Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: LKcJSXyZVcLmczphltkpOj2hTpb1+lBuIB6Y4FlcjNg=
Subject key identifier: A1:89:62:37:A5:10:31:99:56:86:86:62:5D:CA:C4:82:A2:B0:83:E1
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 019D9818DAD55E341446CFBF460D1E45E1B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 1605
Signing time: Thu 16 Apr 2026 21:00:58 +0000
Manifest this update: Thu 16 Apr 2026 21:00:58 +0000
Manifest next update: Fri 17 Apr 2026 21:00:58 +0000
Files and hashes: 1: 5bGOVGgpUSjx1uwMkRS9oqXlCJM.roa (hash: gEd4SfTflxW3Gsgz2afT2mctC6KsEwsMe5axMz0injA=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: KYSCAhbSXOCjd/iIeCEVgixWVXKMrk2k2mqkIBhAfAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:da:d5:5e:34:14:46:cf:bf:46:0d:1e:45:e1:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: Apr 16 21:00:58 2026 GMT
Not After : Apr 17 21:00:58 2026 GMT
Subject: CN=a1896237a5103199568686625dcac482a2b083e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:89:7f:9d:ae:85:b0:27:9f:cd:6a:6b:09:84:
d6:e5:61:ef:61:02:83:69:66:76:af:44:00:17:d4:
e1:51:0f:fe:37:63:d0:94:1d:a8:79:db:22:9f:6f:
d3:02:e1:ae:08:16:0b:4b:eb:c0:c7:a2:47:65:80:
4f:4a:cb:08:8f:84:ae:dc:7a:d0:bb:ea:f4:cb:e9:
9a:6c:c8:4c:dc:30:b4:64:03:f1:ba:98:ff:9e:af:
66:ce:a8:f7:42:8d:23:8f:e0:82:66:27:60:fa:82:
1e:52:27:a4:f2:ae:05:c6:52:47:53:d4:71:43:0d:
cf:c2:30:5b:10:7e:90:da:c0:b8:ae:0f:79:1c:44:
cb:1a:3f:76:40:f7:80:3b:09:16:41:be:94:2f:51:
83:0e:8b:0c:1c:c9:7b:6e:4b:44:73:50:92:be:9e:
ff:8b:af:bd:76:d2:b2:82:d3:95:c5:a2:29:98:21:
69:a6:d1:25:95:d9:09:56:f8:5b:9e:3f:26:c3:05:
10:27:76:aa:85:5e:18:68:8b:2e:1d:5e:1b:8e:bf:
03:89:91:7d:66:e2:92:b2:36:9b:5a:48:79:ee:78:
48:5e:1d:1a:da:de:64:94:af:94:7d:7a:72:d0:91:
57:73:c4:4a:df:28:f3:f3:87:ff:74:01:af:75:87:
cf:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:89:62:37:A5:10:31:99:56:86:86:62:5D:CA:C4:82:A2:B0:83:E1
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:83:55:70:c2:fe:b4:b7:79:d3:58:64:3c:0a:fc:6c:6b:60:
a9:d5:49:05:04:f8:16:01:3c:6f:5e:75:f6:d7:bc:26:38:5e:
75:a6:20:50:70:a5:59:8e:47:1f:e4:7c:d4:d8:74:4d:0b:f2:
93:00:c6:af:db:c7:cd:b7:e5:82:37:57:4d:cd:d2:ac:d8:8c:
5d:60:62:e9:58:15:07:e9:d2:04:53:61:1d:80:6f:ca:b5:b4:
fd:d5:23:61:af:e3:73:ca:0a:5f:e8:ef:29:7c:9b:46:12:d1:
ee:40:b6:02:01:04:36:c8:5b:79:18:86:d5:af:05:56:d2:c4:
51:8c:48:cf:35:24:bf:a8:a1:48:bd:4a:81:b8:24:37:74:f6:
92:4a:ec:c6:14:da:82:d5:8f:c4:09:7f:e9:e9:c9:db:06:1c:
6a:d5:4c:5e:86:fc:4d:c6:0c:8f:d7:34:35:21:7d:92:4e:03:
c2:0c:b2:69:dc:56:99:1a:de:cb:00:0b:4c:6b:fe:2b:ea:26:
a8:7c:fb:73:42:49:3e:67:1d:7c:5a:41:c4:d9:28:3d:38:90:
0b:2f:21:9d:a3:87:4e:76:36:2b:cd:b7:40:3f:42:70:3a:43:
97:99:b1:35:26:2e:c3:23:a4:b2:13:83:b6:9f:2d:dd:74:2d:
11:db:8b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:19:31 2026 by rpki-client