Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
File: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft (raw, json)
Hash identifier: 6evwo2yBU3dCI11xxqfCPRWmR02MZkZBsNnLWYJxxiI=
Subject key identifier: 15:1B:C9:DC:28:F0:1A:FF:41:B1:A2:C0:25:C4:D0:B6:32:24:F7:A5
Authority key identifier: 5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
Certificate issuer: /CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Certificate serial: 019DA340CC620B13053BE4EC8D1609314D1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
Manifest number: 1384
Signing time: Sun 19 Apr 2026 01:00:25 +0000
Manifest this update: Sun 19 Apr 2026 01:00:25 +0000
Manifest next update: Mon 20 Apr 2026 01:00:25 +0000
Files and hashes: 1: Q2eq3vQ27LdqIhXEwPYKtKFxrj8.roa (hash: w/CxsU35XsDW4qiiMK3VW7xr1QGFT3WBU9iNjApYbmk=)
2: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl (hash: QqM63nJ/vklCLQ/NdMvN5q+WgUuZsNgeF9/RD0GqCYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:40:cc:62:0b:13:05:3b:e4:ec:8d:16:09:31:4d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Validity
Not Before: Apr 19 01:00:25 2026 GMT
Not After : Apr 20 01:00:25 2026 GMT
Subject: CN=151bc9dc28f01aff41b1a2c025c4d0b63224f7a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:5c:57:03:1a:29:0d:a7:95:35:8a:b4:8f:6f:
b8:07:68:c2:9b:36:bb:bb:2b:f8:b2:0f:ff:3c:db:
46:dd:49:48:09:62:3b:d3:01:8c:ea:1f:66:ac:75:
8a:e7:7e:de:aa:74:3a:d2:b6:d0:9a:50:73:f9:f5:
1f:ca:e7:64:64:eb:e7:f6:39:9d:c6:4f:3f:b1:7e:
ed:0c:ce:74:23:5b:db:e3:f1:62:ab:4a:d1:f2:50:
b8:2a:3f:df:ee:05:13:17:78:20:1e:73:19:44:27:
58:22:ff:cc:45:ac:2d:35:b0:b0:db:ed:1c:cd:1c:
49:ce:39:78:bc:4a:c1:af:4e:2b:b8:92:a3:7e:ca:
17:6a:15:bf:0d:c0:2f:dc:60:6a:b4:23:4d:81:07:
aa:df:2b:08:f5:11:2c:55:d7:8a:64:8f:63:21:4c:
a7:3a:fa:16:5b:fd:55:be:69:68:ea:d2:f5:c6:ba:
da:ec:94:12:43:69:8a:05:0c:52:4e:50:93:ba:86:
1a:ee:1f:af:ed:64:88:53:53:89:49:da:e4:29:6e:
e1:ab:01:9f:35:1f:6a:fe:38:2a:7e:9b:3c:ea:ca:
2d:4d:bc:4f:d6:ad:9a:2b:97:88:56:8f:b1:46:5f:
36:ce:96:48:be:b8:64:bf:f6:41:d9:d8:0a:f2:21:
8f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:1B:C9:DC:28:F0:1A:FF:41:B1:A2:C0:25:C4:D0:B6:32:24:F7:A5
X509v3 Authority Key Identifier:
keyid:5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:eb:a1:76:93:f3:2a:a7:f2:a8:fe:83:c1:a7:04:3e:a3:a0:
e4:66:84:51:26:3e:4f:28:0b:2b:ed:10:a3:59:80:ec:46:bc:
05:16:bc:a3:de:b9:19:f7:09:5f:ea:fe:aa:ad:31:27:65:0b:
2c:09:3e:4f:82:a9:9f:e5:e3:8d:3b:38:fc:6c:74:9c:b2:5e:
42:bd:71:f9:a8:ec:00:56:08:5d:49:7b:0c:b2:b3:eb:95:3e:
cc:a0:e6:37:ee:02:a9:af:44:89:4b:d5:eb:0a:90:d8:ee:ba:
ce:15:8d:41:56:bb:97:3c:fd:4d:1b:c2:88:8d:4c:e6:72:c3:
8a:e3:f7:37:54:a2:ed:9b:19:d5:23:18:82:42:ef:76:eb:cb:
ba:f7:16:e7:4e:f3:48:d5:4e:f0:00:90:2b:5d:a6:90:03:96:
0c:b5:6b:1e:51:2f:92:48:7b:d4:b8:33:44:30:1c:74:94:76:
9a:2c:96:32:31:2e:6c:46:84:9c:d6:ea:fd:55:59:ca:a9:8f:
4d:9b:3b:a5:f1:6c:70:4e:6b:a0:ee:f1:1e:d0:f9:ac:eb:21:
d6:57:fc:84:eb:c7:e2:3d:b9:38:1c:be:a4:7a:fe:c2:96:51:
b0:b8:74:4f:3b:07:0f:74:c1:7d:13:47:4f:0b:38:10:e1:1a:
f0:7d:9b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:28:29 2026 by rpki-client