Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
File: cxkAeiit4HgdMS2NSUcts2dnBBY.mft (raw, json)
Hash identifier: OtAgYtI4c5z0HteVdNTQ2qW4LRONvYhI7kIOVnBQDPc=
Subject key identifier: AB:39:8C:00:62:2E:27:2A:9F:B0:D2:4D:37:30:46:2E:E0:BA:53:C7
Authority key identifier: 73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
Certificate issuer: /CN=7319007a28ade0781d312d8d49472db367670416
Certificate serial: 019EC593CF6B6B867861281F1A311E1BE4BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
Manifest number: 0BD9
Signing time: Sun 14 Jun 2026 10:00:58 +0000
Manifest this update: Sun 14 Jun 2026 10:00:58 +0000
Manifest next update: Mon 15 Jun 2026 10:00:58 +0000
Files and hashes: 1: Le8K7qSkEZ1_FmI_JNvcQwDT3kM.roa (hash: YPGYe40UQA7fHzeXPlUUiQ7ZZraM1bL1CPz1T+qTDdY=)
2: cxkAeiit4HgdMS2NSUcts2dnBBY.crl (hash: uNnhnAcHDaGI2sotg3Wop2zATyeLiUWIfNMiKcuD+UE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 04:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c5:93:cf:6b:6b:86:78:61:28:1f:1a:31:1e:1b:e4:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7319007a28ade0781d312d8d49472db367670416
Validity
Not Before: Jun 14 10:00:58 2026 GMT
Not After : Jun 15 10:00:58 2026 GMT
Subject: CN=ab398c00622e272a9fb0d24d3730462ee0ba53c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:64:e6:3d:b1:16:b0:ac:74:12:f0:08:51:7d:
1b:a5:3d:f4:5d:ca:4c:aa:19:ea:3d:03:8f:f4:03:
35:d4:29:78:1a:6a:a8:57:98:bc:ff:e8:ea:b6:f0:
88:8c:c1:5d:b7:7b:fb:69:76:cf:83:c2:c4:e1:41:
3e:b6:f7:59:64:0d:0e:69:90:d5:39:88:23:78:ff:
2c:75:2a:77:7a:be:41:0e:c1:fc:e1:48:24:42:b4:
62:ed:7a:09:2f:4d:f8:de:e4:78:dd:c1:5e:a4:88:
b6:78:26:da:ef:bc:f4:8a:69:62:1f:8d:b3:46:08:
05:4f:06:41:36:a9:65:e6:ae:26:f4:66:d1:76:16:
e6:7f:e7:15:dd:f6:c3:d5:12:c5:21:7a:af:e0:31:
7f:c6:c7:4c:f7:f6:12:23:6b:69:8b:57:50:72:36:
89:82:12:4f:99:b5:69:4a:2c:a3:e0:86:d6:3d:96:
5c:31:6d:b7:84:bb:a6:a5:9d:07:91:20:74:17:fc:
5e:72:dd:fa:e8:f1:ac:5c:fd:4b:14:c3:6b:9c:a0:
2c:0c:8d:9e:a6:af:e4:05:4d:e1:15:2e:fd:42:46:
9c:e9:3e:4b:b5:a6:0a:88:3c:c4:e8:30:31:9f:71:
ac:a8:fd:eb:a1:91:21:f4:2e:08:b9:9a:97:36:b7:
95:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:39:8C:00:62:2E:27:2A:9F:B0:D2:4D:37:30:46:2E:E0:BA:53:C7
X509v3 Authority Key Identifier:
keyid:73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:ad:76:fe:b2:31:5a:35:30:20:ef:02:73:cc:b5:d5:90:95:
11:5b:f7:92:50:14:c7:b3:ca:8c:8a:50:9c:2b:7e:12:86:81:
29:47:94:d7:37:2e:79:80:4f:d9:f7:48:60:dc:d1:20:25:e4:
e1:c4:f3:13:f1:0f:7d:6f:d6:c4:8a:03:94:08:6f:3d:eb:7a:
8a:b6:3e:5d:34:1b:29:05:95:85:8e:23:17:3f:bd:1e:b1:47:
b0:69:06:16:90:be:82:55:2f:21:74:85:fe:59:66:19:8e:e3:
40:2f:74:ce:ee:37:30:b2:58:00:d2:27:60:2a:a2:fc:67:0a:
3c:54:09:c2:43:1e:bf:9f:46:d8:0c:a6:e9:a1:c7:bd:f0:03:
76:03:45:bb:5c:f4:ef:56:84:03:57:d6:9f:da:05:21:dc:ba:
98:90:da:1b:ba:7c:5b:6c:2e:3c:a7:63:70:8f:65:fb:ac:e0:
62:52:cd:94:ea:31:a6:f8:ae:e7:55:1f:df:8e:5f:20:a5:a1:
28:d3:76:b1:e8:5f:53:a6:78:2d:ad:43:2a:06:df:da:13:80:
76:fb:db:5b:8d:5b:ec:23:71:95:8f:fe:7d:44:e4:e2:a4:a6:
28:b2:80:68:31:26:e7:69:ea:14:26:5d:ba:15:bb:05:3e:1e:
b5:7d:e8:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 13:54:10 2026 by rpki-client