Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft
File: XHOCiOHdRuIcmgORGXJEtHjQqyY.mft (raw, json)
Hash identifier: 8skNpi0mLw7tvgChSZC6ognqMhZATND35MQvU2GZgIE=
Subject key identifier: AB:84:73:A9:05:1C:E4:17:4D:A5:32:84:09:63:41:6B:56:E0:0A:41
Authority key identifier: 5C:73:82:88:E1:DD:46:E2:1C:9A:03:91:19:72:44:B4:78:D0:AB:26
Certificate issuer: /CN=5c738288e1dd46e21c9a0391197244b478d0ab26
Certificate serial: 019D9AE38974D299EC6E2AF614B145E67FD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHOCiOHdRuIcmgORGXJEtHjQqyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft
Manifest number: 18BE
Signing time: Fri 17 Apr 2026 10:01:36 +0000
Manifest this update: Fri 17 Apr 2026 10:01:36 +0000
Manifest next update: Sat 18 Apr 2026 10:01:36 +0000
Files and hashes: 1: XHOCiOHdRuIcmgORGXJEtHjQqyY.crl (hash: X7gr4HZJqfOjhJz2d5+EGa6oEFv/2Ar1SKHJMVmc9wU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHOCiOHdRuIcmgORGXJEtHjQqyY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:89:74:d2:99:ec:6e:2a:f6:14:b1:45:e6:7f:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c738288e1dd46e21c9a0391197244b478d0ab26
Validity
Not Before: Apr 17 10:01:36 2026 GMT
Not After : Apr 18 10:01:36 2026 GMT
Subject: CN=ab8473a9051ce4174da532840963416b56e00a41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:82:a8:4a:e3:62:f4:fb:d7:79:1f:15:bc:7a:
26:ca:69:47:2d:2c:c3:33:aa:ee:ed:02:db:69:03:
49:08:75:22:e7:d5:85:f4:80:b3:3f:8d:90:d4:43:
fe:3c:a0:fd:14:3b:b6:2c:f0:b8:16:1e:49:7c:8a:
2b:24:11:33:4c:af:90:30:21:65:68:6c:de:cb:cb:
da:45:f5:14:e7:72:c8:e9:86:2e:30:b4:79:d1:63:
2c:c8:00:5a:68:58:f0:71:52:e7:b4:7f:77:69:d8:
25:75:5f:0b:24:29:2e:50:c4:c5:dd:4c:03:bd:10:
5a:e1:47:58:87:7a:fd:ca:0e:b8:bc:fb:01:da:fa:
6b:45:0f:4c:8f:dd:46:16:15:c3:88:ea:f3:03:a4:
ef:5e:96:5a:a1:a9:c2:8e:87:66:f4:e7:2f:e4:b6:
6a:0d:76:b8:89:83:2b:fc:6d:45:a0:7b:60:30:af:
57:db:ae:4d:f2:b3:d9:95:8d:40:c9:3e:34:94:d6:
be:0f:93:2f:d5:4b:b9:90:08:12:e4:78:5c:e1:35:
23:07:1e:cb:e6:90:0a:09:b0:ab:22:a4:91:d5:e1:
e3:82:46:e8:b4:17:9d:40:d1:58:fe:23:bf:21:63:
a1:77:f3:7a:bb:9b:a8:9d:cf:6e:49:0e:6d:9a:dd:
7d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:84:73:A9:05:1C:E4:17:4D:A5:32:84:09:63:41:6B:56:E0:0A:41
X509v3 Authority Key Identifier:
keyid:5C:73:82:88:E1:DD:46:E2:1C:9A:03:91:19:72:44:B4:78:D0:AB:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHOCiOHdRuIcmgORGXJEtHjQqyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e35121-9d16-4a26-a7b7-50140c681aca/1/XHOCiOHdRuIcmgORGXJEtHjQqyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:5f:18:8d:69:bb:fe:88:47:fc:91:17:7a:a7:32:8f:77:46:
64:f0:49:04:5f:f2:2a:be:ab:2b:3f:26:d6:6f:4f:7d:a8:e6:
c4:18:79:14:71:c6:1a:32:ca:80:ab:6a:69:db:11:03:ab:46:
c2:30:96:b8:dd:b7:c9:ed:2e:17:56:6e:d0:7d:b2:f4:cf:7c:
6a:bf:98:a1:49:71:0d:99:4f:d5:eb:04:b3:29:54:c5:6c:b3:
5d:26:c5:b7:4b:38:37:72:29:74:bb:ea:c1:70:5f:fd:b3:20:
06:9e:2f:36:bd:d8:39:dc:c5:2a:93:9f:77:49:3c:d8:fe:86:
0e:ab:26:40:95:3f:67:ce:e0:25:0d:d8:f7:19:20:b0:b0:79:
bc:ef:ed:55:f6:49:c6:e5:e7:67:74:1c:15:ad:8d:a6:ef:63:
ce:3b:18:9c:5d:a3:6f:b6:dc:6f:e4:cd:65:99:74:de:a1:aa:
fa:a3:16:24:a1:0b:2b:33:bf:6b:37:e8:0c:b1:75:0b:19:30:
35:e6:19:bd:6b:53:41:5a:37:02:d9:29:e5:fa:f1:a0:a9:7a:
34:b0:e7:4b:73:32:60:7f:f6:49:d8:df:63:d7:8f:5d:0b:5f:
1f:d0:79:70:26:21:fe:1f:79:39:f5:e5:21:52:f9:47:4b:fd:
fd:14:8c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:16:03 2026 by rpki-client