Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
File: XGGrSm35u5XP3orwdmaKWVs0HeE.mft (raw, json)
Hash identifier: yAgDssmyja6xCBcLB/hHVN/SqE0bS5A9YYNEeIv8IbQ=
Subject key identifier: A1:18:5D:2B:10:90:25:22:7F:F6:44:E4:32:19:73:7C:EC:3B:E7:50
Authority key identifier: 5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
Certificate issuer: /CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Certificate serial: 019E1CEB89A7C30E6F61F757E070EC6FDD49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
Manifest number: 05ED
Signing time: Tue 12 May 2026 16:00:58 +0000
Manifest this update: Tue 12 May 2026 16:00:58 +0000
Manifest next update: Wed 13 May 2026 16:00:58 +0000
Files and hashes: 1: XGGrSm35u5XP3orwdmaKWVs0HeE.crl (hash: c4GfRe4FZ0mu6Q0X0lmoB3YJupFIZMoUropzS+6f0FQ=)
2: d9ad6eSfGOCAtJCyfx5T80LXc84.roa (hash: l8TnxH7nYsbi9OkxC5kgX4fiX1lQ108inFjyeEj/BH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 16:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:eb:89:a7:c3:0e:6f:61:f7:57:e0:70:ec:6f:dd:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Validity
Not Before: May 12 16:00:58 2026 GMT
Not After : May 13 16:00:58 2026 GMT
Subject: CN=a1185d2b109025227ff644e43219737cec3be750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:07:b6:48:2c:4e:42:d4:db:0d:0f:e4:47:3d:
3f:77:2c:c8:be:ec:38:48:4d:6b:bf:70:5a:36:db:
1d:1b:49:67:65:20:e6:9e:61:ab:a8:26:b3:f9:ec:
de:b4:6f:e4:98:0d:59:94:d2:51:22:1b:de:54:1c:
c8:58:8a:f5:3a:c2:2e:61:20:f6:ba:cc:e3:93:b9:
e2:94:42:16:92:40:ae:97:d9:bd:32:cc:a0:ac:38:
2c:a7:c0:b2:63:ce:81:64:68:b5:17:56:a6:b2:f4:
fe:d7:ba:a9:22:f2:28:43:40:cb:d9:e0:1c:71:8d:
6a:bf:06:6a:88:7d:9f:eb:19:d2:bc:5a:32:43:40:
3c:55:8c:30:5f:4c:44:78:92:0f:b3:82:d3:22:21:
49:72:2e:bf:50:ff:47:22:ca:d1:b3:cc:90:b7:66:
7e:3a:b4:ad:2e:95:31:53:6b:cb:da:0c:f3:01:03:
7a:12:f0:6a:ac:e3:67:f9:61:a5:c9:79:a4:a4:49:
ae:c0:5a:dd:9b:15:26:2b:c3:db:ab:a2:53:53:a3:
3d:aa:24:b9:1c:c1:fe:8a:3a:15:a4:20:42:bb:9b:
8d:3d:b1:4d:ae:45:29:ca:15:50:66:5b:28:bd:a2:
0c:43:f6:4a:6c:a7:ba:cf:60:d8:07:b6:58:0e:38:
f3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:18:5D:2B:10:90:25:22:7F:F6:44:E4:32:19:73:7C:EC:3B:E7:50
X509v3 Authority Key Identifier:
keyid:5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:75:a8:d3:f7:17:04:29:79:c1:ba:87:1f:0b:c4:f1:29:96:
6a:37:15:7e:71:11:b6:a2:a8:5d:14:5c:9a:96:a1:c9:67:48:
04:de:43:96:66:2b:dd:61:7c:42:be:b9:62:8f:f4:72:b3:5e:
20:db:6d:ae:19:72:e8:f1:96:93:3a:3e:2f:cf:ff:6a:cf:03:
49:3d:05:e9:3c:b6:ff:86:52:57:64:49:fe:5f:45:30:0b:19:
6d:7a:dd:ef:89:d1:e7:68:eb:a2:e7:37:f9:3d:14:59:41:25:
61:f0:a6:ed:b9:3a:d7:38:5e:a4:28:b4:0c:b6:3f:d2:f7:be:
0e:02:7a:b3:bf:b6:ee:a2:a6:0f:20:b5:fe:7c:f8:c5:77:1a:
82:d5:2c:19:95:a8:ab:0e:67:b2:79:e0:2c:7d:30:c1:aa:7b:
d4:20:04:c7:a7:fd:b8:b7:d4:d0:66:f5:e8:e9:46:1b:84:cb:
ca:84:23:6a:2a:51:5a:86:ed:2b:1b:b2:18:ea:90:78:89:0a:
8d:4c:c9:5f:3d:f6:d5:e3:9c:5d:18:ad:b3:cc:b4:6a:c9:f0:
5f:e5:d9:47:ac:da:13:ba:99:80:87:34:42:14:ac:f6:40:9b:
dc:de:a6:31:79:88:7f:6a:cb:80:bf:b5:40:98:7f:45:05:30:
0c:a6:3e:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:00:44 2026 by rpki-client