Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
File: xtEbZP_hjvpC9DpsdlY53uONAn4.mft (raw, json)
Hash identifier: 7F1+MNWGIa0yHZDlqEuIPpkAG6uFF1XYjKmuPdeIgfM=
Subject key identifier: 15:9D:11:C4:72:BC:47:F4:F6:F8:AE:0C:05:1F:D5:D0:66:91:0A:12
Authority key identifier: C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
Certificate issuer: /CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Certificate serial: 019DA37871A4C07BCABF19930C372A350856
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
Manifest number: 114E
Signing time: Sun 19 Apr 2026 02:01:12 +0000
Manifest this update: Sun 19 Apr 2026 02:01:12 +0000
Manifest next update: Mon 20 Apr 2026 02:01:12 +0000
Files and hashes: 1: 1HMsGfdsMj6bVCe_HqSPHKmPGQA.roa (hash: Aa+3horScinkb91IcV06nuOTEkzdcEAPUq8TBlQGMDg=)
2: Q6q5ifTmogwJicn2e4z2f5_1UN8.roa (hash: ZCT+LPivkmFqXHHIYRE3kEHzKOk9mVM2bvW0OtpppFg=)
3: xtEbZP_hjvpC9DpsdlY53uONAn4.crl (hash: Itjc01dL0TXs7Kemfd8HZI3UoiB+s1NMViRR4ALGLt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:71:a4:c0:7b:ca:bf:19:93:0c:37:2a:35:08:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Validity
Not Before: Apr 19 02:01:12 2026 GMT
Not After : Apr 20 02:01:12 2026 GMT
Subject: CN=159d11c472bc47f4f6f8ae0c051fd5d066910a12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d0:2a:b4:50:12:14:99:06:bc:c0:49:2e:41:
f4:04:66:67:c4:ff:30:8e:2c:9a:30:93:f7:fc:ff:
1f:74:09:44:87:00:f6:d8:47:4a:e4:62:88:5c:66:
fb:c2:6b:f4:e8:09:d1:98:45:35:59:07:97:77:40:
61:81:77:4b:df:65:da:38:48:8f:dc:bc:3d:07:16:
c7:67:55:dc:70:3e:a3:5a:08:b4:5e:ba:15:e6:5f:
23:30:80:91:c6:4b:89:96:db:7a:9e:8c:e7:1a:d0:
d8:7e:7e:37:c6:11:fe:c6:53:ea:80:f6:c3:ff:c5:
e8:49:bc:5c:8f:a3:95:96:b6:96:f9:8c:b8:6b:a5:
02:e0:ca:be:9a:a6:bb:ce:6b:9c:7f:0a:e7:5a:73:
88:2e:87:be:45:fe:3a:8b:69:16:15:16:de:39:c0:
e2:12:4f:1c:43:dd:82:9d:a4:7d:15:1f:fa:3e:77:
d1:37:ed:95:9a:4a:9a:d6:92:59:1b:c3:1e:7b:28:
33:5d:c6:00:91:e3:14:68:da:24:bf:6c:a5:45:21:
a5:2e:d6:ef:62:db:d9:2a:61:92:ca:77:01:41:7c:
2d:ed:67:b9:cf:ae:cb:05:e0:e9:80:f7:c7:65:07:
7b:d1:9c:f0:77:db:9f:6c:05:d1:8b:f5:d2:4a:51:
e0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9D:11:C4:72:BC:47:F4:F6:F8:AE:0C:05:1F:D5:D0:66:91:0A:12
X509v3 Authority Key Identifier:
keyid:C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:1f:12:ff:ec:34:b7:43:8b:91:79:8c:4f:2e:78:d4:ac:4e:
80:a6:0c:b1:42:8e:54:74:23:c7:0c:8f:49:41:d5:fe:f3:c5:
3d:31:35:c7:c3:75:cb:7c:07:3f:35:a8:4c:a6:3f:43:97:c0:
fa:e7:ff:98:ea:d5:6d:d9:d5:94:74:d1:3e:b8:cb:bf:11:d3:
ad:77:9c:2e:1b:8e:a3:30:ab:19:ea:36:16:79:5e:45:d2:67:
3c:51:84:5e:bb:63:cc:ea:dc:af:ec:f8:c3:c1:0d:be:2e:a9:
44:c5:18:4c:2d:4b:3f:71:00:c1:c9:c9:a2:89:32:b2:1f:3e:
a6:fb:93:03:f3:c0:b7:05:cb:a3:db:91:6a:0a:9b:96:04:7c:
09:31:c0:e7:8a:68:1a:3f:87:ab:08:6a:af:c5:c5:b7:a9:04:
b6:73:79:86:42:c9:ef:7a:17:b9:60:33:04:27:83:2a:c0:fc:
c6:0e:45:aa:b6:71:13:a4:b4:12:58:4f:22:78:fd:f1:f0:0b:
e2:e1:bd:68:51:cf:8b:9b:97:9a:9b:a1:fc:21:78:42:10:20:
a5:9a:de:f8:8f:47:1f:81:34:ec:e2:7e:d4:7f:16:17:d0:2c:
bb:74:5e:b9:b1:e9:79:35:89:a3:4a:d2:6e:87:36:c0:bf:60:
10:ec:08:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:51:15 2026 by rpki-client