Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
File: Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft (raw, json)
Hash identifier: XbU/4RIcFNPJWrtxKZZxqna2xdGOY1EefHnbdZety/Y=
Subject key identifier: 98:B7:E7:56:13:C5:DC:D1:1E:88:58:18:21:CC:0B:30:01:0C:EF:13
Authority key identifier: 5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
Certificate issuer: /CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Certificate serial: 019E1FECBD29A4F6FB6419C1F052DC058DBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
Manifest number: 0DF9
Signing time: Wed 13 May 2026 06:01:08 +0000
Manifest this update: Wed 13 May 2026 06:01:08 +0000
Manifest next update: Thu 14 May 2026 06:01:08 +0000
Files and hashes: 1: RrwlRSSdwln9HbzArcN9f7ThR9c.roa (hash: Ic3y0/hXv+5FL5zNAqt7WX+ncQH0cGC5wuQsjbsXF7I=)
2: Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl (hash: 0aRjuCm1vbLkelmUhl3+qKLpCA0bOsT7u0FfNvzTVX4=)
3: fWpL_ta7aXoIKT8lwYmDL0nQegU.roa (hash: r+7J0jRgrAdlkGpSk5T7jtJhr78GxAY9zYWBhS85+uQ=)
4: l5tw0iDO7abT_AibKjZJaQ4nwWc.roa (hash: r+71S+WnEwowT4NhvO1eI4eYiERh6tzaeOlSbc80Img=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:bd:29:a4:f6:fb:64:19:c1:f0:52:dc:05:8d:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f1f213b8c792b7e013fa5041f5b89971e6f62d6
Validity
Not Before: May 13 06:01:08 2026 GMT
Not After : May 14 06:01:08 2026 GMT
Subject: CN=98b7e75613c5dcd11e88581821cc0b30010cef13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a4:4b:d4:f8:78:d8:9c:85:06:14:fc:69:6a:
5f:72:e0:a1:e7:88:61:12:8f:c3:cc:77:73:56:fc:
b9:d0:8e:78:3a:b2:51:d2:61:ae:d3:2e:5a:93:2d:
74:c3:68:f7:35:8b:ae:27:bf:e4:a0:3c:f1:b9:40:
62:7b:28:d8:dd:b1:c9:de:4f:e8:2c:12:5f:0e:12:
cf:8d:d7:87:7d:85:3a:a3:b8:2a:58:49:84:68:ea:
12:b6:6e:5c:22:64:19:06:e0:17:63:c2:02:eb:79:
7d:f0:ea:f9:43:6a:7d:be:55:84:40:8e:90:c1:f0:
95:4d:78:dc:6b:42:65:2b:a6:b8:4b:d2:6b:46:f7:
f9:4c:17:b1:71:ed:c7:9c:35:4d:66:7a:cc:25:37:
65:c2:c1:80:a1:c4:a2:ad:67:27:13:fd:4c:c5:df:
43:7e:fb:73:1f:f0:27:1c:bb:d3:5a:d9:38:ef:8a:
b3:e9:6d:42:01:ed:b3:e3:c8:30:87:11:05:83:75:
f5:97:c7:6b:f2:4d:84:05:f2:72:65:eb:32:20:31:
55:93:80:05:45:36:89:20:21:5a:13:f4:cb:f6:dd:
db:76:14:fc:28:17:11:5b:e0:c7:b8:c1:17:bd:86:
2d:57:0f:38:69:de:6c:0c:7a:3d:4a:33:5c:a2:f0:
dc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B7:E7:56:13:C5:DC:D1:1E:88:58:18:21:CC:0B:30:01:0C:EF:13
X509v3 Authority Key Identifier:
keyid:5F:1F:21:3B:8C:79:2B:7E:01:3F:A5:04:1F:5B:89:97:1E:6F:62:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xx8hO4x5K34BP6UEH1uJlx5vYtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/32f8d3-7328-45f0-a007-402238638ea3/1/Xx8hO4x5K34BP6UEH1uJlx5vYtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:b3:c2:8b:35:10:bb:e2:3a:87:ff:43:72:7a:96:46:4e:d3:
c8:7b:d8:54:60:98:a0:60:25:27:71:47:4e:69:57:b8:c4:23:
25:47:a4:4a:cf:8f:a1:f6:98:39:c9:fb:76:3f:7d:42:be:04:
75:18:04:e1:a8:cc:8f:4c:11:c8:b4:08:0d:94:d8:f7:2f:5f:
34:f4:f8:5a:60:eb:03:35:8d:46:a7:ef:0a:ad:fd:48:29:49:
ad:71:8b:d9:a0:6d:20:e1:b4:3b:e0:ae:c8:b1:0d:73:8e:fa:
cb:9f:6a:ec:06:a4:11:b2:ff:8d:c8:c2:8d:ac:7c:60:d7:0e:
b3:59:40:e1:42:5a:39:64:f2:a4:07:3d:be:3d:65:f0:60:07:
b9:60:cc:e8:9b:9f:21:55:7f:ec:22:c0:bf:9c:32:ab:de:0b:
07:f8:8f:41:19:e6:23:f4:49:9c:93:b3:23:28:5a:44:3d:83:
2a:f1:37:e5:1e:71:6f:42:a6:5f:9c:9c:11:3f:86:94:a0:e3:
8a:64:e1:c7:1d:a3:c5:d2:a8:87:0a:1c:8a:42:12:16:52:6d:
9b:76:9f:36:a1:61:51:a8:cc:76:34:f5:b2:56:64:a2:49:f1:
01:f2:43:31:78:17:1b:ed:1d:00:dc:5d:d2:bc:a6:01:fd:ae:
f0:2b:9c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:20:18 2026 by rpki-client