Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
File: mXyCWBNDX7ARVDjuP2B2N869jo4.mft (raw, json)
Hash identifier: WOJl/gibeVW5CnmoqYWo95+39B5gV3rhss7IE5W2HYI=
Subject key identifier: 2F:9E:01:F8:81:A5:23:5B:E2:14:AA:6D:D5:BC:5A:1F:89:69:CF:F5
Authority key identifier: 99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E
Certificate issuer: /CN=997c825813435fb0115438ee3f607637cebd8e8e
Certificate serial: 019E1EA3FE4EAD9609ACEC9707DA96C83ACF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
Manifest number: 01E6
Signing time: Wed 13 May 2026 00:02:04 +0000
Manifest this update: Wed 13 May 2026 00:02:04 +0000
Manifest next update: Thu 14 May 2026 00:02:04 +0000
Files and hashes: 1: IqAZ7XQz7BlbCx4e-ofeDvMJfNU.roa (hash: Kp2XtcxtOkZThbBMLc4hB6JTrGLoaZOP4GbgJkvTA/A=)
2: mXyCWBNDX7ARVDjuP2B2N869jo4.crl (hash: VI8jsHrjIAf8kuB4gtQvL1QA20tBVMV4P7P0xI8O4CQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 00:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:fe:4e:ad:96:09:ac:ec:97:07:da:96:c8:3a:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997c825813435fb0115438ee3f607637cebd8e8e
Validity
Not Before: May 13 00:02:04 2026 GMT
Not After : May 14 00:02:04 2026 GMT
Subject: CN=2f9e01f881a5235be214aa6dd5bc5a1f8969cff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:aa:d8:4c:9b:2f:c8:47:89:3d:f9:f2:45:eb:
20:94:0e:89:7f:34:69:d3:5a:03:4f:32:41:ef:e9:
b6:76:42:39:0b:f3:7f:b7:9e:db:e2:37:35:35:6d:
be:69:d4:8b:b4:ad:87:1a:a4:3c:cb:35:42:05:44:
f3:68:04:28:33:5d:44:e3:65:c4:91:69:cc:7c:46:
6a:b5:33:aa:31:57:c7:f6:76:14:03:11:f6:9c:ef:
02:69:0a:2f:fc:0e:74:a8:1b:e4:33:7a:af:da:14:
96:2f:a5:9a:e8:98:d5:69:1e:2c:ba:94:31:42:df:
ab:e9:d9:0a:a1:0b:f2:65:e9:34:7a:9a:9f:b9:c4:
5d:f7:8d:36:71:b2:f5:01:c1:ad:90:f1:48:70:66:
d9:77:ed:45:15:10:af:21:45:24:43:86:8e:bf:fa:
23:2c:b5:6f:fe:af:20:fc:64:cf:d8:7d:e8:5a:71:
77:73:5b:e4:99:7e:e1:8b:12:8c:84:b4:f1:1b:04:
64:34:7f:e2:9e:0b:3c:3b:42:38:38:7f:1c:43:5b:
aa:38:93:43:08:a4:50:e2:37:b1:f6:41:61:b1:cc:
48:a9:6d:52:a1:85:e5:ba:34:4c:bd:07:9f:aa:31:
69:2f:8b:72:fb:e4:a9:66:9a:05:5e:69:0c:e2:e9:
84:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:9E:01:F8:81:A5:23:5B:E2:14:AA:6D:D5:BC:5A:1F:89:69:CF:F5
X509v3 Authority Key Identifier:
keyid:99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:d7:51:f2:82:d8:e0:de:de:7c:ef:d5:31:86:7c:95:c9:9c:
5c:a4:08:b2:04:c5:b1:1f:f2:9a:7a:57:e1:f1:1f:a0:b8:1c:
a7:58:19:1c:a4:3e:c4:8f:02:3b:8a:37:e1:16:9e:3f:23:d8:
27:c1:7a:3b:af:c2:67:3e:9a:4e:21:a3:00:26:2e:5c:f4:77:
4a:83:64:6e:3c:82:66:fc:40:62:ed:0f:d5:71:5b:63:77:36:
15:36:13:ff:70:42:d0:a4:c4:64:f6:81:7d:0e:cd:53:4e:73:
e6:ea:14:31:32:8c:79:55:6f:c2:bc:9d:74:28:a6:61:5c:8d:
6b:60:5a:7f:74:06:0d:a3:3f:e2:40:19:80:9f:72:52:9a:85:
bb:37:65:8f:71:a8:c7:77:81:33:1d:0b:ca:71:d6:2c:4a:4e:
b6:c5:d1:61:e8:2d:8d:c0:d3:9b:1f:09:bc:e8:a2:3c:71:10:
22:2b:92:49:4f:56:15:cd:de:4f:90:1a:59:2b:f1:6d:93:08:
5f:26:93:43:fb:e5:ce:6a:fa:fa:c3:9f:7e:46:e9:8d:fb:e4:
a3:25:a9:c1:ce:9f:2c:f1:c3:7a:7c:67:0d:af:f2:a7:0a:50:
39:d6:f2:10:9d:50:a8:37:60:00:c7:ae:0f:74:1a:12:04:d3:
9d:51:15:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:01:14 2026 by rpki-client