Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
File: Xojs8KFK0YVzWdLOW9BCuflsfN0.mft (raw, json)
Hash identifier: 0rsHfYJJK1Ww6bcE+eTiL5P3B5L7yuazsFPaO5v6huI=
Subject key identifier: B2:33:89:B7:73:31:47:EA:E1:CD:4C:9A:ED:8C:F8:97:83:22:84:65
Authority key identifier: 5E:88:EC:F0:A1:4A:D1:85:73:59:D2:CE:5B:D0:42:B9:F9:6C:7C:DD
Certificate issuer: /CN=5e88ecf0a14ad1857359d2ce5bd042b9f96c7cdd
Certificate serial: 019E1EA37F19C96C6A877B5E5E74D6BF6870
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
Manifest number: 0A85
Signing time: Wed 13 May 2026 00:01:31 +0000
Manifest this update: Wed 13 May 2026 00:01:31 +0000
Manifest next update: Thu 14 May 2026 00:01:31 +0000
Files and hashes: 1: 5hnYO6ztPLa-s4fykT38ED82F1s.roa (hash: oNF1AM5Hv8TzwevSKCEUvWBxoNLM1msTiU4uiTHoB08=)
2: Xojs8KFK0YVzWdLOW9BCuflsfN0.crl (hash: HmUV96aLSuIVEHXqwxF45cc2AOyaUYGInwYAz16wAVI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:7f:19:c9:6c:6a:87:7b:5e:5e:74:d6:bf:68:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e88ecf0a14ad1857359d2ce5bd042b9f96c7cdd
Validity
Not Before: May 13 00:01:31 2026 GMT
Not After : May 14 00:01:31 2026 GMT
Subject: CN=b23389b7733147eae1cd4c9aed8cf89783228465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:92:5d:c8:85:b1:d4:25:3a:08:fb:af:7d:59:
e1:ae:d0:70:35:c4:81:55:7d:2a:6b:d0:eb:f6:b7:
92:00:b9:af:40:76:25:7f:b8:44:96:b7:2e:95:d5:
0d:77:29:ba:ce:e9:08:ad:29:b4:65:1b:39:75:e5:
00:2a:99:64:80:5b:c0:24:89:d5:52:cb:fc:89:ba:
d2:8a:92:50:85:51:ce:ac:fc:0b:b9:58:aa:b4:4b:
7c:91:8f:cf:3d:9d:bd:72:8c:c0:cb:58:6e:86:1c:
10:34:71:98:23:65:ad:f3:71:80:ff:c9:1c:de:77:
d8:ed:fc:79:dc:8d:3f:17:33:02:c4:12:b2:ba:73:
cb:3f:62:37:6d:33:58:f3:3b:f3:a5:33:b6:4a:73:
18:e3:03:0c:77:7f:66:77:6b:34:fa:7f:38:24:db:
74:18:e6:b5:dc:5b:78:74:ea:02:5c:e8:c9:24:c4:
01:f5:2d:8f:1f:74:9b:7c:38:a0:72:2b:87:b3:58:
d6:3f:ff:f4:13:d0:a3:d5:d1:cb:1b:47:8c:1a:25:
a2:0b:f8:d5:36:2d:06:bf:0a:88:d9:ab:7d:54:75:
46:18:1e:d4:2c:4f:48:d4:eb:aa:5b:6e:af:54:3f:
0d:2c:f6:cd:b6:23:0e:04:7f:2b:a8:a8:90:13:bd:
65:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:33:89:B7:73:31:47:EA:E1:CD:4C:9A:ED:8C:F8:97:83:22:84:65
X509v3 Authority Key Identifier:
keyid:5E:88:EC:F0:A1:4A:D1:85:73:59:D2:CE:5B:D0:42:B9:F9:6C:7C:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:77:1f:06:7e:41:e3:cf:1f:a8:33:5b:ee:fc:0f:13:e1:a1:
ab:6a:6b:06:29:a0:91:ac:fc:53:c7:20:c4:88:c6:32:d8:18:
37:bc:0e:8a:53:2d:74:32:42:02:6f:bc:2e:cc:22:5e:9b:8c:
d6:72:03:ac:e7:7b:7b:8b:06:2e:2f:38:d7:49:10:38:ca:f8:
d6:7c:60:32:7c:fb:e5:dd:21:84:8c:59:3e:89:67:9b:1b:d5:
56:2c:3c:88:01:86:8e:2a:71:5e:b0:da:5d:0d:80:c1:c9:2b:
07:39:b8:2b:08:79:5c:8b:94:ed:cc:65:5c:2e:04:f8:ee:a8:
25:f3:a0:57:13:50:4f:78:85:ab:f5:d1:4f:57:dc:3f:c6:c7:
c8:e7:52:cf:72:eb:ad:b9:85:cf:8d:46:11:49:b6:c3:0c:cb:
f5:cf:cc:60:f9:8c:ff:db:1e:60:2e:26:3e:2c:4e:72:61:cc:
eb:b2:af:77:57:31:36:79:70:1e:e1:06:ba:01:52:1f:b6:8d:
ea:0b:de:8f:f8:86:43:24:84:03:99:ac:47:86:2f:c5:5a:5f:
a9:e6:78:38:58:54:b3:48:e8:41:6b:6a:29:3d:4a:0a:f3:a6:
9e:cd:11:f0:92:42:f7:82:55:1e:8b:89:95:75:94:42:cb:95:
24:47:32:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:31:39 2026 by rpki-client