Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json)
Hash identifier: OI+zQZmrI34JfyYj+EzO4OiY/iuuMhdGgCH7HLzR0oM=
Subject key identifier: 04:29:8B:3D:BF:14:51:7C:66:78:FF:00:70:7A:AC:D8:16:21:78:A6
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 019CAC477ACB83F2B3B82E5D15FBD412E53D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 02:01:31 +0000
Manifest this update: Mon 02 Mar 2026 02:01:31 +0000
Manifest next update: Tue 03 Mar 2026 02:01:31 +0000
Files and hashes: 1: OS8EDWL74n3CtFxmTxNOolYhsvA.roa (hash: yF17P4v/AdaI5VNNKOl9FtUJuOAbQSvTKgj5Ha/kk7s=)
2: RrlPj_5PMLmauOZbV-XxFE0jClU.roa (hash: +JGjuqCo+HgEGZGs0mkuqnIL4NPJWqKMaUK/A5KXgqw=)
3: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: Mj8HYsVuVIX0ctJHlji3xTqGdnl2oh28jim5iW8DFzk=)
4: dL_9twvmgLzMs895oA64iiDmIEY.roa (hash: LgJcVms5Pq7JFZ8+OO+s5X+XVI8uKF8XIm98bwsR7Lk=)
5: m_016GliLd1us5Dyp3gWd_9XmZU.roa (hash: NGfX/rkS6vQZZNfEtGY8uwL12Vk9X/AaXVk/NGit2hQ=)
6: wEd_ihwz_Sc9Z7253Egu-wb4rYs.roa (hash: JaUYZqefug6H01TWJts1HEcFIA5lKpx4F7+av5F+33Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:7a:cb:83:f2:b3:b8:2e:5d:15:fb:d4:12:e5:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Mar 2 02:01:31 2026 GMT
Not After : Mar 3 02:01:31 2026 GMT
Subject: CN=04298b3dbf14517c6678ff00707aacd8162178a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:42:31:87:79:84:85:db:e9:86:d1:5c:12:61:
35:13:84:71:2e:f4:bf:bf:6b:80:77:8f:3e:26:f6:
63:26:4c:5f:53:d4:99:19:82:5f:13:b9:24:9b:4a:
8d:79:fe:de:d8:9d:07:e4:9e:9c:91:08:10:20:f5:
0e:39:e0:b2:1e:fe:b4:c5:d5:50:be:6e:8c:93:36:
ad:76:f0:63:c0:a3:bd:7d:fb:ae:ed:d2:ad:fd:28:
b6:de:b1:75:c8:34:d3:0f:6b:d2:4c:14:87:1f:ca:
84:1f:1a:97:bf:60:cd:76:6d:44:4b:1a:b9:cf:fc:
37:6e:98:ce:c5:f7:c0:70:f5:28:8f:f6:95:7a:7c:
ae:a1:08:53:2b:e9:f5:ce:b7:99:ed:f4:6e:30:31:
4b:ea:6f:50:cb:51:a3:ba:53:a5:ef:d7:23:6d:6f:
cd:08:07:41:f9:d1:f7:53:09:3a:55:b3:b2:db:87:
f5:33:d1:59:e9:ca:45:f7:d6:15:cd:c2:8c:44:c6:
a9:3a:a9:10:25:f3:0f:5a:52:b0:73:5a:f6:60:ea:
7e:9d:d0:3a:93:98:88:50:3a:fd:39:57:0e:03:fa:
f9:08:25:f1:11:7d:be:30:f0:d3:44:46:8e:cf:12:
8e:23:3a:9d:04:a0:d8:58:4a:46:f9:08:f7:89:54:
d9:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:29:8B:3D:BF:14:51:7C:66:78:FF:00:70:7A:AC:D8:16:21:78:A6
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:52:a3:e7:a0:37:6c:10:39:bd:58:e0:80:b3:db:07:ce:a2:
fb:b9:d4:68:3a:7d:cd:5a:f4:de:3c:c5:06:4d:bb:17:7b:41:
71:5d:01:98:52:3a:40:c1:a9:05:91:bb:26:8b:83:91:04:62:
9e:c4:44:08:70:cf:4a:43:1d:d6:9e:e6:dc:e0:82:23:81:91:
8a:72:11:11:69:73:f4:b4:7b:e0:90:59:c8:b1:91:6a:ac:6c:
71:9a:b4:82:06:da:55:09:94:cc:b6:50:ca:86:c2:9e:bd:3e:
65:13:b8:12:55:c9:0b:b6:da:c0:f8:bc:23:35:03:71:b1:8a:
00:e4:ca:28:cc:da:9e:fa:92:cc:18:6b:74:20:10:01:d4:fc:
9d:4b:0b:c6:c4:28:5d:48:0c:bd:f3:06:e1:7a:ce:d4:5b:b5:
6b:b0:d0:9a:f1:d1:20:cf:a7:ce:46:92:6c:84:99:d8:fb:fd:
26:bc:e0:97:66:49:64:b6:f4:03:f9:36:bd:70:6b:ed:8b:df:
6a:bd:bc:83:9a:5f:d8:f9:0f:df:9c:96:bd:4f:cb:6f:11:6c:
f3:6a:d7:1f:80:b6:fe:f8:fe:3b:65:bb:9d:c4:74:dd:a1:7b:
a5:cf:fd:a4:03:3d:50:f1:54:b8:94:fb:55:d4:0c:79:77:37:
0d:04:47:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:49:56 2026 by rpki-client