Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: HyDWagNInhgishrmIm0e0k0NI22COVWFY9ChO2Ide9w=
Subject key identifier: 59:06:AA:0E:71:D1:70:6F:10:A1:81:08:F9:DE:8E:A5:10:A2:E9:4C
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 019D981878EB7A1F893C304B7C31198D3C88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 18BD
Signing time: Thu 16 Apr 2026 21:00:33 +0000
Manifest this update: Thu 16 Apr 2026 21:00:33 +0000
Manifest next update: Fri 17 Apr 2026 21:00:33 +0000
Files and hashes: 1: sesfpS4vflQUJ0zHNMlqdR_eVFI.roa (hash: EeKCakHwf9lALKZ5zNCtLbT5f2osgE69W3ufAPv/OQY=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: 9pgfbXcLhmOl4RTOex71CRvWOa1Co9mCHp31g5+O7H4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:78:eb:7a:1f:89:3c:30:4b:7c:31:19:8d:3c:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Apr 16 21:00:33 2026 GMT
Not After : Apr 17 21:00:33 2026 GMT
Subject: CN=5906aa0e71d1706f10a18108f9de8ea510a2e94c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e6:6c:0d:d9:34:19:e8:94:d4:0f:88:ee:98:
e7:b7:76:84:04:b9:b0:b0:05:6b:ab:50:b0:c9:63:
52:b5:a3:a2:e7:fa:fc:75:f0:fe:9c:b7:1b:9b:ef:
9f:1f:f6:56:00:07:0e:6a:dc:13:cc:b3:19:1f:d9:
36:7e:00:a8:f5:98:83:17:e1:f7:c2:d2:ae:82:60:
a5:a1:06:52:52:15:5d:87:43:d8:19:bc:54:87:7d:
78:b4:f8:3c:83:f3:f0:ab:3e:45:6d:ea:b8:d0:19:
96:1f:6c:65:c0:6c:72:89:e5:f4:24:e9:1b:92:ae:
00:d3:30:88:3b:dd:19:da:3e:0d:59:8b:81:c5:af:
66:16:ae:94:34:58:74:46:11:7c:2d:cb:9b:6d:75:
e8:f4:62:96:3c:8e:75:a1:49:e1:e5:b2:90:4b:7e:
eb:87:a9:08:49:62:9d:ad:31:bd:f7:8d:b4:3e:74:
98:47:5c:01:a1:37:95:88:f9:4f:91:6e:cf:f4:c0:
c2:b1:a2:fd:69:3d:4a:7d:45:7e:ad:0e:3d:9a:d6:
a4:36:5c:08:9a:2b:6c:79:29:25:93:20:ad:2b:55:
10:30:b9:4f:7d:de:08:ba:11:10:6a:d4:5e:a0:47:
6e:85:9e:ae:47:b5:5c:c9:c5:b7:e8:3e:78:f6:91:
c1:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:06:AA:0E:71:D1:70:6F:10:A1:81:08:F9:DE:8E:A5:10:A2:E9:4C
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:c7:b3:13:18:eb:e3:d3:a2:1c:a2:03:41:7b:c9:ce:4b:90:
c4:b3:59:8b:3d:9f:35:ef:af:bf:aa:e9:d3:a7:c4:0f:30:db:
b7:02:99:e1:a4:61:dd:61:7f:d0:2e:8e:0b:e9:74:77:b4:60:
33:2d:b2:7a:25:c9:ed:40:0b:15:c0:cf:3f:f6:17:7f:38:68:
98:cd:f3:02:9d:a0:83:bd:9f:b0:81:61:f1:9a:38:33:cb:07:
e9:34:40:04:63:fd:01:35:5e:49:49:52:05:8a:a7:7a:50:44:
27:5a:a8:e6:f9:93:ba:e3:e0:f7:db:c3:7b:b0:06:fd:03:7c:
76:71:d7:7a:64:06:6f:b2:c8:03:59:d1:2f:e6:85:7f:bd:cb:
ac:02:ab:33:96:c2:52:6e:61:38:04:08:1c:ea:26:c2:52:66:
d3:8f:83:5f:db:14:70:1f:b3:08:91:23:3c:d0:41:1f:b8:50:
01:8f:00:bf:fd:2b:f9:5d:1d:fb:d6:0f:a6:69:41:4f:94:fe:
7c:ad:75:78:c9:1e:6e:ac:da:b0:ce:06:d9:c7:5a:b9:f0:e6:
c8:ea:99:c5:a4:9d:b2:48:38:5d:ae:29:91:a8:13:3e:83:63:
b0:ae:37:08:1c:be:f5:29:a1:8a:99:3b:3a:ec:40:c4:c7:f2:
eb:35:9d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:52:59 2026 by rpki-client