Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: Y1AbeKofCmfv7n9K1WzU0zkSfvNbaeMd+5Y262GYuts=
Subject key identifier: ED:2F:F7:D1:2B:79:3E:77:58:F9:3A:51:7C:3C:48:BE:FD:87:02:F2
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 019EC18008BF398000EBE5C9331422A8ED20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 169F
Signing time: Sat 13 Jun 2026 15:00:53 +0000
Manifest this update: Sat 13 Jun 2026 15:00:53 +0000
Manifest next update: Sun 14 Jun 2026 15:00:53 +0000
Files and hashes: 1: 5bGOVGgpUSjx1uwMkRS9oqXlCJM.roa (hash: gEd4SfTflxW3Gsgz2afT2mctC6KsEwsMe5axMz0injA=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: LKvfnMdX+AGhZT/LlcChr9FoEJBmnnBj6dRoY+JLO4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:80:08:bf:39:80:00:eb:e5:c9:33:14:22:a8:ed:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Jun 13 15:00:53 2026 GMT
Not After : Jun 14 15:00:53 2026 GMT
Subject: CN=ed2ff7d12b793e7758f93a517c3c48befd8702f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bd:27:c1:25:9a:a1:0d:b2:5e:0a:77:96:2a:
69:c2:66:7b:2e:1e:dd:c4:f4:2c:5c:e6:d5:cf:53:
64:97:fd:47:3d:64:8b:56:f8:dd:0b:87:70:1c:8f:
a2:bf:a8:26:0e:27:c1:d4:e4:e2:85:e0:39:50:98:
72:59:82:3c:39:ac:42:76:67:0d:b6:ee:0c:26:71:
2c:86:8e:52:2d:36:ca:b3:f7:e4:9a:1c:35:cc:f0:
09:68:1b:d0:5d:ad:16:74:83:61:1f:58:d8:3f:3b:
48:28:63:69:4a:c9:de:e1:b5:3e:8f:66:db:32:16:
fb:c3:cb:cc:b7:27:e1:90:c1:99:31:45:2e:83:72:
ec:38:b0:7f:a1:97:02:91:03:43:d2:40:7c:7f:0e:
44:f2:f9:8b:99:3d:59:04:c6:f9:b1:72:89:e7:97:
e9:fb:4e:41:59:a7:76:cd:cb:2e:6c:97:15:e9:a3:
b5:fa:2e:f6:7d:87:0a:9d:c2:ad:da:7d:17:1b:48:
ed:43:c7:22:b7:d3:db:53:51:f9:b9:9b:e5:6c:ff:
18:69:66:d5:39:bc:20:05:6e:58:29:eb:c3:9a:29:
c7:76:69:27:d1:b6:65:44:70:e0:c3:02:e6:d9:82:
b9:47:4c:cb:f4:ce:f4:82:9e:ee:bc:58:c1:23:47:
bf:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2F:F7:D1:2B:79:3E:77:58:F9:3A:51:7C:3C:48:BE:FD:87:02:F2
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:0e:de:21:ef:c5:1b:6c:f7:c7:65:0f:07:63:4b:ac:fe:9c:
41:bd:c1:d4:b1:04:5a:da:48:f5:25:ea:07:b7:92:26:e9:00:
32:0e:24:90:3f:d7:e3:47:ec:52:2e:bb:a4:ad:39:61:f9:cc:
70:56:8a:47:59:d9:cb:9e:a5:f8:b1:30:a2:30:a3:3a:8a:f3:
f2:b8:d8:ab:b4:11:5b:7c:51:ca:c5:8d:66:c0:26:d5:5a:44:
ad:0d:31:33:98:ad:d2:78:e5:72:15:7c:c9:d3:c3:8f:9a:ef:
2d:c0:ce:2f:5d:bc:de:4a:bb:d2:b8:e1:f2:40:4b:cf:cb:04:
e3:d1:bf:d3:a2:bc:aa:df:57:f4:74:60:fa:cc:76:1c:4f:ac:
bc:10:57:aa:a6:39:2b:a9:91:03:01:bb:02:8e:c7:ad:5d:ac:
58:76:30:76:9e:31:ca:b5:d5:09:58:f5:5e:20:b9:7a:f9:ea:
fa:e9:27:1c:0e:ac:8e:40:bb:42:cf:13:43:48:95:8a:a3:2f:
32:81:9c:91:01:8b:b6:16:10:fa:85:a6:63:97:d0:f9:46:9d:
e8:7d:4b:4d:a8:46:8f:df:16:d9:c9:bf:2b:0a:bd:fb:a2:7a:
f8:36:72:86:f5:53:6a:c6:e4:28:45:bd:7f:19:df:63:2b:6a:
61:33:2e:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 18:08:52 2026 by rpki-client