Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
File: xU3YgoUsxFhrH-40wFAdXbfWDws.mft (raw, json)
Hash identifier: f7BF0UTQ8lpu0XnUEfJv7N6J9n3mGg9RQJ9bkgRbcR0=
Subject key identifier: AF:DD:2F:25:9B:02:86:EB:AD:0E:AB:9C:81:8A:11:4F:03:74:9D:DA
Authority key identifier: C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B
Certificate issuer: /CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b
Certificate serial: 019E1F4788BFB2E51C34B80BA76A3436F473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
Manifest number: 0ACB
Signing time: Wed 13 May 2026 03:00:42 +0000
Manifest this update: Wed 13 May 2026 03:00:42 +0000
Manifest next update: Thu 14 May 2026 03:00:42 +0000
Files and hashes: 1: 73qIjcwhVoNUSh6y8S9vmR-78LI.roa (hash: W2dcEwkCBgOixH5r0yINyyX7ud/0OMWWSsCwZ1EhRwo=)
2: xU3YgoUsxFhrH-40wFAdXbfWDws.crl (hash: Gy/sX5V/mIRrLcWT09dmxNaE0fOVoHe8KPWvOnha4zk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:88:bf:b2:e5:1c:34:b8:0b:a7:6a:34:36:f4:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b
Validity
Not Before: May 13 03:00:42 2026 GMT
Not After : May 14 03:00:42 2026 GMT
Subject: CN=afdd2f259b0286ebad0eab9c818a114f03749dda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:61:dd:ba:4f:97:3a:c3:10:36:2c:56:ed:b3:
7e:7c:77:60:61:30:4b:bc:c5:4d:a6:24:31:09:46:
bc:ed:97:21:30:a9:6a:32:33:71:f3:79:24:82:a6:
23:9e:63:d4:ff:67:08:a1:dd:82:2c:7b:8d:aa:aa:
27:62:d7:22:ec:14:1d:d9:64:91:14:89:f5:13:57:
c4:be:45:82:80:50:47:11:63:9d:d3:e3:e0:10:ba:
16:4c:aa:95:73:19:2b:01:cf:99:7f:bb:60:76:c2:
08:b7:fd:69:09:1e:7b:87:85:41:9a:c5:80:72:3d:
aa:4b:d7:de:f9:8a:d7:ac:19:b4:9b:38:d7:27:1c:
5c:05:0c:57:ec:26:c3:a4:2f:4a:2f:84:8b:84:a5:
eb:06:8b:02:c6:ff:6f:e7:8d:00:60:43:5a:fb:51:
7c:91:a7:14:8d:bf:a9:6e:79:5d:79:a8:9c:02:33:
d8:11:dc:a6:86:36:be:5e:cc:55:41:a0:4c:18:71:
86:52:f1:7c:0a:f3:f0:cb:cb:1c:c1:07:b4:42:f1:
e9:dc:c9:38:9d:98:29:ff:f9:0e:94:9c:9c:20:09:
e1:d5:1c:2c:64:e6:7a:e4:e8:64:f4:cb:96:c5:9a:
30:aa:a8:ec:95:03:55:71:fd:de:a2:ab:d0:cc:8e:
88:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DD:2F:25:9B:02:86:EB:AD:0E:AB:9C:81:8A:11:4F:03:74:9D:DA
X509v3 Authority Key Identifier:
keyid:C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:91:f0:12:e1:cf:96:cc:7c:6b:6a:df:a6:ab:1d:8b:ff:11:
4a:9c:e8:da:d3:be:bf:04:3c:0c:d5:93:be:c2:b6:16:b1:13:
11:63:b4:3b:a5:ee:15:2e:4a:f3:6d:27:5a:93:18:1b:4f:e4:
b7:8e:79:65:48:69:f0:96:9b:2a:c8:7b:6c:c0:a1:0b:b2:00:
52:dc:cc:95:71:6a:26:53:ea:d1:49:10:a6:e0:6f:18:93:89:
4c:2e:56:26:42:e4:25:92:6c:b4:3c:bb:df:f3:14:fa:3b:c7:
e9:c7:39:85:b5:f8:3f:2c:f9:29:83:51:60:36:24:d2:ad:2d:
51:d1:b4:b0:92:f1:0b:f3:19:a8:60:b7:65:f3:0b:4d:dc:03:
d7:dd:3c:47:37:7a:c1:23:94:fb:dc:7c:5e:58:b5:89:49:49:
95:45:9f:d6:32:34:77:8f:b4:3c:f9:1a:81:58:2b:c6:aa:6e:
d3:d2:0e:91:2d:e8:2d:f5:cc:b0:11:d6:4e:47:43:5f:55:35:
1b:24:4b:bb:1f:26:89:fb:0c:5c:88:99:01:5f:57:85:b3:3c:
57:05:90:bf:93:20:e8:ef:a9:23:d9:fe:e9:1b:5a:3c:f4:fd:
99:e9:b6:3f:ff:c2:e0:97:17:e5:61:a2:c1:cc:56:df:54:a2:
bf:e7:69:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:12:56 2026 by rpki-client