Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
File: Xo0HtF99gxJMn4wPrAO-wCRos34.mft (raw, json)
Hash identifier: 4cYXD2XjecrRZf5JNNCAcoGVsCgXVJYI2V7H18hNkTM=
Subject key identifier: 9A:32:11:1C:38:94:B3:68:EA:41:3D:03:7C:B6:0A:FC:D9:00:F7:15
Authority key identifier: 5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
Certificate issuer: /CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Certificate serial: 019D97AACE574DFDBF3C1512BABF994E04B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
Manifest number: 18DB
Signing time: Thu 16 Apr 2026 19:00:46 +0000
Manifest this update: Thu 16 Apr 2026 19:00:46 +0000
Manifest next update: Fri 17 Apr 2026 19:00:46 +0000
Files and hashes: 1: AtV2hA3YXGqznUtgR3uB6bOY8lI.roa (hash: E9jIH1WdWmHG5Hqaca5c+6ilzJbhu15ZC+JxJ/GcG+0=)
2: EoMrU16bqHoGy2xh9XxsU9osNps.roa (hash: /uTZPWaskDiwuTtmaYcl1U/fLPuv+/ZTx4jUSu0Cxmo=)
3: WQ55TI7O_Y3_x9hkYSvF2UvokSE.roa (hash: TZOmAdpezSY7WR8DK0sxR8J5sP9pIOwu7JtZmeFi+dA=)
4: Xo0HtF99gxJMn4wPrAO-wCRos34.crl (hash: KS+Z9gPWFj3VVzcHnWl5eacaLclIp5VYbcaQa3TY1UU=)
5: ZjJCoFoY4vkCAYGodEJRPnkGA1E.roa (hash: IBH/AgeMMVSuYzKj8XBPFVbLx3ITGxDTcTWy5mB/4kk=)
6: cBiAa5mhSgA43crHBox7ENCMzz0.roa (hash: o+Wpg4wmE93CRBVaPQJ3jYatCSCBt6U/zsJRrbAFVqU=)
7: hgl809tjaX7Gbv4DItgm3ScJV_4.roa (hash: 1spmr6hLWhe0MEAFi9Vr2mFMBf7qQUqSQroJeyohJqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 19:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:aa:ce:57:4d:fd:bf:3c:15:12:ba:bf:99:4e:04:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e8d07b45f7d83124c9f8c0fac03bec02468b37e
Validity
Not Before: Apr 16 19:00:46 2026 GMT
Not After : Apr 17 19:00:46 2026 GMT
Subject: CN=9a32111c3894b368ea413d037cb60afcd900f715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:14:d1:ce:a5:74:40:dd:29:15:85:de:67:b5:
f6:7f:b0:a6:62:d7:8c:07:d9:44:99:4c:f2:13:bb:
6e:e9:36:d9:52:6c:ca:3c:fa:b7:c2:9b:82:51:57:
d7:0d:72:f0:5c:2b:fd:7a:bc:ef:4c:3c:c9:4d:98:
ba:09:28:99:18:a4:1c:2d:74:e9:04:42:79:9c:0b:
20:04:2e:26:de:4e:3b:d5:6a:21:0e:a9:f0:e1:09:
bc:af:30:71:76:07:dc:bd:b9:91:68:b7:e8:6c:31:
6b:8f:49:3c:36:f3:79:33:3d:2f:e7:67:e6:4e:c6:
28:ba:37:93:3c:f4:b7:40:86:1b:ff:ab:6d:70:6c:
23:a8:a9:b9:f9:bc:b8:fc:31:09:88:ad:62:36:ff:
b5:dd:db:e1:51:70:b5:03:c4:4e:bb:0d:8e:06:40:
bb:d3:9f:ee:0f:f1:b8:d2:62:40:66:2a:32:cf:91:
ca:ca:65:42:bb:d3:78:9e:ca:b0:44:a7:1a:bb:2f:
ff:30:29:9d:9c:ce:2b:f7:73:95:c1:d5:81:63:25:
c9:40:a6:8d:8d:f1:0b:27:ed:99:e4:8a:31:7a:db:
8e:8c:be:e8:7f:1b:16:a2:2f:4a:aa:db:ee:e6:78:
3c:e9:9e:7a:c4:49:57:c4:2a:2b:1c:f5:e9:9f:11:
f7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:32:11:1C:38:94:B3:68:EA:41:3D:03:7C:B6:0A:FC:D9:00:F7:15
X509v3 Authority Key Identifier:
keyid:5E:8D:07:B4:5F:7D:83:12:4C:9F:8C:0F:AC:03:BE:C0:24:68:B3:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo0HtF99gxJMn4wPrAO-wCRos34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/a168e9-d070-44e0-94a4-6c8fd84bb5f5/1/Xo0HtF99gxJMn4wPrAO-wCRos34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:e7:86:7f:b6:e1:1f:c9:04:da:17:9d:d6:7c:08:b7:ba:9b:
54:ee:86:07:42:bb:1d:97:77:53:e4:eb:a3:a6:f9:0b:fe:09:
7a:5e:5d:e9:54:9a:a0:9a:9a:d7:8d:eb:47:44:b1:b5:6c:9e:
70:ee:94:77:ff:0c:00:fd:b1:d6:80:21:ce:f0:9e:ef:a6:ec:
e7:67:81:28:ed:e2:bb:5b:f3:c6:48:21:00:42:ac:46:ee:e5:
24:81:a8:82:2b:f5:85:45:70:d0:55:6c:94:33:aa:a2:97:49:
a9:29:4d:e4:b2:bf:03:e8:05:e6:10:48:32:d2:c8:6e:d0:88:
18:20:46:4e:32:ae:4b:59:61:a5:ec:a4:49:af:ed:30:4e:71:
2f:69:e4:7a:f5:8a:35:1c:d0:5f:a2:67:01:c7:c1:85:dd:a6:
05:c1:2e:96:33:8d:fb:1a:42:71:da:5f:a8:6d:65:9d:cf:4f:
02:b2:02:f7:39:fd:ac:ca:73:85:18:f2:b9:0e:54:98:12:7d:
a8:0c:31:1c:bf:98:2f:1f:7b:d5:64:77:78:7b:0e:c5:32:ab:
7a:09:28:38:1f:5c:8f:ca:9b:9a:2e:32:ad:f0:0f:c8:83:fd:
a1:28:4f:3d:a6:cd:7e:19:98:ce:c3:b5:5c:43:a0:88:28:88:
a2:64:03:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 16 23:55:49 2026 by rpki-client