Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
File: XNhYOyEXQQSea7GalG2DGqvxGtM.mft (raw, json)
Hash identifier: ypUwwyKhvdcurCX9kVUMXwl6ZG1QOf08I+yG9c9wd0Q=
Subject key identifier: 0D:DB:92:CC:27:32:D7:A3:3D:03:EF:4C:E1:FE:0F:AC:59:D5:AA:6C
Authority key identifier: 5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
Certificate issuer: /CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Certificate serial: 019E20915907664575738B0B74E84BA7608A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
Manifest number: 1849
Signing time: Wed 13 May 2026 09:00:56 +0000
Manifest this update: Wed 13 May 2026 09:00:56 +0000
Manifest next update: Thu 14 May 2026 09:00:56 +0000
Files and hashes: 1: S2GzX7bjyNfk8zuc_J7yDO8r8_A.roa (hash: 9cgwTQAZVGZH9VKGn5dJT7UJ2jaArnzhzVtmHDdrHjU=)
2: XNhYOyEXQQSea7GalG2DGqvxGtM.crl (hash: 0NcmQbT70IpaGyYQ+H+FnS1SkI2RD4l1Mq85LA5jKUs=)
3: rSchH_WpkAQtklBw4R5ArVw7Etg.roa (hash: FQrYCtK1inx5vQ38kiI4C/z5+zK3xo4th9Fjypdt9nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:59:07:66:45:75:73:8b:0b:74:e8:4b:a7:60:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Validity
Not Before: May 13 09:00:56 2026 GMT
Not After : May 14 09:00:56 2026 GMT
Subject: CN=0ddb92cc2732d7a33d03ef4ce1fe0fac59d5aa6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fd:ff:e9:33:7b:bd:fe:56:31:26:4f:b0:82:
c9:2a:a9:7d:b9:e0:21:de:32:f0:e5:0f:9f:90:b8:
48:7a:c5:63:a0:92:14:40:9b:6d:48:36:6d:40:4c:
40:e9:06:28:af:ea:62:e9:38:a4:fa:25:ab:67:ba:
1d:94:41:7c:6c:eb:64:31:67:00:c2:4d:8f:37:6f:
bb:31:7f:e0:05:4e:ec:bf:ed:ca:8c:52:b7:e5:12:
e6:fb:c2:eb:60:e9:0a:24:54:84:bb:b6:be:71:68:
d8:f0:d7:e9:6e:74:0c:b9:df:19:44:4a:fb:e0:4c:
46:1a:0b:c5:45:26:b5:d0:97:bb:fd:29:5e:bb:10:
ef:26:f4:e8:53:d1:bf:86:64:41:84:06:42:fc:5d:
9c:d7:eb:ed:47:eb:3c:c3:ce:dd:4a:2b:6c:1e:93:
00:e9:e3:16:33:28:de:de:64:5e:06:2e:52:10:87:
e6:51:35:da:48:1e:f4:7f:c7:e7:e7:ac:fd:06:4e:
ca:73:35:93:a1:e0:8d:b4:42:b8:04:af:01:32:5b:
61:35:7e:70:35:fd:6e:d5:a0:95:4c:33:59:78:53:
b2:3f:b6:bd:a7:90:cd:cf:9c:e0:95:aa:6f:65:7e:
63:0e:8d:29:ad:11:46:76:37:07:9b:9e:ac:a2:99:
79:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:DB:92:CC:27:32:D7:A3:3D:03:EF:4C:E1:FE:0F:AC:59:D5:AA:6C
X509v3 Authority Key Identifier:
keyid:5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:87:d1:a4:99:48:ea:df:ce:f3:06:62:85:3d:91:12:f3:2a:
73:c5:7b:6b:59:9b:31:26:e1:0d:27:8a:a0:0c:a8:78:c3:19:
20:b8:30:06:eb:f3:71:e8:c0:e8:5d:5c:bd:c8:fa:d3:98:f5:
ff:0d:42:58:93:7d:46:b6:14:05:27:a2:ce:2c:54:da:02:fc:
00:3f:1f:88:06:38:6d:2a:23:5e:5a:76:99:78:0b:0c:5c:99:
19:58:6d:a9:82:5f:84:db:de:69:b9:78:e8:fb:99:70:66:5c:
2f:1b:30:e8:a5:4d:77:d3:9f:6e:c6:38:77:a9:31:79:cf:92:
5b:8f:cc:d3:ff:40:80:fb:22:1e:c8:0b:aa:45:c5:ff:97:08:
da:f2:ee:c3:21:07:59:ba:4b:5b:d0:36:1a:dc:65:5d:b3:9d:
8a:29:09:ff:56:b8:14:c3:78:f2:06:4c:c5:aa:9e:c6:a2:9f:
d1:ec:fc:d3:92:8a:6b:34:0e:bf:54:3b:cb:ab:85:b9:35:5c:
21:75:e8:81:ac:7c:11:42:74:09:8a:a8:8a:14:2d:e9:df:d9:
eb:8f:59:6d:07:55:09:58:35:1b:27:6f:c8:5a:9c:ff:4e:75:
2b:a0:69:be:d1:d3:a3:d1:5e:05:95:32:cb:e2:6f:81:bf:07:
05:e4:87:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:05:02 2026 by rpki-client