Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json)
Hash identifier: 9p5/Upxu9QFWHt0mKVV39NyJ0acs5UWLhQk5f/OQHR4=
Subject key identifier: 1D:4A:C1:4A:17:5A:DF:14:60:98:26:2C:DA:4A:76:CC:2E:B9:F8:27
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 019E1D90E7F198D811D708CF1874D06CB2B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
Manifest number: 10B6
Signing time: Tue 12 May 2026 19:01:36 +0000
Manifest this update: Tue 12 May 2026 19:01:36 +0000
Manifest next update: Wed 13 May 2026 19:01:36 +0000
Files and hashes: 1: 2Nc5AsSnBWzCuxjbHnI5SDdmCKE.roa (hash: IY9E1+Z/A+D4/xzAfwUZ6RBDyrzbb4T4cIqPhChpPt8=)
2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: 791VFT9xv5nRV5lnEG4VhsBCNHdHdqqRoHRlp/4LN1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:e7:f1:98:d8:11:d7:08:cf:18:74:d0:6c:b2:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: May 12 19:01:36 2026 GMT
Not After : May 13 19:01:36 2026 GMT
Subject: CN=1d4ac14a175adf146098262cda4a76cc2eb9f827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b1:f2:09:6c:f0:bc:e8:fc:06:bc:8d:36:6c:
98:b2:28:d5:91:02:7c:1d:35:92:45:c8:15:39:6c:
c6:26:1b:8d:9b:e2:c4:c2:1f:03:0a:f9:80:da:52:
ca:6e:e7:10:27:bd:a9:97:61:b8:39:bb:2a:7e:cf:
64:3d:c2:78:43:c8:84:51:16:70:f5:58:9a:fa:6b:
6c:be:c9:f9:a1:68:3e:25:1f:5d:3e:ca:2b:b0:78:
c3:af:9d:54:31:42:21:ba:5f:9d:c8:ea:98:f2:ce:
cd:ce:6c:82:13:08:28:c4:5e:f8:9c:8f:ec:4b:81:
67:f0:03:f4:d5:36:7a:2d:7a:84:ff:8c:8e:f9:55:
12:44:ce:07:d1:cf:d1:03:e1:33:b7:e1:49:53:ba:
81:7b:d8:a7:32:85:fb:47:d1:20:d0:84:e7:7a:d0:
20:86:e6:c0:ca:19:5a:35:ec:58:3e:f0:87:8c:d7:
88:7f:db:0c:6f:5e:af:59:e4:08:c3:c3:b2:25:b5:
ff:1c:7d:9e:1f:41:94:c7:d3:24:c8:2d:d5:f7:90:
c0:f5:45:64:df:1b:97:92:bf:82:b1:ec:1a:b0:ea:
1f:f9:16:6f:cc:5a:0b:0d:f5:3c:c4:9e:89:bd:d5:
3e:90:26:ee:11:9f:93:33:9e:d0:9a:66:08:45:bf:
48:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4A:C1:4A:17:5A:DF:14:60:98:26:2C:DA:4A:76:CC:2E:B9:F8:27
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:ba:fc:ef:be:08:9f:73:da:85:1a:6d:84:46:fa:cd:29:ee:
ae:6a:8f:30:7f:57:bf:4d:0c:b1:82:c6:06:6a:7b:4e:30:65:
b8:6c:16:f6:36:86:62:df:99:eb:3a:ca:ed:df:b3:a2:f4:81:
7d:4a:aa:d2:32:0b:ee:8f:86:59:d0:be:b3:a8:8c:9f:44:a1:
99:d1:31:47:4e:f9:30:4c:30:2f:16:5d:ec:2e:bc:e8:f3:9d:
54:d6:05:4f:f9:22:0e:cf:3e:3b:08:83:b0:21:df:88:19:73:
d6:38:4a:fc:38:63:c7:ba:0a:e0:39:8a:62:cc:25:3c:fe:63:
d0:ac:14:fc:30:89:cb:1d:03:8d:06:d7:18:a0:5a:da:03:10:
1c:53:4f:db:83:ee:ef:b9:e5:2b:42:59:d2:3e:ed:7d:95:d7:
f6:0b:ae:45:d8:cf:53:67:34:3e:d5:4b:0d:34:32:cc:d3:ca:
1e:a5:6f:15:bc:dd:de:6b:bd:f8:a1:f5:73:c2:74:ce:c1:c2:
0d:4e:56:bf:7a:0b:6a:57:38:2c:0d:65:e4:d8:03:4e:c0:ae:
56:ed:fe:f2:ad:41:3a:21:3d:37:5a:da:4b:f1:20:33:c5:89:
aa:a0:f5:43:74:ce:3a:4e:85:97:c2:53:f2:af:e3:f2:10:6a:
fe:30:09:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:33:22 2026 by rpki-client