Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: h+rcnMJP7hWCNd7NO/EOKS+B9G/FyDbAWrwVCE1gNbE=
Subject key identifier: 51:4C:55:B5:C8:27:A9:16:E4:2F:3F:15:58:77:AC:A9:19:29:38:2D
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 019E1F47BB56E8F6EBD80D9129474A09FF12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 164B
Signing time: Wed 13 May 2026 03:00:55 +0000
Manifest this update: Wed 13 May 2026 03:00:55 +0000
Manifest next update: Thu 14 May 2026 03:00:55 +0000
Files and hashes: 1: 5bGOVGgpUSjx1uwMkRS9oqXlCJM.roa (hash: gEd4SfTflxW3Gsgz2afT2mctC6KsEwsMe5axMz0injA=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: 6LtXvMmtuQOt+JhGwbhzwEhiphfzxj+WDZ+KGAslxs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:bb:56:e8:f6:eb:d8:0d:91:29:47:4a:09:ff:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: May 13 03:00:55 2026 GMT
Not After : May 14 03:00:55 2026 GMT
Subject: CN=514c55b5c827a916e42f3f155877aca91929382d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:42:74:96:98:2e:64:fe:ac:0f:f7:db:aa:a5:
20:18:46:ad:04:98:1e:47:65:1d:ee:8e:06:46:f0:
bc:2b:63:c9:89:3e:28:61:3b:71:32:f6:6b:9c:4c:
ba:5f:74:fb:d1:0e:22:07:9f:78:77:5e:5d:76:da:
4a:c9:52:cf:4e:0c:3b:35:60:bb:82:e5:51:33:a6:
c5:b6:23:a5:9e:a4:61:6e:9b:cc:ed:2f:fd:88:1b:
69:c0:1a:82:40:f5:45:ae:5c:21:7e:b5:23:dc:92:
77:63:67:59:3c:20:89:0c:61:99:b7:6d:d9:02:36:
2f:70:4d:af:58:b3:b9:ed:0b:ca:d4:3d:fa:e1:ee:
66:c0:c4:fc:36:de:59:d0:2b:19:53:2a:96:c9:ff:
2e:0c:54:e0:31:ed:f4:34:f1:c0:92:76:b9:48:0b:
68:8a:3c:94:dd:8d:b0:a9:f2:24:89:e7:11:26:98:
0c:1a:cf:2d:5c:2c:e3:48:6f:97:83:e8:4f:28:9c:
2a:a4:06:d4:b5:14:ad:0b:c0:44:49:4b:be:0e:3e:
94:be:4f:4a:d3:cd:5c:e0:44:67:f6:36:17:e6:e0:
2d:0e:09:91:d3:2b:df:7b:6a:2f:f0:18:77:fa:65:
b4:bc:ba:f4:55:0c:05:cd:20:5b:1e:7e:0e:7f:5a:
bd:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:4C:55:B5:C8:27:A9:16:E4:2F:3F:15:58:77:AC:A9:19:29:38:2D
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:e4:c1:4f:45:9e:75:72:72:65:1f:e3:6f:1a:bf:4d:da:39:
e7:38:85:2f:53:c0:0f:7d:d3:64:69:bb:f9:f3:24:c2:b6:f7:
63:d6:19:fc:b1:f9:41:0c:da:e6:61:63:ef:12:9b:8c:c9:6f:
e8:d3:79:65:88:59:0f:a1:da:b6:4e:60:06:eb:b1:91:48:6e:
ec:ea:ed:5f:4e:77:6b:4b:3c:70:07:75:7e:3c:d0:88:7f:b0:
21:3e:59:19:a4:bb:50:fa:90:3d:40:83:a4:8b:8e:33:3c:47:
ae:61:5f:19:0a:9a:78:a8:5e:d9:85:28:f8:4e:8f:57:f5:da:
49:ff:ef:4d:22:11:27:94:83:7a:df:67:f4:f5:dd:29:64:4a:
84:3d:1f:50:aa:1e:f7:b7:ec:42:12:c1:07:0b:f4:05:3a:e8:
fc:de:20:ec:0a:3e:da:d8:3c:4f:8f:fc:25:e6:7a:a6:d3:b2:
a5:03:fb:b0:f4:69:8f:6c:53:27:44:30:1b:d5:44:05:29:c7:
70:27:49:65:ce:2c:b9:62:dd:77:93:aa:ad:9b:5c:58:2c:c4:
f8:fa:ca:57:09:ca:57:cf:72:71:dd:51:bf:74:69:1b:46:3b:
a2:00:79:00:fe:ac:1c:26:1e:e3:5b:0a:cf:bf:fe:03:88:88:
34:8e:7d:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fR7tW6Pbr2A2RKUdKCf8SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0NzI5YWYxM2QzZDE1NmY0MTE5NzZiMTc2ZTU1NGZhNjcx
ZDc2ZjcwHhcNMjYwNTEzMDMwMDU1WhcNMjYwNTE0MDMwMDU1WjAzMTEwLwYDVQQD
Eyg1MTRjNTViNWM4MjdhOTE2ZTQyZjNmMTU1ODc3YWNhOTE5MjkzODJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUJ0lpguZP6sD/fbqqUgGEatBJge
R2Ud7o4GRvC8K2PJiT4oYTtxMvZrnEy6X3T70Q4iB594d15ddtpKyVLPTgw7NWC7
guVRM6bFtiOlnqRhbpvM7S/9iBtpwBqCQPVFrlwhfrUj3JJ3Y2dZPCCJDGGZt23Z
AjYvcE2vWLO57QvK1D364e5mwMT8Nt5Z0CsZUyqWyf8uDFTgMe30NPHAkna5SAto
ijyU3Y2wqfIkiecRJpgMGs8tXCzjSG+Xg+hPKJwqpAbUtRStC8BESUu+Dj6Uvk9K
081c4ERn9jYX5uAtDgmR0yvfe2ov8Bh3+mW0vLr0VQwFzSBbHn4Of1q9HQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFFMVbXIJ6kW5C8/FVh3rKkZKTgtMB8GA1UdIwQY
MBaAFMRymvE9PRVvQRl2sXblVPpnHXb3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NWUwNjAtZmEyYS00MDU3LTk1Nzgt
YjA4OThmYmIxY2FiLzEveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC85NWUwNjAtZmEyYS00MDU3LTk1NzgtYjA4OThmYmIxY2Fi
LzEveEhLYThUMDlGVzlCR1hheGR1VlUtbWNkZHZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADeTBT0We
dXJyZR/jbxq/Tdo55ziFL1PAD33TZGm7+fMkwrb3Y9YZ/LH5QQza5mFj7xKbjMlv
6NN5ZYhZD6Hatk5gBuuxkUhu7OrtX053a0s8cAd1fjzQiH+wIT5ZGaS7UPqQPUCD
pIuOMzxHrmFfGQqaeKhe2YUo+E6PV/XaSf/vTSIRJ5SDet9n9PXdKWRKhD0fUKoe
97fsQhLBBwv0BTro/N4g7Ao+2tg8T4/8JeZ6ptOypQP7sPRpj2xTJ0QwG9VEBSnH
cCdJZc4suWLdd5OqrZtcWCzE+PrKVwnKV89ycd1Rv3RpG0Y7ogB5AP6sHCYe41sK
z7/+A4iINI59vg==
-----END CERTIFICATE-----
Generated at Wed May 13 09:42:03 2026 by rpki-client