Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
File: cxkAeiit4HgdMS2NSUcts2dnBBY.mft (raw, json)
Hash identifier: vQ597iSfLj+ot+pU1g7lFR1thGu+uWuMhrN0PLmP1sc=
Subject key identifier: E6:D2:FB:A1:E4:AD:C5:1D:0B:6B:5D:3E:B5:23:E1:9F:59:4B:96:42
Authority key identifier: 73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
Certificate issuer: /CN=7319007a28ade0781d312d8d49472db367670416
Certificate serial: 019E1F7EF0769BF66F8ADDAF2DBAB41DC8A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
Manifest number: 0B83
Signing time: Wed 13 May 2026 04:01:13 +0000
Manifest this update: Wed 13 May 2026 04:01:13 +0000
Manifest next update: Thu 14 May 2026 04:01:13 +0000
Files and hashes: 1: Le8K7qSkEZ1_FmI_JNvcQwDT3kM.roa (hash: YPGYe40UQA7fHzeXPlUUiQ7ZZraM1bL1CPz1T+qTDdY=)
2: cxkAeiit4HgdMS2NSUcts2dnBBY.crl (hash: nDS6ufD7T8rKcc6f8EhEfU6zv2PlMuF1rnomM7KFta4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:f0:76:9b:f6:6f:8a:dd:af:2d:ba:b4:1d:c8:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7319007a28ade0781d312d8d49472db367670416
Validity
Not Before: May 13 04:01:13 2026 GMT
Not After : May 14 04:01:13 2026 GMT
Subject: CN=e6d2fba1e4adc51d0b6b5d3eb523e19f594b9642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:be:cb:21:91:3e:00:77:ac:cb:09:94:0f:e6:
e6:d7:17:45:86:51:e8:f7:c2:1f:f6:1e:fb:e3:46:
61:b6:01:fd:83:1b:f1:38:50:aa:bd:92:98:23:19:
ea:15:70:53:21:8d:5b:d0:7d:56:cd:c1:3d:9e:4a:
e1:ea:e7:99:63:c2:9c:51:58:aa:c4:8b:cb:9d:ef:
cf:08:f5:d3:66:c5:3e:38:4d:32:27:28:50:c2:49:
61:eb:7b:be:19:fd:0f:c5:bb:3e:1f:fe:8e:1a:4b:
a6:9e:9d:a6:00:16:8c:1d:6a:31:76:62:d6:f8:2c:
55:1a:8f:f6:3f:38:6a:9e:a3:51:9b:28:df:05:03:
8c:36:bc:57:a6:1d:15:27:e0:91:23:32:bb:34:11:
fd:32:b4:0e:a3:8b:47:f0:5d:f3:54:35:58:23:57:
a7:f1:04:fc:be:20:4a:58:c6:94:1f:c5:cd:d3:e3:
16:1c:a5:4d:56:0a:b0:ba:fc:b8:82:a4:af:93:0b:
ab:34:72:69:0e:fe:ca:df:c7:3a:88:3e:f7:f2:e1:
66:af:37:0c:27:06:1a:4c:3c:46:95:24:34:1c:31:
31:13:92:f0:28:9e:4c:d6:d9:eb:d8:6a:41:e9:1c:
c3:5f:03:2b:03:76:6c:59:18:4b:4e:c1:d8:6b:ef:
3f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D2:FB:A1:E4:AD:C5:1D:0B:6B:5D:3E:B5:23:E1:9F:59:4B:96:42
X509v3 Authority Key Identifier:
keyid:73:19:00:7A:28:AD:E0:78:1D:31:2D:8D:49:47:2D:B3:67:67:04:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cxkAeiit4HgdMS2NSUcts2dnBBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/f8c7e2-3282-4ebb-8508-9f9494966c54/1/cxkAeiit4HgdMS2NSUcts2dnBBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:56:d7:ac:eb:2b:11:40:64:d8:13:32:d3:00:70:7a:19:ea:
6e:96:66:a2:06:56:a7:af:30:fe:85:bb:fc:1b:48:ba:88:43:
90:62:5c:ba:a2:5d:68:8d:d7:c0:b9:b3:a7:33:5a:fe:42:06:
f5:3d:9e:23:01:26:c7:4d:fa:ed:f9:ea:3e:00:a8:b5:2e:f5:
df:5c:60:64:f3:bb:3f:12:5f:d8:f9:65:82:fe:7d:e6:7e:a7:
a6:12:f7:62:6b:49:a6:08:23:a7:cf:96:25:02:67:01:f3:96:
4d:0e:51:7d:8f:3f:1c:83:eb:47:0f:d7:6d:34:f2:54:8c:ee:
b4:3f:65:10:73:0d:73:06:2a:e8:89:1b:07:18:55:87:24:03:
5b:2f:fc:93:ea:d8:80:f5:2b:77:74:2c:f7:6b:99:f2:13:59:
60:e6:24:f9:be:85:1d:6d:5b:7d:49:8e:59:9f:87:9b:ed:4c:
58:e1:df:5b:ee:af:f2:0c:0e:76:e7:c5:a3:3a:d2:19:6b:4c:
3b:73:7c:e5:4f:34:1b:a7:ed:e3:ae:ac:d6:71:fd:1b:7f:46:
f9:8f:c3:72:e4:83:f4:fe:82:01:c8:bc:71:0a:ab:0f:cb:6f:
8e:d5:9f:c3:4b:b0:dd:33:a8:6c:9a:56:95:21:4b:da:21:bc:
0b:f3:d9:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:31:42 2026 by rpki-client