Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
File: XqFlPhd6opVUAIBcjHW9DWhYOvw.mft (raw, json)
Hash identifier: ePIPc/LtjRurbPC9PInUf57J83ryWm5SSb+KbEbRlkQ=
Subject key identifier: B9:22:6E:F1:EC:9C:B0:DF:78:0C:2C:0F:C2:F2:0B:1E:2E:E8:47:7C
Authority key identifier: 5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC
Certificate issuer: /CN=5ea1653e177aa2955400805c8c75bd0d68583afc
Certificate serial: 019D985089957C6C2F9CFAB07988D43ED161
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
Manifest number: 0D51
Signing time: Thu 16 Apr 2026 22:01:47 +0000
Manifest this update: Thu 16 Apr 2026 22:01:47 +0000
Manifest next update: Fri 17 Apr 2026 22:01:47 +0000
Files and hashes: 1: Cj5zwQGWSYblCJRXKaQKctud0XU.roa (hash: xmUDvaYQWawK9zhBWUIaHZpPsBr12uVNC2m3+pJz1gA=)
2: XqFlPhd6opVUAIBcjHW9DWhYOvw.crl (hash: //7OEAF0bzVKJ6p3Q5RB+TUi/TnkblYj5km3xNZtPJ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:89:95:7c:6c:2f:9c:fa:b0:79:88:d4:3e:d1:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ea1653e177aa2955400805c8c75bd0d68583afc
Validity
Not Before: Apr 16 22:01:47 2026 GMT
Not After : Apr 17 22:01:47 2026 GMT
Subject: CN=b9226ef1ec9cb0df780c2c0fc2f20b1e2ee8477c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:48:d4:c7:88:4f:a7:10:e1:3b:61:76:a7:76:
83:d5:f5:36:0f:f0:39:b5:e4:59:9a:30:ce:2d:35:
9a:71:d8:11:7e:ef:41:ad:44:a7:49:d7:ea:52:05:
61:da:d0:cf:ec:9f:68:e6:63:a6:ef:cc:91:68:71:
25:2c:85:a0:03:85:91:61:03:24:cc:c0:9b:20:3b:
70:20:a6:c9:0a:70:98:6f:45:f3:a4:57:25:72:95:
65:ea:05:89:39:53:78:c9:70:95:3b:16:f0:22:7d:
22:13:a5:aa:cc:86:3e:28:bb:1e:2f:30:bf:41:c9:
98:0e:ba:d3:05:a2:7a:6d:82:04:81:d3:55:67:64:
5c:8e:8b:7d:31:36:97:c0:15:53:46:fd:71:a8:4c:
5b:08:0d:9b:85:f6:dd:de:0e:1e:52:9d:af:ad:21:
8d:fd:ae:f4:85:6d:52:8a:5d:5b:cb:a2:f8:13:e9:
1c:67:ac:cd:c2:25:6f:85:02:ac:cd:d8:60:4e:0e:
2a:22:83:d5:66:b3:cb:f1:f3:c2:9b:67:d3:34:9c:
1f:44:45:80:ef:ec:c3:a4:c0:92:4d:0d:e1:c4:cc:
bf:47:64:f5:a8:ca:0a:bf:80:38:e3:e6:8d:54:b8:
b2:6f:dd:5c:44:4e:86:07:6b:1b:cd:35:94:06:83:
2b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:22:6E:F1:EC:9C:B0:DF:78:0C:2C:0F:C2:F2:0B:1E:2E:E8:47:7C
X509v3 Authority Key Identifier:
keyid:5E:A1:65:3E:17:7A:A2:95:54:00:80:5C:8C:75:BD:0D:68:58:3A:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XqFlPhd6opVUAIBcjHW9DWhYOvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/a4af15-7fdd-45a4-a172-1df8fa20fa9e/1/XqFlPhd6opVUAIBcjHW9DWhYOvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:65:ce:e3:b3:0d:11:ef:82:23:33:83:3c:d6:78:7b:0c:99:
dd:20:21:11:07:72:05:b2:e7:11:23:17:df:7b:3b:8a:ec:4f:
6d:56:40:a6:b2:61:36:10:e1:2b:ae:3e:85:29:f7:3a:c4:2a:
68:a0:8c:76:2a:1a:a1:ee:52:6a:70:81:58:1b:fc:b9:63:7e:
3b:3a:03:0b:29:66:8b:8d:dc:20:71:d1:f8:ce:91:8b:b9:01:
37:83:cd:27:2d:50:4b:d9:45:8c:ef:e4:e8:f7:13:97:55:5a:
2f:3b:7c:59:f4:f1:a4:7d:e0:43:67:af:13:1d:b1:55:40:e0:
92:9f:a9:ea:a2:3d:26:6d:6a:1c:78:a1:2f:3e:60:fb:38:a9:
1e:14:0c:fe:64:11:1c:ba:cb:1f:78:2b:9c:e0:d1:fe:f6:42:
71:cf:73:65:69:24:2e:a3:c1:18:89:ad:51:06:6b:67:4f:ea:
db:1c:70:02:c2:96:18:76:69:73:78:15:be:d4:2d:b8:a6:4e:
67:b4:31:fc:46:ca:e2:0f:84:7a:2a:4a:21:a5:18:4a:44:4d:
c6:df:80:5d:89:5f:31:1a:76:a0:79:d4:38:d4:86:98:92:bc:
a0:94:81:a9:62:00:6b:e4:a3:01:32:25:7c:0f:fa:ce:b1:64:
1e:60:4a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:05:22 2026 by rpki-client