Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
File: XICE2xnxE9gbZEg5P60cEyxYT80.mft (raw, json)
Hash identifier: 8CZwxOi+93h3NQmmE9RFS7UtkcERw0o+u/3roFB0XMA=
Subject key identifier: 05:43:56:86:43:8A:F7:78:2B:2F:C4:56:7E:3C:E4:FC:EB:3B:E1:04
Authority key identifier: 5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
Certificate issuer: /CN=5c8084db19f113d81b6448393fad1c132c584fcd
Certificate serial: 019E1F10F27FDA9702588A1C0698978D38FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
Manifest number: 120A
Signing time: Wed 13 May 2026 02:01:04 +0000
Manifest this update: Wed 13 May 2026 02:01:04 +0000
Manifest next update: Thu 14 May 2026 02:01:04 +0000
Files and hashes: 1: XICE2xnxE9gbZEg5P60cEyxYT80.crl (hash: 3vzf4gXsSmXcpAujz8YBdQ1yQuZDWbPzXFjhQzDslOI=)
2: qXa05Pm4susE6h1kgPXqtx4ui2U.roa (hash: bVr1M0Wzu14ImKwiIYB0nxHAmPqsQWuDaJyg7tqZvAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:f2:7f:da:97:02:58:8a:1c:06:98:97:8d:38:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c8084db19f113d81b6448393fad1c132c584fcd
Validity
Not Before: May 13 02:01:04 2026 GMT
Not After : May 14 02:01:04 2026 GMT
Subject: CN=05435686438af7782b2fc4567e3ce4fceb3be104
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b0:b5:bd:d0:ab:f7:9f:a5:ed:cf:6e:f5:d2:
82:2f:d2:94:12:f1:e3:a3:5c:3b:d2:6f:73:5c:ef:
c1:11:b6:08:97:61:24:f1:d9:1c:96:13:27:bf:85:
3d:1b:56:84:8f:4a:59:c0:de:36:aa:84:2b:d4:05:
f9:7b:20:af:44:c3:c2:52:9b:47:32:21:85:22:d7:
3d:cd:da:ee:d2:8d:e7:2c:f7:49:23:bf:d7:27:37:
1a:80:43:88:61:90:21:dd:21:c5:0e:7c:03:2e:7b:
e2:8e:94:20:f4:7f:5e:a6:d7:8b:b6:ad:bf:d6:98:
f8:d9:14:b7:99:bc:dd:5d:7a:f5:26:28:af:7d:18:
cd:e6:2f:60:81:9c:cf:91:58:86:5c:48:bb:bb:83:
00:9f:1c:25:3d:05:da:3f:0d:fc:d1:45:2e:df:bb:
c7:09:b2:f6:f7:3c:59:4b:8a:9d:07:0d:43:67:b3:
70:c3:40:d4:f5:09:a3:18:d4:9c:cd:bb:25:37:73:
18:98:0a:09:74:48:17:aa:c3:95:1e:42:3d:67:4a:
d0:c3:3b:15:1e:98:2b:1d:05:ff:6d:ce:a6:7c:8d:
76:5a:70:99:90:27:80:b5:e3:f6:ff:15:55:67:0f:
47:28:1b:4d:c4:00:02:fe:5e:e5:31:4b:06:99:9f:
61:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:43:56:86:43:8A:F7:78:2B:2F:C4:56:7E:3C:E4:FC:EB:3B:E1:04
X509v3 Authority Key Identifier:
keyid:5C:80:84:DB:19:F1:13:D8:1B:64:48:39:3F:AD:1C:13:2C:58:4F:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XICE2xnxE9gbZEg5P60cEyxYT80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/67c7e8-c075-40a1-a3ff-819062a12f3d/1/XICE2xnxE9gbZEg5P60cEyxYT80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:2d:44:1e:44:52:7f:a9:c0:b5:d7:17:f5:49:40:dc:40:01:
c6:e6:75:7b:5e:57:36:f2:4b:70:82:ba:4f:5f:76:9d:b6:be:
0e:e1:ea:3a:3a:5d:3e:6a:4c:4d:ab:a3:00:5e:00:6c:93:67:
7d:16:78:f2:3b:f8:93:34:fc:b8:c3:ac:3d:4a:7b:f3:46:d0:
18:c9:71:ad:44:c2:3a:2f:ef:e1:67:5a:fc:f5:b0:fd:b0:10:
0f:7a:3a:7f:d7:3f:b5:9e:cd:c1:5c:4f:ec:e9:79:05:e3:c6:
f5:c0:a3:27:1c:08:7c:87:88:56:f6:55:f8:2d:36:12:8f:90:
04:e9:53:b2:eb:ed:cc:25:95:31:bc:02:aa:04:06:92:e1:03:
67:3a:bf:12:8d:a1:9d:a5:f7:d7:85:28:7a:b5:df:61:d3:5f:
2e:63:5f:77:94:b0:76:55:6e:82:e6:0e:29:60:65:94:16:10:
8d:44:34:26:42:e0:5b:f7:96:52:8d:4a:fe:89:dc:13:e8:61:
fa:82:24:90:b3:1b:5d:a1:b9:42:ae:05:3e:97:fe:75:a4:d3:
fa:ff:1c:5c:0c:0b:94:96:36:39:cf:5d:41:dd:94:dc:20:f3:
5a:ab:69:8a:07:6e:2f:84:0e:6f:f8:8e:ee:70:77:37:66:b3:
ab:52:2c:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:21:18 2026 by rpki-client