Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
File: Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft (raw, json)
Hash identifier: yAm1l2kDv/ydqfFAEcNKU/3mq7ppwM6mCPmFVT31O7Q=
Subject key identifier: F4:15:42:19:3A:24:E1:85:91:CD:80:01:FB:05:43:04:FA:BB:50:FE
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 019E1D2261583D378A470F51A43A6E848DFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
Manifest number: 191F
Signing time: Tue 12 May 2026 17:00:52 +0000
Manifest this update: Tue 12 May 2026 17:00:52 +0000
Manifest next update: Wed 13 May 2026 17:00:52 +0000
Files and hashes: 1: 3M28JHI7FacsIOAJQWmxce2Slr8.roa (hash: YkTIvgr/OPBfSq7cSMGcukiH55SIyz1JhUaAuApclZY=)
2: Gk3x3dMvMywr2S8J1gmXYe0hnoU.roa (hash: /bwOAvbGES0zjJv2PTCP3py4NDDoCXEMIJubC3y4gDQ=)
3: IK5t8ZtR9FmBC9B2Oc1q_FzsZ60.roa (hash: 99eWXzzKhZzYTyaPK2nn6KPekh7aMTWJKB401rZwNvg=)
4: Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl (hash: 0iVn5Rl0VetIaiP4VvGm7JS74mQPnGQEqauW4c+Ot+k=)
5: aqoU9zJ3XearIjlOINJlmfcvvuw.roa (hash: Sz6yVgzziCuFuMg8Vphcvorcn0t0kQDujyZ/W1bGUWw=)
6: jXdcvBqCE8rVio9YNuEiuZYnuIo.roa (hash: ZtkqLvQ4ehKRiTxaMSbbV1v3/KL7Hxac2TJ9AgS/V8k=)
7: khD-5GIOCtdSW94SprlTc6aKDCw.roa (hash: 9g8S387WfYIRLJ6x0iTubqGcDstg4uHac2ZeVMN70tA=)
8: qH5fLLWJkV1VZnXKxFAToZGD4BA.roa (hash: gujwjiPUnMht5bxbQJ8geZbpehgQ8vnJKIXcFg1nhbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:61:58:3d:37:8a:47:0f:51:a4:3a:6e:84:8d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: May 12 17:00:52 2026 GMT
Not After : May 13 17:00:52 2026 GMT
Subject: CN=f41542193a24e18591cd8001fb054304fabb50fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b2:04:25:5a:da:88:8a:7b:6f:f2:25:06:e8:
6e:ee:86:cd:ad:65:2d:0e:53:8d:3c:0e:14:45:56:
9c:a2:a3:38:45:a1:c6:f8:db:57:23:b7:ec:ab:8c:
d2:6a:49:51:c4:c2:92:91:33:4e:07:99:37:0c:94:
40:a0:c0:ed:20:2d:69:bf:a0:e9:95:a6:ec:86:ac:
ba:ed:f7:4d:f3:7b:80:4f:b4:d3:ac:44:81:de:37:
2b:9b:e6:c9:60:08:04:84:ce:20:24:dd:1c:1e:73:
a7:f7:10:7c:32:59:e5:4f:7b:33:55:c6:80:ba:e2:
79:17:dd:49:b7:5f:ba:fe:92:4f:c1:69:47:dd:f9:
f3:1b:45:47:e8:96:4b:a8:82:4f:80:98:af:13:a5:
ca:d5:11:1b:18:77:6f:d2:51:89:88:46:32:fa:bd:
74:17:17:e5:95:d5:7d:e3:38:19:ce:0f:42:b9:de:
7b:32:d8:8b:e3:b9:33:02:34:44:36:c2:7a:c7:57:
e8:0f:95:e3:44:66:96:44:1c:89:c3:38:6e:63:e0:
ec:8a:de:f3:23:e8:b8:3f:6e:c0:a5:c1:50:80:a9:
c5:66:a2:26:bf:b5:4f:11:f3:c8:96:b5:bf:6c:64:
c7:85:44:de:71:2b:e8:55:71:9b:43:6b:ed:00:ae:
fc:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:15:42:19:3A:24:E1:85:91:CD:80:01:FB:05:43:04:FA:BB:50:FE
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:5d:97:63:c0:3c:da:02:0c:b0:66:2a:6e:b5:57:97:a6:cb:
40:73:ed:75:2d:67:ae:40:1b:df:ef:3f:02:4f:27:b6:99:d9:
a7:78:f3:ab:88:4c:64:9d:c7:eb:5b:a9:e2:a3:b4:d4:1b:67:
bf:11:01:8c:34:4c:c2:fc:2b:2b:66:75:df:b1:5f:ce:e5:d5:
b6:27:50:a1:84:ed:8a:9b:bc:22:5d:72:43:e9:c4:44:56:7c:
ae:6c:ad:5d:56:bb:5f:e1:35:9d:d7:c4:64:96:6e:32:54:fd:
27:4e:79:26:59:aa:f7:8a:e7:75:80:d2:1c:f4:2d:4d:ae:de:
cc:b8:5b:d9:84:1d:ca:21:7e:6f:b5:5c:e6:20:f8:05:1b:03:
8f:05:e6:e0:34:a9:a6:cd:88:dc:ae:cf:7e:92:f9:39:2c:cd:
c7:ba:bd:6f:41:95:9e:f6:1e:0a:27:13:38:5b:1e:43:4a:3a:
0e:e6:b8:9e:1e:d0:9b:41:84:3f:84:bc:75:f7:71:30:9f:44:
35:c7:85:b6:74:5c:ba:79:2b:95:88:55:9f:10:2a:5c:9b:9c:
5a:36:13:a5:90:61:bd:72:40:a0:25:26:35:b6:5b:f4:ee:33:
67:01:b8:e2:42:c6:d8:76:3b:7c:ac:63:3c:f4:71:94:36:7e:
fa:3c:63:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:19:57 2026 by rpki-client