Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
File: xs_ZQjfv0gDdCxFuH2-be8plnKc.mft (raw, json)
Hash identifier: cKgu0N8bNz2gKRxaNzNVTesOtct+SW+ZSwprIaSK+mI=
Subject key identifier: 84:64:28:EB:16:D5:58:63:91:94:8A:C3:09:FE:A5:BF:75:50:15:7B
Authority key identifier: C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
Certificate issuer: /CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Certificate serial: 019E1ED9EDC5D075A5C2A16A3C1F8383F258
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 01:00:59 +0000
Manifest this update: Wed 13 May 2026 01:00:59 +0000
Manifest next update: Thu 14 May 2026 01:00:59 +0000
Files and hashes: 1: RB5D86Eez18oD-QABqEilaFp2nQ.roa (hash: cNT5vI1+Epdr8/RiwTV50sHhN6dBP41X/USYdNru1kM=)
2: xs_ZQjfv0gDdCxFuH2-be8plnKc.crl (hash: KPnz6KSJTCy1BH029RKsquXalEsuy9iKI7Yv/d0RFhs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:ed:c5:d0:75:a5:c2:a1:6a:3c:1f:83:83:f2:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6cfd94237efd200dd0b116e1f6f9b7bca659ca7
Validity
Not Before: May 13 01:00:59 2026 GMT
Not After : May 14 01:00:59 2026 GMT
Subject: CN=846428eb16d5586391948ac309fea5bf7550157b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:bc:e2:ae:08:1c:9d:3d:05:c6:3e:40:1f:7e:
e5:cc:e8:4d:ab:3b:24:96:cd:a0:47:d6:cd:1f:e0:
de:60:79:71:dc:2c:4b:6d:0f:e3:f2:a0:ea:f0:42:
05:82:47:5d:76:a1:9f:6e:6d:9a:50:af:af:b4:c8:
6c:52:18:58:a1:49:c5:31:94:7b:f2:a8:be:d6:4a:
e9:71:d3:1f:1d:86:9d:db:1e:fc:2a:a2:b6:48:6c:
ec:91:6d:a0:ea:1d:50:d1:d2:e9:bc:ce:93:06:00:
fb:59:67:8d:34:2f:f7:72:fe:49:b8:78:4e:b7:70:
5e:50:5a:fc:8b:65:6f:3e:16:be:c4:c7:4c:e6:60:
d0:79:bb:b8:bf:4c:ba:92:8e:38:c0:61:67:10:0d:
15:b0:64:cb:5e:1e:9d:c3:5c:f1:c1:08:77:05:b5:
74:f9:02:88:29:4d:cd:d0:8e:c8:15:e0:2d:18:ae:
61:4a:64:05:e2:dc:91:f8:df:a5:ef:31:5e:7a:88:
a7:18:83:0a:f1:a4:99:78:f4:f7:06:dd:20:d6:d5:
6e:88:ff:5e:99:3f:68:2b:4e:45:27:ea:c2:69:86:
59:80:a2:80:1a:56:73:fb:b5:cd:c4:11:c5:16:e3:
35:6d:54:80:c4:f0:1e:1c:c3:ed:a3:08:5d:07:93:
9b:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:64:28:EB:16:D5:58:63:91:94:8A:C3:09:FE:A5:BF:75:50:15:7B
X509v3 Authority Key Identifier:
keyid:C6:CF:D9:42:37:EF:D2:00:DD:0B:11:6E:1F:6F:9B:7B:CA:65:9C:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xs_ZQjfv0gDdCxFuH2-be8plnKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/0b7271-0221-460e-831a-dc884f1be3e5/1/xs_ZQjfv0gDdCxFuH2-be8plnKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:3c:92:7e:cf:8a:eb:8f:0c:0d:27:69:15:99:4c:4d:e9:1e:
d7:8c:35:ff:f9:08:ff:de:2f:5f:64:19:63:2d:12:90:04:8f:
31:3d:72:6e:bf:94:de:9b:0d:4a:2e:33:65:f1:d5:1b:b6:44:
a4:ba:85:f3:75:83:ab:ea:f3:a0:b8:c3:45:9b:8d:4a:18:13:
17:2a:13:4f:8a:26:44:89:f5:72:d7:ee:50:6f:5c:95:d8:88:
02:83:a8:88:79:26:35:0c:3c:34:ac:00:13:58:5e:05:16:37:
9f:25:a7:bf:c9:db:a1:2f:9d:24:18:8c:6f:4b:35:bd:35:68:
6f:ca:d0:6f:9c:39:08:2e:66:e0:9d:b9:1a:fa:ce:91:7d:a7:
64:e1:3a:bb:ce:21:48:87:9c:29:62:07:aa:fe:45:9b:88:bb:
ab:a2:31:6f:8b:0a:05:d3:b2:38:1c:85:38:47:f6:7d:23:b4:
94:84:0f:b6:db:33:b0:2e:f4:a4:4d:20:8a:77:fe:e6:6a:62:
ea:a0:6e:85:c2:90:bc:e8:1c:d6:c6:13:ee:81:49:73:cf:a0:
fa:35:ac:5a:e4:bf:f8:b4:20:6c:62:a7:f2:c4:e2:2a:65:b7:
6d:d6:69:2e:f4:ce:37:c8:5a:9b:2a:62:9d:c2:47:7e:32:4c:
c3:ca:33:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4e2e3F0HWlwqFqPB+Dg/JYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2Y2ZkOTQyMzdlZmQyMDBkZDBiMTE2ZTFmNmY5YjdiY2E2
NTljYTcwHhcNMjYwNTEzMDEwMDU5WhcNMjYwNTE0MDEwMDU5WjAzMTEwLwYDVQQD
Eyg4NDY0MjhlYjE2ZDU1ODYzOTE5NDhhYzMwOWZlYTViZjc1NTAxNTdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA27zirggcnT0Fxj5AH37lzOhNqzsk
ls2gR9bNH+DeYHlx3CxLbQ/j8qDq8EIFgkdddqGfbm2aUK+vtMhsUhhYoUnFMZR7
8qi+1krpcdMfHYad2x78KqK2SGzskW2g6h1Q0dLpvM6TBgD7WWeNNC/3cv5JuHhO
t3BeUFr8i2VvPha+xMdM5mDQebu4v0y6ko44wGFnEA0VsGTLXh6dw1zxwQh3BbV0
+QKIKU3N0I7IFeAtGK5hSmQF4tyR+N+l7zFeeoinGIMK8aSZePT3Bt0g1tVuiP9e
mT9oK05FJ+rCaYZZgKKAGlZz+7XNxBHFFuM1bVSAxPAeHMPtowhdB5ObIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIRkKOsW1VhjkZSKwwn+pb91UBV7MB8GA1UdIwQY
MBaAFMbP2UI379IA3QsRbh9vm3vKZZynMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHNfWlFqZnYwZ0RkQ3hGdUgyLWJlOHBsbktjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wYjcyNzEtMDIyMS00NjBlLTgzMWEt
ZGM4ODRmMWJlM2U1LzEveHNfWlFqZnYwZ0RkQ3hGdUgyLWJlOHBsbktjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8wYjcyNzEtMDIyMS00NjBlLTgzMWEtZGM4ODRmMWJlM2U1
LzEveHNfWlFqZnYwZ0RkQ3hGdUgyLWJlOHBsbktjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyjySfs+K
648MDSdpFZlMTeke14w1//kI/94vX2QZYy0SkASPMT1ybr+U3psNSi4zZfHVG7ZE
pLqF83WDq+rzoLjDRZuNShgTFyoTT4omRIn1ctfuUG9cldiIAoOoiHkmNQw8NKwA
E1heBRY3nyWnv8nboS+dJBiMb0s1vTVob8rQb5w5CC5m4J25GvrOkX2nZOE6u84h
SIecKWIHqv5Fm4i7q6Ixb4sKBdOyOByFOEf2fSO0lIQPttszsC70pE0ginf+5mpi
6qBuhcKQvOgc1sYT7oFJc8+g+jWsWuS/+LQgbGKn8sTiKmW3bdZpLvTON8hamypi
ncJHfjJMw8ozbA==
-----END CERTIFICATE-----
Generated at Wed May 13 09:35:34 2026 by rpki-client