Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: uJFXLCPFq0Kvhc/wFjHS2zFVX2ZrZT30PFWZveqSFNc=
Subject key identifier: 7F:E3:01:15:0A:D2:A2:FC:36:F1:32:69:6E:CC:E3:34:44:28:61:49
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 019D9C2C5E91A2B69804ECB56D790E0B2DE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 0A61
Signing time: Fri 17 Apr 2026 16:00:46 +0000
Manifest this update: Fri 17 Apr 2026 16:00:46 +0000
Manifest next update: Sat 18 Apr 2026 16:00:46 +0000
Files and hashes: 1: bkpFrc_6laoYbGdkqTlHlW-Qe80.roa (hash: p/3gwRkkBDXycKoUYkEzWpJbWT3T+RMybdZ5AMyzIgo=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: FMEyOpWdsDNa6nPponZoEvbT5qkHkGBibkDznGihwM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:2c:5e:91:a2:b6:98:04:ec:b5:6d:79:0e:0b:2d:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Apr 17 16:00:46 2026 GMT
Not After : Apr 18 16:00:46 2026 GMT
Subject: CN=7fe301150ad2a2fc36f132696ecce33444286149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:4b:9b:d3:e8:a3:46:8a:33:74:c2:6c:79:ad:
25:7f:14:bd:d4:dc:7d:07:5d:05:05:5b:ca:e4:ae:
9a:07:4b:3b:c3:63:9c:dc:07:f9:1a:03:b4:3f:b6:
94:1b:fe:ec:e4:4c:0c:f8:aa:2f:e4:94:8f:39:d6:
32:b8:9e:c7:48:9f:ec:5a:9f:67:81:f9:6d:86:2c:
47:b5:41:92:a3:98:eb:ca:d7:b1:0d:a6:98:b9:ee:
99:c0:c1:f7:35:ab:40:5f:98:e0:61:e6:86:f5:67:
74:32:89:fe:b0:36:d9:f5:e7:ac:d6:21:01:54:96:
54:da:a5:26:4b:e3:86:b9:9d:25:10:66:40:5f:37:
34:43:47:5b:87:8e:87:e4:2a:7f:33:43:63:cb:38:
25:79:f5:61:02:9d:35:69:8e:0e:21:78:e2:38:2f:
69:26:7c:47:eb:57:10:7c:ea:ab:48:a1:63:21:92:
d3:e7:8c:69:0d:fe:1b:e6:94:1b:bb:73:00:b6:b1:
6f:0f:0c:ae:a7:90:31:5e:58:e7:d9:92:5b:82:db:
1c:81:ad:4b:2a:0d:92:30:c1:4f:d2:0a:e6:5c:52:
99:39:93:e5:42:81:57:ea:e0:b1:da:f8:c1:11:13:
17:43:0b:0f:9a:99:20:e6:43:a8:2f:5d:99:f6:80:
7e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E3:01:15:0A:D2:A2:FC:36:F1:32:69:6E:CC:E3:34:44:28:61:49
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:07:50:94:8d:62:03:48:6f:00:40:c8:a7:9c:e1:3b:a9:d3:
fb:0a:94:a9:6f:90:ee:8a:8f:da:ab:97:08:ef:69:83:9b:d1:
c5:1b:19:6c:ba:0e:10:54:e3:ff:1d:17:bc:83:ce:df:c2:d9:
6e:74:69:63:fb:ac:56:b5:1a:d9:31:fe:a7:43:b3:3e:3e:a3:
f6:91:cd:b5:64:7c:d8:f0:c0:b8:80:8e:13:b9:75:49:7b:4f:
ee:d7:cf:76:4d:e1:14:a9:60:a0:f0:61:66:9a:45:83:71:e0:
3d:1a:4c:4d:12:e4:38:12:ff:8f:6f:1e:7f:1a:2c:a0:01:c7:
e4:61:6b:40:c1:71:98:6c:66:0a:68:dc:1f:49:45:3e:4e:ef:
56:ae:42:df:83:5f:06:2c:48:35:7a:a6:03:a7:8a:da:79:83:
6c:d9:ed:9f:fe:4b:c6:24:da:77:58:11:17:d9:b3:d9:c8:dd:
94:94:f3:e3:cf:47:27:21:6f:62:d4:6b:3b:45:cb:91:ff:8b:
1e:54:4a:3d:e0:29:d5:da:bd:e3:2b:59:df:48:68:0b:8f:3c:
18:fa:81:d0:5c:51:5a:26:09:c8:f7:bd:bb:09:28:65:ee:67:
89:21:f6:40:9f:ee:44:b5:2f:51:a7:c3:f8:47:08:7d:e8:ba:
13:4f:21:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 02:31:03 2026 by rpki-client