Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
File: XX9jQBQHwcx5excDToE9IlT5dz4.mft (raw, json)
Hash identifier: FPw//qSEXfFD7B1u8VA13aMdg+rqAKfKu4PLRu1uonc=
Subject key identifier: A6:09:12:8A:5D:F5:BB:73:DB:FE:3A:CF:58:4E:E5:A7:C0:79:4C:93
Authority key identifier: 5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
Certificate issuer: /CN=5d7f63401407c1cc797b17034e813d2254f9773e
Certificate serial: 019E1F483162DA8C58C3103B068084F5D43E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
Manifest number: 0F9E
Signing time: Wed 13 May 2026 03:01:25 +0000
Manifest this update: Wed 13 May 2026 03:01:25 +0000
Manifest next update: Thu 14 May 2026 03:01:25 +0000
Files and hashes: 1: IJctrhezjfWjiA84ZaayWYeZh1k.roa (hash: VetyKsjNSyH6fNCp1k97xHgv6Vja8yJIQbMcO2qIjkU=)
2: XX9jQBQHwcx5excDToE9IlT5dz4.crl (hash: K3+gyB5/sERRG50Kmxr6hZVDfvjDJrSHBs8yj1dfYlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:48:31:62:da:8c:58:c3:10:3b:06:80:84:f5:d4:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d7f63401407c1cc797b17034e813d2254f9773e
Validity
Not Before: May 13 03:01:25 2026 GMT
Not After : May 14 03:01:25 2026 GMT
Subject: CN=a609128a5df5bb73dbfe3acf584ee5a7c0794c93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:70:ea:ba:03:d8:32:c7:87:a3:f8:13:7e:95:
ea:74:f5:f7:44:a1:ce:3f:2e:07:37:64:7c:d0:fd:
18:fa:7e:17:aa:b3:2c:69:85:07:bc:32:65:09:fc:
cd:4c:25:cc:fb:97:9b:83:0c:ee:75:a5:d8:f8:7f:
9e:ae:2b:ed:46:62:08:e7:38:00:09:02:ec:d4:5c:
2f:ca:0f:27:38:b5:50:2f:8d:ab:2c:4f:d2:cd:13:
88:a0:d0:59:6c:26:f5:cc:b9:3f:a4:33:b6:dc:0b:
e0:e2:c6:35:b8:c9:16:1b:af:6c:72:ca:bb:3b:84:
ee:cf:66:c4:0e:36:d3:b3:14:41:c4:26:81:69:82:
ea:43:56:c7:6d:2c:74:c3:5a:cf:e6:a7:1a:93:7c:
be:0e:aa:73:26:19:f0:09:d6:8a:d0:fb:a3:f7:24:
04:4e:3d:22:0f:f2:f7:f1:e6:d5:dc:64:cd:64:0c:
5a:d5:1a:f1:62:d9:12:16:5c:1e:70:86:fd:4d:d5:
dd:8a:45:cf:6e:a0:3d:9d:80:85:19:53:77:e1:ab:
fa:5b:63:c0:98:10:a7:63:75:c8:20:21:a6:ac:30:
f4:60:87:36:4c:35:e4:65:fc:7c:cf:a1:92:51:7d:
90:b7:7c:a3:32:e4:2e:82:a4:b6:64:6c:35:b5:83:
9c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:09:12:8A:5D:F5:BB:73:DB:FE:3A:CF:58:4E:E5:A7:C0:79:4C:93
X509v3 Authority Key Identifier:
keyid:5D:7F:63:40:14:07:C1:CC:79:7B:17:03:4E:81:3D:22:54:F9:77:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XX9jQBQHwcx5excDToE9IlT5dz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/550004-e1a6-4569-ae63-33fb1452bb0a/1/XX9jQBQHwcx5excDToE9IlT5dz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:f8:70:5b:10:0d:a6:bd:1e:69:c8:39:c8:92:45:30:b9:d0:
52:44:ba:5d:8d:17:07:f2:0d:c7:09:98:6c:9b:38:ea:c1:7b:
1d:da:5d:f1:33:25:c8:a8:8e:d7:84:0b:a4:f1:8f:65:e1:ba:
f0:11:25:ff:a6:a3:6e:b7:63:71:28:27:a7:69:43:53:90:df:
6e:71:51:39:12:5d:df:77:41:aa:58:c0:22:a7:dd:6b:a6:ab:
72:7b:6e:92:66:8e:5e:9e:3d:7d:23:b4:66:2f:a4:f0:07:47:
e6:98:9b:23:d5:d6:4f:b7:0e:ba:b3:35:87:da:fa:ea:21:46:
50:39:d5:09:6e:61:4f:cc:d5:a2:85:11:5c:fb:e0:4c:56:60:
a0:62:75:de:48:d6:38:2e:a3:07:07:46:21:97:8c:a7:0b:3d:
fb:75:ce:d2:e4:7b:7b:6b:5e:b0:b5:e6:6f:7b:b1:f0:5f:61:
90:01:19:e4:d7:52:c8:69:d5:3d:99:a2:04:df:d9:98:2b:a6:
e8:ea:18:a6:f0:cf:71:cf:c4:b1:bc:a1:9c:bf:f5:42:7c:d5:
da:00:18:cc:dc:29:65:6a:dd:86:cd:88:56:8b:63:e7:7a:f8:
e0:d7:d1:19:5e:29:06:c9:b1:5b:5c:a1:8c:b0:27:07:f5:ce:
9b:28:3b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:47:51 2026 by rpki-client