Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
File: XKn3Xcos07OTU-AwCzC6W2KXais.mft (raw, json)
Hash identifier: lK+DqraIf/RPa+ZUe4jnGSRzvWGGB770Xs9RHGt2UGQ=
Subject key identifier: 05:AC:7D:99:85:04:35:0D:67:BD:91:F9:6C:87:7D:87:A3:A3:D8:A1
Authority key identifier: 5C:A9:F7:5D:CA:2C:D3:B3:93:53:E0:30:0B:30:BA:5B:62:97:6A:2B
Certificate issuer: /CN=5ca9f75dca2cd3b39353e0300b30ba5b62976a2b
Certificate serial: 019E20918705F8BCE200C365F2EE20FF5635
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
Manifest number: 0C91
Signing time: Wed 13 May 2026 09:01:08 +0000
Manifest this update: Wed 13 May 2026 09:01:08 +0000
Manifest next update: Thu 14 May 2026 09:01:08 +0000
Files and hashes: 1: O93rUG0ldryuh9-LYis7w6UfO1w.roa (hash: ojZEmISFm5RdmO2THEEsy3HBhCvY1rlDIunZCRL5byg=)
2: XKn3Xcos07OTU-AwCzC6W2KXais.crl (hash: pE+oOcwgUHBYrHaYYzJQPG+++7QGCA8ETJcK6G2uyt0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:87:05:f8:bc:e2:00:c3:65:f2:ee:20:ff:56:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ca9f75dca2cd3b39353e0300b30ba5b62976a2b
Validity
Not Before: May 13 09:01:08 2026 GMT
Not After : May 14 09:01:08 2026 GMT
Subject: CN=05ac7d998504350d67bd91f96c877d87a3a3d8a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0b:73:86:c4:d3:e3:4e:dd:a0:00:5a:36:f2:
97:06:9d:50:a2:d6:43:e5:0e:56:12:68:0a:ca:50:
3d:aa:c3:42:6a:3e:6d:9c:0f:35:da:d1:b5:a0:4e:
79:fb:1a:5e:e4:03:1d:f0:1f:1b:ea:95:73:96:f7:
78:7b:a1:d1:82:e8:da:67:fb:77:4f:5d:9c:8a:79:
4a:b0:5e:df:6c:7b:f6:c7:97:6f:69:6f:06:c8:99:
62:86:68:58:40:b5:70:d1:e2:60:34:2a:e4:84:bb:
30:9d:d3:c3:9a:2e:db:45:95:9f:24:00:7f:18:39:
ce:6a:15:7f:f9:71:1a:2b:a1:4d:54:2c:eb:24:81:
84:53:78:6a:fb:2e:8a:1e:ad:09:b2:77:c7:95:fd:
16:ee:f4:93:6a:8b:68:61:c6:59:9f:c9:63:45:29:
de:b7:dd:75:cf:eb:a6:91:d8:3d:73:ee:bc:9c:f0:
93:c9:f8:5b:16:f4:21:d7:02:6a:e0:0a:0b:85:b0:
da:30:e3:cd:2c:da:00:56:87:f6:1b:44:59:cf:7b:
98:38:cb:77:a8:c5:13:c1:89:37:ac:1a:61:58:62:
07:46:62:ec:00:b7:bb:56:a4:95:5a:1a:da:17:99:
16:a4:6d:8a:07:11:26:85:4f:c1:6b:94:d3:14:8d:
44:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:AC:7D:99:85:04:35:0D:67:BD:91:F9:6C:87:7D:87:A3:A3:D8:A1
X509v3 Authority Key Identifier:
keyid:5C:A9:F7:5D:CA:2C:D3:B3:93:53:E0:30:0B:30:BA:5B:62:97:6A:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XKn3Xcos07OTU-AwCzC6W2KXais.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/105433-83d9-412c-9fc4-1d51c468d556/1/XKn3Xcos07OTU-AwCzC6W2KXais.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:b0:4e:a5:26:a6:d8:aa:6b:85:42:d4:c6:97:7b:36:30:69:
56:8c:a8:e4:99:77:1c:47:69:71:d1:c4:01:40:06:da:49:72:
db:2b:3f:67:fc:c3:c5:6d:87:86:a2:32:71:36:af:84:ec:a3:
f2:d7:5f:89:43:69:b8:34:96:62:6a:c0:f9:29:a3:08:f1:d0:
89:b0:df:a8:61:99:e1:ec:75:28:f8:ac:2f:24:70:99:94:4a:
7d:99:d4:f9:12:30:cb:bb:ee:4e:ba:c3:19:f5:f7:a8:87:ff:
fb:3c:79:ae:7e:af:97:b1:0b:61:93:bf:82:f4:b8:d7:68:a0:
30:a6:f0:82:dd:87:d9:f2:2a:7a:82:eb:c3:7f:53:52:fe:ce:
68:0b:4b:db:38:fc:d0:b0:3e:3f:4d:35:31:e2:75:f2:1c:8d:
49:61:69:45:31:54:d8:8f:39:01:cc:49:04:5f:54:3f:7e:2d:
34:a4:24:17:f6:09:18:16:56:ae:bc:9c:b0:dc:3c:d2:ac:98:
4b:e0:9b:03:34:98:1a:39:f3:5f:02:f8:d9:65:e9:79:a8:c2:
0b:f8:b0:30:da:b3:62:ce:8d:6c:72:80:0e:dd:ce:2f:8b:ef:
88:d7:28:c3:51:a6:4e:ce:d7:dc:1c:aa:e6:8e:cd:d2:b1:41:
c9:bc:f1:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:15:41 2026 by rpki-client