Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json)
Hash identifier: 1ftsh4BdkDEX/1gSpF3SBmZW2VoJMC5THI7SrSY/v5I=
Subject key identifier: DA:68:72:EC:BC:00:51:FD:ED:AC:E6:D7:AD:53:F1:39:C1:42:A0:73
Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Certificate serial: 019E1F47819D7B167A75BC342094EB7B60DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
Manifest number: 190B
Signing time: Wed 13 May 2026 03:00:40 +0000
Manifest this update: Wed 13 May 2026 03:00:40 +0000
Manifest next update: Thu 14 May 2026 03:00:40 +0000
Files and hashes: 1: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: AmhdvpRWcbBVD5DOZEzVogsQcWGLgjMAUDoev1Lm430=)
2: z9U8nnktCizSYk1_4LI0Qkbtcns.roa (hash: POiizupDwGmr1N0Ok5nxERS6rP+EfVEg0CxJ8RCMqp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:81:9d:7b:16:7a:75:bc:34:20:94:eb:7b:60:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Validity
Not Before: May 13 03:00:40 2026 GMT
Not After : May 14 03:00:40 2026 GMT
Subject: CN=da6872ecbc0051fdedace6d7ad53f139c142a073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2e:9f:90:15:5d:17:f9:ae:7e:a3:35:3b:85:
3c:c5:59:08:c1:23:71:a6:d2:29:28:f4:47:4b:cd:
22:6a:4f:63:cc:5a:bf:9a:27:39:54:46:15:bc:51:
7f:55:cd:11:b4:87:07:04:70:c1:34:db:be:23:0c:
c8:8f:b1:72:1c:a8:ce:7e:e3:50:d1:56:d0:23:d9:
4a:6f:6e:e1:98:14:af:91:43:ac:b0:a9:cc:13:1f:
7a:54:a1:8d:64:6f:c4:1b:5e:d1:73:da:08:95:43:
a1:76:6a:77:2a:9a:ae:fd:70:8d:30:c7:b4:0d:fc:
ac:82:a5:9e:92:a0:c4:6c:a9:a7:ae:37:78:de:7f:
fd:b2:fe:8d:4d:52:41:31:81:08:15:b1:dd:9b:9b:
03:42:da:f8:dc:72:ef:f4:a2:4f:d9:93:96:04:a1:
03:74:73:64:c4:f6:d2:59:16:8e:33:3a:13:39:68:
ba:d8:05:29:7b:d3:21:ca:5b:e9:7d:cb:dc:05:7d:
ed:e5:89:ea:17:30:33:3e:e3:87:41:f7:c9:70:71:
44:3d:af:24:90:be:32:ac:d5:75:15:48:29:23:8e:
ac:a0:da:3b:db:90:be:53:d8:0a:80:97:97:8d:48:
f7:5f:f6:b8:20:de:b9:5e:0b:cc:8d:98:39:70:46:
21:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:68:72:EC:BC:00:51:FD:ED:AC:E6:D7:AD:53:F1:39:C1:42:A0:73
X509v3 Authority Key Identifier:
keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:bc:0f:c9:16:63:14:46:04:bf:c6:a5:81:0d:46:23:f3:f6:
43:95:0a:91:e6:5d:cb:5f:5d:77:ed:eb:8d:55:0c:9a:3c:c1:
46:ca:8d:b8:44:66:8b:6c:f2:a5:7c:0a:44:ae:54:8f:42:74:
f0:64:b9:8d:5e:a0:1c:96:96:c9:2e:7d:29:37:51:ec:fa:b3:
87:32:21:4f:00:80:e8:53:97:ed:6e:2d:77:d2:23:56:0a:9c:
7a:0e:b9:03:f1:49:f2:71:76:e0:fd:d3:14:67:c3:ce:9d:e8:
62:56:01:07:a3:19:2d:99:a3:75:47:ae:10:59:18:81:14:d5:
8b:62:cf:c5:cb:fd:36:17:0e:8d:92:3e:91:13:60:2d:e6:53:
8b:cd:c5:30:d3:2f:c5:f1:eb:3a:c7:60:cc:ab:bb:ab:00:02:
bb:fd:67:c0:da:13:0c:07:a6:69:40:b1:d1:a1:22:4d:57:24:
b6:84:63:78:00:8b:2b:8e:44:42:b3:ba:e6:20:be:97:54:df:
20:78:bc:1c:a4:6d:a1:b6:a0:74:0c:f6:61:b4:5f:30:c0:89:
6b:ea:fb:97:1e:55:38:5c:fb:db:02:2a:43:ef:d8:09:3e:cb:
aa:dc:9d:55:74:df:94:55:cf:69:eb:fe:78:a8:cf:c3:3c:27:
61:eb:92:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:15:52 2026 by rpki-client