Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
File: XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft (raw, json)
Hash identifier: 0AoLqUiApacmKtysvbFfvd7k6y66Rfdme44Ehsj6SOQ=
Subject key identifier: DA:24:40:D2:1F:31:9A:33:2B:60:12:C6:29:22:7F:73:C9:16:DE:6A
Authority key identifier: 5D:D6:C1:38:4B:4A:4C:A5:01:DD:33:C5:F0:D8:58:0D:44:16:EB:3A
Certificate issuer: /CN=5dd6c1384b4a4ca501dd33c5f0d8580d4416eb3a
Certificate serial: 019E1D592D12A3E4C9E25A4BC5E09AFDD171
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
Manifest number: 0600
Signing time: Tue 12 May 2026 18:00:43 +0000
Manifest this update: Tue 12 May 2026 18:00:43 +0000
Manifest next update: Wed 13 May 2026 18:00:43 +0000
Files and hashes: 1: XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl (hash: m/kUwgvDN0oMWKY2h4GsGnvNLXgM9/5eC+6IwkSwnok=)
2: x90dPkWW8REhzconoQULUI7Rl80.roa (hash: IZPztQukbhq4U8uDrkKMf9ofAgLjzhebtlSwoKIMZXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 18:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:2d:12:a3:e4:c9:e2:5a:4b:c5:e0:9a:fd:d1:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6c1384b4a4ca501dd33c5f0d8580d4416eb3a
Validity
Not Before: May 12 18:00:43 2026 GMT
Not After : May 13 18:00:43 2026 GMT
Subject: CN=da2440d21f319a332b6012c629227f73c916de6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:da:66:32:58:c5:2c:3e:d5:d3:8e:74:a1:c4:
5c:bb:4c:24:9a:ee:c7:5e:96:83:6e:1b:6a:d8:72:
a0:6d:88:bc:56:b2:b5:d0:47:39:9a:ce:54:25:55:
02:a4:2f:18:28:7e:3e:bf:eb:45:18:0c:d7:e6:b1:
a1:9f:8e:fe:3a:08:66:d1:97:4f:f0:f9:5a:74:55:
78:b5:d1:49:11:73:1b:c4:5c:59:bb:fd:ea:10:9b:
cc:83:1c:c7:ae:c4:67:64:60:94:8f:f8:8d:0a:33:
d3:50:99:6f:3b:3a:84:a6:d1:a1:1a:13:96:ab:7a:
38:1d:32:7d:0b:79:75:36:04:d3:b3:99:4c:74:ab:
9e:72:43:01:d5:b2:e4:e2:1d:27:b6:c7:2e:57:2d:
77:c4:f7:35:2a:ed:eb:4b:e3:87:1d:69:c4:c3:50:
e4:1d:de:42:fa:61:70:ee:bf:ca:c2:de:71:78:50:
57:15:77:92:36:6e:f9:88:00:43:11:04:81:eb:45:
c0:55:ea:54:3e:97:f0:60:e3:da:f2:2f:1b:ef:8a:
e9:f1:ad:7e:e4:c2:aa:d8:a1:12:b5:a9:d8:33:7a:
23:d9:9d:62:5e:d1:86:cd:c4:5c:b2:e4:50:f3:3e:
1e:44:78:76:82:90:a2:b7:9b:ac:28:98:76:23:04:
a5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:24:40:D2:1F:31:9A:33:2B:60:12:C6:29:22:7F:73:C9:16:DE:6A
X509v3 Authority Key Identifier:
keyid:5D:D6:C1:38:4B:4A:4C:A5:01:DD:33:C5:F0:D8:58:0D:44:16:EB:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:cb:93:b8:ef:97:bb:7d:2f:ec:43:ba:2b:7e:ad:7d:55:97:
79:46:bc:2c:5a:75:8a:94:a4:87:02:03:a1:62:65:29:48:46:
d0:01:3a:81:4d:1a:d9:b4:9f:bd:47:e4:f9:46:ef:c0:a7:c9:
d0:78:2d:5a:50:60:f2:15:77:99:5a:74:3c:7e:99:53:3c:f4:
57:bd:a0:b8:c3:d7:f9:8a:cf:45:f5:62:40:3c:08:e0:4b:fa:
76:f9:63:b9:93:14:5e:67:c6:16:77:50:5f:ad:fd:08:43:56:
11:eb:b7:29:97:09:98:82:d7:d1:78:dc:44:ba:0e:2d:91:f4:
37:30:ef:51:9a:51:59:5a:74:6a:71:de:e1:0e:d5:00:52:b6:
a4:79:e5:c3:31:08:7b:8c:89:f2:c1:86:01:81:dd:fe:d2:03:
b4:a2:ac:62:b2:0a:43:56:41:98:27:1e:da:5c:3a:d0:94:1e:
8a:65:e4:b2:d6:5b:ef:b5:7a:21:f1:2f:9a:38:e9:71:ce:5a:
31:fb:d7:6a:ab:e4:bc:e3:a4:fc:d5:18:72:87:2c:c4:16:a4:
75:3f:88:e7:60:df:85:19:c0:bd:70:06:a3:d7:b1:fa:ae:0f:
66:a3:3e:92:dd:0a:53:f4:56:20:ed:6c:5f:59:4b:2d:17:74:
ab:aa:e3:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:38:17 2026 by rpki-client