Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
File: X7qw05-2l5_k09JIOgG908k77O8.mft (raw, json)
Hash identifier: BqTZRzOFDbezH4yJkL7M5kpKlh/5EXeS0GtfNA3SbBw=
Subject key identifier: 8C:E6:4D:82:D0:05:20:CD:DD:8A:AA:60:A3:E1:15:AA:CE:30:0A:6D
Authority key identifier: 5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
Certificate issuer: /CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Certificate serial: 019E1DFEE4D08EE1F48CFD133D61A883C602
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
Manifest number: 0E16
Signing time: Tue 12 May 2026 21:01:44 +0000
Manifest this update: Tue 12 May 2026 21:01:44 +0000
Manifest next update: Wed 13 May 2026 21:01:44 +0000
Files and hashes: 1: Fnr8UBCRPeUQhRVFOAHVctCKPfo.roa (hash: PgOyYUmMG9zgljOcOgtP5byxd2cN3HfKRRt85MDBTwk=)
2: X7qw05-2l5_k09JIOgG908k77O8.crl (hash: RaC9ABnI1iUmlN0FxN/hgFDrW5PkvFbkC/457fkdONw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:e4:d0:8e:e1:f4:8c:fd:13:3d:61:a8:83:c6:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbab0d39fb6979fe4d3d2483a01bdd3c93becef
Validity
Not Before: May 12 21:01:44 2026 GMT
Not After : May 13 21:01:44 2026 GMT
Subject: CN=8ce64d82d00520cddd8aaa60a3e115aace300a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fb:ee:d4:0d:b1:0e:a4:55:7d:5c:05:a0:b8:
f0:50:d7:ee:96:a7:17:3b:fb:a9:f7:37:5e:d8:97:
d6:77:bb:8a:f0:6d:03:0c:9f:fc:49:3e:26:2d:86:
7b:46:db:f2:95:48:f4:fc:76:70:88:63:c8:76:92:
27:19:64:a9:35:bf:0a:00:4e:c0:1d:e6:22:fe:1c:
d7:c6:b6:b5:7c:62:79:55:38:27:56:60:98:46:50:
e5:17:d0:9a:60:19:96:88:54:60:da:69:0b:41:52:
94:19:1e:2f:d8:b7:a4:d2:67:83:cc:bc:eb:15:7f:
24:16:7e:d6:f3:bf:70:76:24:be:63:c2:b2:d3:13:
2f:31:85:79:51:3e:ab:a1:28:e8:6e:5f:2f:24:57:
70:68:45:53:71:7c:4c:1d:32:29:29:5e:ae:a4:9b:
d8:f4:57:8f:f7:54:bd:f0:63:6f:56:68:bd:bd:ff:
b7:16:48:9a:38:d6:01:23:70:24:45:14:fc:25:0c:
31:b9:f4:2a:a0:d9:7c:52:19:de:29:e4:a9:12:f6:
a3:e9:b2:56:f0:89:58:09:85:5c:67:86:6b:34:b9:
fb:fb:f8:f7:42:af:e3:20:fb:bf:2a:0c:2f:a2:5f:
69:f8:60:ad:31:1d:5f:af:89:38:7a:8d:15:11:69:
9e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E6:4D:82:D0:05:20:CD:DD:8A:AA:60:A3:E1:15:AA:CE:30:0A:6D
X509v3 Authority Key Identifier:
keyid:5F:BA:B0:D3:9F:B6:97:9F:E4:D3:D2:48:3A:01:BD:D3:C9:3B:EC:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7qw05-2l5_k09JIOgG908k77O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/3c524e-12b8-4dcc-8f10-30df62429df0/1/X7qw05-2l5_k09JIOgG908k77O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:b5:99:17:a4:75:83:52:69:3c:0c:e7:86:f1:ad:5b:e7:b1:
7e:7c:9b:bc:d7:36:54:60:a3:25:ae:3b:5d:96:2c:25:2c:43:
d0:ba:25:eb:25:ab:49:94:d2:32:36:99:0a:05:d8:b7:d8:81:
d7:bc:a8:8d:cf:be:83:ae:0e:ae:cb:fc:4f:3a:4c:5c:91:be:
d6:63:b7:7b:3f:4f:fb:db:6a:5d:59:b1:6c:e2:14:7d:02:c4:
00:cb:98:91:01:18:e5:16:9d:a9:03:d3:03:b5:00:a5:6c:f9:
90:77:1f:43:e4:59:25:5d:44:9f:8e:19:34:3f:b8:de:4e:c5:
1c:62:6b:ae:b0:b9:d7:0f:3b:8d:94:7e:e0:f6:0e:a6:cc:9a:
b9:80:8a:3e:00:1c:db:f1:ba:81:a0:8b:1a:11:81:0c:83:a2:
08:05:54:66:1d:a0:86:d3:f7:dd:c4:c4:50:70:18:52:1e:e2:
61:77:be:19:c4:86:71:4d:0e:3c:a0:03:6d:1f:34:49:5d:d2:
31:6e:2a:44:b8:0a:1a:92:b6:21:5d:33:c1:4f:0e:3b:64:eb:
ac:bc:ff:68:c8:e9:ed:93:5a:d6:5c:2a:22:69:54:ea:af:83:
63:4d:33:9b:3b:d4:a7:b8:2c:dc:1f:ff:7c:b0:3c:90:00:79:
bf:74:a9:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:29:32 2026 by rpki-client