Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
File: XL1s2RrWpyhrIfZQn92fUP7nXYc.mft (raw, json)
Hash identifier: ztb2Hz5xkbROjC4rSBn8nHuFKvWE/2Ng2Q+E2DT6mY4=
Subject key identifier: 83:35:7C:30:92:84:25:E5:E9:44:E6:89:BA:9B:80:4A:C8:E6:90:4C
Authority key identifier: 5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
Certificate issuer: /CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Certificate serial: 019E1FEC44DD22CC29455F01F1FB8A6D93D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
Manifest number: 1834
Signing time: Wed 13 May 2026 06:00:38 +0000
Manifest this update: Wed 13 May 2026 06:00:38 +0000
Manifest next update: Thu 14 May 2026 06:00:38 +0000
Files and hashes: 1: XL1s2RrWpyhrIfZQn92fUP7nXYc.crl (hash: evWfQZNsP2R0ew/xc26R0Cw9ofDNHYcqIflj6hOXZM0=)
2: aJRCmul5cvMFEkfsWwNh6YKtWg0.roa (hash: scsks3FGlAv25a5TwoetFCR7muYAvHPLPp8bABvEfPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ec:44:dd:22:cc:29:45:5f:01:f1:fb:8a:6d:93:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Validity
Not Before: May 13 06:00:38 2026 GMT
Not After : May 14 06:00:38 2026 GMT
Subject: CN=83357c30928425e5e944e689ba9b804ac8e6904c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:31:ae:eb:3f:ae:04:42:07:eb:b1:64:ab:18:
66:04:c3:1c:b9:fd:01:c4:84:73:95:9f:0d:c6:04:
ae:87:ba:93:d8:31:67:f3:05:97:52:e2:89:f2:dd:
d0:dc:13:e4:5b:40:05:a5:a0:1f:9f:4c:36:29:e2:
83:9b:3a:7c:f9:45:13:e4:cf:bc:69:eb:29:9c:cf:
9a:8f:32:b0:f4:cc:1b:5c:84:ec:8b:57:cc:47:5e:
cc:8c:57:6f:9e:34:2c:26:f1:4f:f0:36:a6:76:0b:
a4:35:e7:61:70:11:52:b5:02:89:c3:e6:14:26:41:
59:d5:fc:5d:f4:9b:33:83:2d:70:7a:22:fd:5d:85:
6e:82:4f:90:c1:f4:4b:59:da:f7:18:6e:e0:16:e4:
3c:42:c2:bf:84:ea:e1:30:37:f2:57:f0:2f:b7:fd:
3d:2d:53:85:ad:93:59:7f:cc:30:b8:32:14:0d:52:
12:57:1a:64:c5:28:3a:4c:0a:3f:6e:4b:61:c5:5c:
33:3e:5f:9d:38:bb:70:ee:0e:ed:00:84:19:a0:44:
60:29:14:68:d0:6c:8b:d8:b7:a7:dc:e6:56:a5:a1:
e0:60:39:ae:5f:ac:73:8e:95:94:ad:d3:4e:b0:ae:
28:8c:a4:1e:95:86:cd:30:68:24:92:28:c8:a7:ff:
16:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:35:7C:30:92:84:25:E5:E9:44:E6:89:BA:9B:80:4A:C8:E6:90:4C
X509v3 Authority Key Identifier:
keyid:5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:4f:56:95:b0:2f:a7:ea:49:ba:21:a7:7b:95:a7:6a:72:e5:
7e:ca:ef:1a:9a:25:ae:8a:1c:22:4f:15:d1:c2:d3:f2:d3:f0:
c6:d6:c6:bd:0f:ba:ae:8c:fc:0f:ae:6b:86:27:86:78:9d:66:
43:5c:14:a3:bd:92:cb:7a:40:b3:0d:2a:2f:ee:49:47:d2:c1:
1f:22:da:c1:6a:a4:52:3c:32:6d:2f:90:ef:3c:9f:12:7c:d8:
19:da:6c:65:ee:d0:60:74:91:ac:42:63:c9:6b:fa:c2:76:ad:
30:ea:d1:1b:60:7f:a5:6a:76:7d:1d:5f:ba:a3:c0:43:39:03:
d6:f1:f5:42:0e:e9:b6:08:8a:46:b2:28:9b:96:36:d7:a1:8b:
f4:86:76:0c:d3:2d:14:1b:cf:85:29:96:a0:e2:98:84:41:91:
6b:f5:6e:84:75:d3:a8:33:36:ab:84:f5:4b:24:aa:8c:65:5b:
5d:7e:0b:18:bc:3d:d2:39:1f:9f:61:3c:ec:72:11:a7:27:bf:
f4:d3:7c:b7:9f:e6:33:ee:44:da:15:62:a2:bd:8b:b3:3d:98:
64:37:e5:d3:ee:2c:25:b0:1d:9e:98:d0:3f:26:ff:8d:2c:6e:
0e:28:01:84:57:41:77:db:af:c7:74:86:3d:f3:04:7a:74:88:
83:bb:89:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:39:12 2026 by rpki-client