Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
File: xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft (raw, json)
Hash identifier: T7MWrS2JNIdjl31BVNgHmqXYhAjijGcYM1dRzk6Z3Og=
Subject key identifier: 2C:DA:09:C9:76:57:B3:1F:32:A1:B6:59:B0:1E:C6:85:48:49:A3:63
Authority key identifier: C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B
Certificate issuer: /CN=c6c00c553a54da05b93635a654cada03c6d9df2b
Certificate serial: 019E1DFE5B06E30DD636F8E1519349EE7651
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
Manifest number: 09D8
Signing time: Tue 12 May 2026 21:01:09 +0000
Manifest this update: Tue 12 May 2026 21:01:09 +0000
Manifest next update: Wed 13 May 2026 21:01:09 +0000
Files and hashes: 1: 5Vieq-wulwB6FaJx0xDN_dm4FF4.roa (hash: QYUnQtWcGZ16DHSfHYt9mKOqdeXlb5mTBtNDg7p01bA=)
2: xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl (hash: 83x1uLWriG3waumOCt6zaoweq6NqZI3i5DiHoJhrx6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:5b:06:e3:0d:d6:36:f8:e1:51:93:49:ee:76:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6c00c553a54da05b93635a654cada03c6d9df2b
Validity
Not Before: May 12 21:01:09 2026 GMT
Not After : May 13 21:01:09 2026 GMT
Subject: CN=2cda09c97657b31f32a1b659b01ec6854849a363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:59:4a:9f:a2:3a:f1:48:ec:d6:62:ed:4f:40:
7c:48:46:49:1b:8b:5d:9d:d0:47:ba:25:61:12:4a:
3b:e6:8b:a4:c6:10:91:65:cf:68:8d:e4:05:30:2e:
29:d6:58:86:17:c0:f1:6a:6c:ef:8e:03:1d:f1:06:
c6:67:4c:a0:95:9b:e3:c6:ba:ff:5c:4e:09:c1:47:
20:fa:b7:d8:94:cd:a0:7c:3b:9b:53:39:d4:cd:65:
ce:1d:c2:8a:88:bc:b5:1b:1b:3b:82:80:23:b3:df:
be:c7:64:18:a7:22:07:6f:f0:52:20:97:76:82:b0:
5f:03:1b:31:28:a1:05:d1:d3:a8:18:c9:c6:e4:32:
2f:41:b6:9a:20:f9:55:27:93:d2:43:b7:f7:e7:8c:
07:da:69:37:fc:1f:52:24:be:b7:06:7c:b6:95:fe:
24:09:a6:53:b0:63:c2:68:bb:c7:7d:88:94:31:0c:
ec:1b:cf:b1:b5:2c:46:0a:ff:8b:9b:43:44:3c:6b:
d6:a2:31:e9:4e:a2:ce:11:c0:1d:e3:7b:b6:d4:5d:
c1:0b:37:25:24:51:6a:76:32:ec:00:f5:7e:87:9a:
3a:ea:ba:f1:be:18:26:b3:6b:96:af:22:cc:35:ca:
3b:67:5d:32:e1:09:a8:9d:fe:8c:6b:fd:28:79:da:
ae:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:DA:09:C9:76:57:B3:1F:32:A1:B6:59:B0:1E:C6:85:48:49:A3:63
X509v3 Authority Key Identifier:
keyid:C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:59:22:15:1b:4a:74:9c:fd:14:47:97:12:af:0f:3d:f5:76:
b9:ea:80:0d:46:d3:1c:46:42:1f:38:59:5a:ff:fb:42:1e:69:
3d:85:92:39:8a:48:15:38:ee:14:99:e3:15:17:b4:56:f7:89:
eb:2f:3d:77:39:6a:60:7d:52:b5:72:d8:95:02:a6:72:68:5c:
68:8a:1e:59:00:8b:a4:2f:15:c4:b7:39:c5:b3:0a:bd:78:35:
a8:96:2c:0f:cf:a5:9d:84:60:94:cf:24:4d:3d:82:a7:0a:02:
0d:60:10:70:c4:d5:89:37:79:bb:7f:14:63:db:1c:17:92:a0:
c6:11:b2:45:70:3c:ad:63:1c:61:3a:7f:c4:6a:aa:8d:59:38:
32:fb:10:5d:f1:bc:c0:74:c6:69:b1:2e:68:31:4c:52:6d:2c:
fd:d8:d6:8b:b0:85:b0:d9:68:7f:77:5b:0d:e8:96:74:3c:98:
25:07:b3:4c:af:e1:32:1e:43:e9:55:d1:61:3e:4d:c5:1d:ad:
05:6d:6a:46:b9:f9:84:2f:ac:49:75:e2:2c:c6:80:fc:06:97:
f5:1a:ae:d2:0f:63:e6:b9:f8:71:e9:d8:68:9a:74:85:92:85:
2a:1f:a0:10:ad:83:98:31:52:6f:88:cf:1c:f9:e2:5d:b0:c6:
da:6f:58:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:32:37 2026 by rpki-client