Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
File: XasLCOUfgYIkYp-zohHYPVvjVEA.mft (raw, json)
Hash identifier: zoRaPEqnkpGoGOr3aIoOn3L/eX899L7M1wHAhMVULIU=
Subject key identifier: 2B:1D:36:11:6E:A1:A4:0F:A5:C9:E7:44:03:03:AD:96:59:E1:52:8A
Authority key identifier: 5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
Certificate issuer: /CN=5dab0b08e51f818224629fb3a211d83d5be35440
Certificate serial: 019D98BD8C3E66F486A87A25277EE74732EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
Manifest number: 16CF
Signing time: Fri 17 Apr 2026 00:00:51 +0000
Manifest this update: Fri 17 Apr 2026 00:00:51 +0000
Manifest next update: Sat 18 Apr 2026 00:00:51 +0000
Files and hashes: 1: HdxQx8q8ZBcZded3E8nmTrSkgmE.roa (hash: me4VXnxn0oOOrXZ4tjj+/iKQpTq2YIw30gSY0JjN42A=)
2: XasLCOUfgYIkYp-zohHYPVvjVEA.crl (hash: mDu2Wmy1RP1EKYbDfut8JxeoXQ+tPBPWKNj2iXp6oS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:8c:3e:66:f4:86:a8:7a:25:27:7e:e7:47:32:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dab0b08e51f818224629fb3a211d83d5be35440
Validity
Not Before: Apr 17 00:00:51 2026 GMT
Not After : Apr 18 00:00:51 2026 GMT
Subject: CN=2b1d36116ea1a40fa5c9e7440303ad9659e1528a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b8:e6:b6:fb:1c:27:93:e6:18:90:e0:9a:9e:
09:dc:41:e0:cb:83:ec:5a:89:7d:b9:14:fb:26:6b:
a8:5e:dc:ea:0e:11:87:87:7b:b4:a8:92:70:d6:7f:
05:d0:ad:f0:0b:83:1a:78:57:e3:91:df:51:1c:9d:
fc:94:f4:9b:5c:80:ce:b6:b4:b9:15:3b:a3:18:db:
20:25:9a:e4:49:20:1f:93:0c:a2:e6:38:9d:45:51:
43:e2:34:97:41:2f:66:66:04:b5:af:82:d2:92:32:
67:6d:75:20:d5:bd:ec:6c:9d:5b:09:8d:ec:fd:8b:
0a:05:25:7c:08:98:4d:3e:51:e8:d5:da:20:dd:c3:
19:32:18:c9:73:d6:93:ca:09:2e:00:35:18:73:9a:
5a:03:36:33:46:21:0f:43:33:62:86:29:01:16:4a:
63:a9:62:3d:38:13:be:c8:02:48:88:5e:aa:49:22:
03:23:25:2b:81:79:2a:fd:58:68:8c:a8:39:f5:7a:
9f:81:fb:e6:17:d2:05:ec:b7:b7:4f:59:be:df:7c:
38:fb:62:b5:b5:59:45:50:96:8b:15:98:86:02:99:
d9:a0:05:e3:16:e9:c6:0e:af:3c:b4:83:3a:22:20:
dc:31:1f:a7:26:53:d6:43:ac:c1:a5:e2:de:fe:e8:
95:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1D:36:11:6E:A1:A4:0F:A5:C9:E7:44:03:03:AD:96:59:E1:52:8A
X509v3 Authority Key Identifier:
keyid:5D:AB:0B:08:E5:1F:81:82:24:62:9F:B3:A2:11:D8:3D:5B:E3:54:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XasLCOUfgYIkYp-zohHYPVvjVEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e62089-b98a-4fdd-9c4e-62789182a0f3/1/XasLCOUfgYIkYp-zohHYPVvjVEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:6f:c7:5d:38:02:46:72:21:79:2b:f5:8b:1c:49:f7:f4:e7:
ee:67:8a:a1:a2:42:03:04:6e:2a:57:9d:0b:c6:4a:ac:4b:17:
bc:59:3c:74:1f:1e:ed:12:27:82:e9:e0:78:c8:02:a9:a2:e9:
d7:46:28:05:b4:4e:2b:47:3c:9c:cb:7b:83:3e:8e:e3:30:7c:
8e:5d:95:ca:64:09:38:19:42:34:19:0b:23:37:cc:23:be:3a:
e1:00:5a:0f:fd:23:dd:44:62:f9:02:e4:cc:69:13:65:b4:4f:
56:09:85:ab:2e:41:e1:34:cb:78:cb:46:16:85:bc:c8:64:48:
84:f9:f2:08:44:ee:2e:1c:bb:25:f7:ec:b9:22:af:30:93:ca:
ff:00:a6:2d:ff:10:7f:42:76:33:54:a9:cd:3e:7f:7d:72:bf:
d0:11:ce:75:bc:4e:99:40:4a:b9:ab:05:5c:a0:eb:bb:7f:52:
9d:8d:bd:8a:e3:9d:7d:28:e2:6c:e6:17:b4:89:2e:1a:72:be:
9b:e0:eb:27:d7:53:05:3e:35:10:d5:2a:6a:32:be:1b:7a:75:
8a:40:10:bb:a3:43:1e:cb:4b:52:59:d7:eb:e8:50:05:16:ef:
b8:93:de:81:45:7c:64:e4:22:fc:4d:c8:8e:1d:f5:0b:d8:4f:
6a:8e:b7:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:49:09 2026 by rpki-client