Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
File: a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft (raw, json)
Hash identifier: 8HHGSDC6Qdw5nwBI8DXwTcAuXXyodbhaqKtlpdJGGjo=
Subject key identifier: 91:9F:91:32:6F:53:01:94:B0:1D:F0:87:1B:C3:BE:55:BD:DB:97:40
Authority key identifier: 6B:EC:4E:29:C6:84:9C:5F:80:84:28:E6:68:58:F4:F0:EC:F4:A6:54
Certificate issuer: /CN=6bec4e29c6849c5f808428e66858f4f0ecf4a654
Certificate serial: 019D984FB33487EE29D0C8878102874ADBB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
Manifest number: 102E
Signing time: Thu 16 Apr 2026 22:00:53 +0000
Manifest this update: Thu 16 Apr 2026 22:00:53 +0000
Manifest next update: Fri 17 Apr 2026 22:00:53 +0000
Files and hashes: 1: CyxtWweyEqgpd8gBxUUhj5fN2MI.roa (hash: E3T6yiukB1U6Qm/DfmLG5nf8+AunKSeI83VF6XZj4IY=)
2: a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl (hash: U3S7d60sA260j4J80oFcxbGnzfvfz6lpsUnPL9KBo9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:b3:34:87:ee:29:d0:c8:87:81:02:87:4a:db:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bec4e29c6849c5f808428e66858f4f0ecf4a654
Validity
Not Before: Apr 16 22:00:53 2026 GMT
Not After : Apr 17 22:00:53 2026 GMT
Subject: CN=919f91326f530194b01df0871bc3be55bddb9740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8f:9e:30:0d:c2:d4:e6:d1:16:7f:6a:c7:d2:
c1:bd:ea:21:a5:a6:46:66:78:63:de:95:6a:7e:a5:
d0:6f:ac:92:fe:4d:79:41:de:7e:07:09:c1:7a:dc:
bf:be:48:1f:81:ef:29:27:0a:ba:5e:5e:7e:1b:7b:
e6:62:64:ba:4b:26:70:ba:94:87:63:62:9c:dc:c0:
4a:e9:3f:4e:40:39:cf:21:20:ea:cc:a5:09:e5:8c:
54:6d:f6:5f:f8:fc:2e:96:a2:94:75:c0:f9:21:c2:
11:bf:b5:cd:db:67:2c:52:c7:c9:25:4b:eb:65:7a:
40:aa:e0:c6:7f:10:6e:83:d9:3a:65:25:16:d8:81:
c8:f0:df:88:cc:66:ac:f7:41:1d:bc:ce:77:c0:5a:
9b:8e:8a:92:6d:6a:39:a1:fa:8d:81:d8:12:87:34:
40:f2:dd:b0:a1:32:51:28:b6:58:b7:b3:5f:e1:49:
25:71:61:99:46:de:97:59:96:b0:64:47:be:1f:2e:
9b:52:66:1f:49:60:c0:6c:82:a5:40:66:f5:49:41:
ed:17:a0:9d:17:6c:3d:e4:84:f6:9c:40:c7:0e:d2:
3a:a9:a4:d6:0b:d4:c5:99:b9:91:3d:93:1e:c4:7f:
ed:c7:4a:3f:f4:38:c7:fc:4f:57:94:e1:29:48:7b:
b7:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:9F:91:32:6F:53:01:94:B0:1D:F0:87:1B:C3:BE:55:BD:DB:97:40
X509v3 Authority Key Identifier:
keyid:6B:EC:4E:29:C6:84:9C:5F:80:84:28:E6:68:58:F4:F0:EC:F4:A6:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-xOKcaEnF-AhCjmaFj08Oz0plQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/f8ac99-0eaa-4f51-8d58-dbfaecdc7ea3/1/a-xOKcaEnF-AhCjmaFj08Oz0plQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:da:66:41:00:45:ed:2d:34:0b:fc:bf:0f:6c:0e:55:96:ff:
bf:72:4d:7f:59:34:c3:2a:82:ea:19:11:10:a7:ea:0a:4d:af:
1c:27:20:82:75:3f:36:8f:b8:be:86:fb:97:29:5f:34:e2:2a:
da:a3:b2:cf:17:5a:11:27:21:26:c4:a7:f9:7d:3a:41:ba:fa:
05:d6:13:f1:39:c5:f2:1a:86:96:8e:33:11:f6:cb:4e:1b:ee:
00:70:f8:d5:55:45:92:39:80:c8:ee:b8:f6:61:61:d8:54:f7:
17:57:6b:16:72:e6:3d:7d:33:a1:77:b5:f0:22:3d:b7:0c:52:
b5:c0:c5:38:35:76:51:5e:f9:aa:49:fc:f8:dd:3e:a9:66:85:
1d:9c:2a:28:f8:4f:80:be:a6:a6:17:fb:c8:88:68:92:08:f4:
b0:92:33:e8:ad:9b:5a:47:d3:2a:ea:ba:3c:4a:ed:89:70:26:
fb:4a:22:14:92:13:c3:d8:60:fd:86:d7:74:d1:63:75:6b:8b:
a6:4c:8e:88:23:0f:4c:05:25:c8:86:51:c2:c4:2e:ee:25:b2:
07:f0:41:c7:55:19:90:4b:9a:c8:a7:e8:11:fa:30:f8:88:cc:
bc:f5:8f:68:7f:cf:56:2c:0e:36:7e:18:ae:ca:46:8d:30:87:
60:59:c3:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:18:29 2026 by rpki-client