Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
File: xw2_VVhwtVas-rQox06s7lb3siI.mft (raw, json)
Hash identifier: eoNBM7NQS0wg0fma3iewGYdF2X5/2tDwqskcfpLwWYY=
Subject key identifier: 1A:16:08:56:82:2A:88:95:8F:26:12:C1:D7:95:69:A9:DF:8A:2D:33
Authority key identifier: C7:0D:BF:55:58:70:B5:56:AC:FA:B4:28:C7:4E:AC:EE:56:F7:B2:22
Certificate issuer: /CN=c70dbf555870b556acfab428c74eacee56f7b222
Certificate serial: 019D9D3EA5A661804DBB891B77EE3C7828B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
Manifest number: 18C5
Signing time: Fri 17 Apr 2026 21:00:21 +0000
Manifest this update: Fri 17 Apr 2026 21:00:21 +0000
Manifest next update: Sat 18 Apr 2026 21:00:21 +0000
Files and hashes: 1: UVWbdtgMtPSlXPD-ljLhVUXQTLI.roa (hash: 0y9dv3rbyul1H/gRs5dF3tqgdi9jkPTntAurTA6guBk=)
2: xw2_VVhwtVas-rQox06s7lb3siI.crl (hash: WindZh//TlgScxt0wBN0TGT07zrRfZ4uAsioA4ptWUw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:3e:a5:a6:61:80:4d:bb:89:1b:77:ee:3c:78:28:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c70dbf555870b556acfab428c74eacee56f7b222
Validity
Not Before: Apr 17 21:00:21 2026 GMT
Not After : Apr 18 21:00:21 2026 GMT
Subject: CN=1a160856822a88958f2612c1d79569a9df8a2d33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:40:43:05:89:b4:72:1e:b1:db:42:ae:76:84:
ef:20:22:98:b5:60:27:b5:d1:81:b9:a1:bc:36:14:
02:ef:29:37:c5:00:cf:3f:90:d2:ee:9e:9c:51:bd:
5c:f0:a1:f3:01:27:f9:e5:cb:c0:4e:65:1d:c1:a9:
27:1c:b4:56:f7:e9:d4:37:f2:7e:20:d1:fa:a8:f2:
ce:13:3f:3b:62:8f:df:a4:fc:48:1c:6b:14:04:71:
d0:18:ca:14:ff:f0:2e:85:23:ad:71:f2:ed:31:4c:
cd:b5:cd:2d:49:41:2e:ac:a5:f5:09:d6:1a:b6:de:
06:78:f2:67:50:f1:ce:1e:f6:96:14:ea:41:67:4a:
1f:bb:72:98:a9:60:ee:3b:6e:56:91:59:47:76:d3:
aa:bc:44:83:93:b7:20:b6:51:a2:2c:e7:8f:10:57:
61:59:2b:50:87:2e:6f:e9:42:0a:02:7b:ec:57:c5:
52:8f:38:d3:b3:9f:a3:d1:a0:09:dc:ef:d9:58:98:
5d:cf:a3:e5:63:c1:06:9b:a7:7e:e2:86:f6:b6:ae:
f2:32:e6:5d:17:c9:e7:e0:2c:8d:26:f9:da:16:82:
c1:14:9a:3b:47:c1:ca:b3:93:58:d4:13:3e:29:79:
51:8a:af:ea:e1:23:de:41:97:ad:d8:f7:e2:40:65:
90:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:16:08:56:82:2A:88:95:8F:26:12:C1:D7:95:69:A9:DF:8A:2D:33
X509v3 Authority Key Identifier:
keyid:C7:0D:BF:55:58:70:B5:56:AC:FA:B4:28:C7:4E:AC:EE:56:F7:B2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xw2_VVhwtVas-rQox06s7lb3siI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/582b7f-60c3-411a-9625-32da1db4b203/1/xw2_VVhwtVas-rQox06s7lb3siI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:11:0a:87:15:24:a7:71:9a:bf:74:8c:09:6f:93:69:47:65:
30:b7:85:27:4c:09:46:01:4e:a8:4c:a8:f5:30:ab:ce:6f:3a:
83:98:08:0f:5d:12:fd:4e:97:7c:93:d7:7e:62:cc:33:d8:bf:
64:89:48:2d:44:10:2f:5f:29:87:21:81:88:6f:82:9a:a9:2f:
8b:32:ff:5a:16:4f:24:f0:27:a0:1b:2d:25:4e:ed:70:1e:c7:
9a:38:4f:cc:6b:8e:5c:30:a5:c2:44:6b:55:11:b0:4d:65:67:
f7:41:ad:47:a0:a8:d2:3d:73:2c:ba:27:18:92:0d:8d:21:bc:
5d:2f:86:39:63:92:72:90:98:c5:62:c7:29:d4:b0:37:d1:df:
98:a3:b8:6a:7d:e2:fb:db:a7:e9:6e:c3:fa:c1:09:3a:07:eb:
41:40:15:5f:f7:dc:2c:0d:16:ab:af:4b:7b:41:8e:c9:e2:7c:
91:75:0f:0a:2a:84:89:0f:b4:f3:b9:01:fc:c2:17:c1:18:cb:
76:ce:fd:fd:a2:c1:78:f7:4c:39:c2:64:d6:b8:d5:c8:92:63:
5d:fe:45:28:78:66:0b:50:cf:5f:b9:73:13:8d:c3:62:f4:6a:
b4:1b:1d:26:60:3a:6b:6b:94:9c:ac:1f:4e:05:49:b1:74:75:
dd:85:09:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:05:58 2026 by rpki-client