bc:79:88:57:60:e1:bb:f7:e9:
30:a9:61:66:c5:2f:f4:77:6f:42:1e:57:31:2b:e6:58:6d:2e:
03:c1:68:b5:6d:8f:03:54:b6:1c:08:65:d1:4b:7d:fc:d8:47:
7d:d5:1f:9a:a8:52:af:f6:53:17:7b:ea:d0:2c:f1:45:ca:ef:
a4:75:9f:a5:18:39:d1:7c:0a:bc:01:a8:e6:a3:b9:2f:ed:18:
a7:29:e8:50:b3:70:75:4b:17:e3:c5:68:b6:cc:d5:93:19:7e:
af:e1:80:e1:f7:64:9f:86:8f:02:aa:c0:26:3e:6c:4a:77:0e:
6c:30:f8:48:87:14:2a:11:77:66:ae:cb:0e:6a:10:37:b1:2d:
26:95:89:b2:bb:f3:bd:b2:fa:ec:95:10:51:7a:2f:c7:fe:71:
82:ef:2b:f1:0b:fc:e2:6c:21:15:f0:06:fc:42:41:e4:cb:f7:
2a:31:01:0e:81:2d:5f:e4:d0:ba:59:3e:e5:48:76:a2:86:32:
37:51:24:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:00:19 2026 by rpki-client