Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/14f367-3b9e-49d4-9686-2ea8ace5b95e/1/xU9qEXeCbFq2S9OvATiptXpLkeU.mft
File: xU9qEXeCbFq2S9OvATiptXpLkeU.mft (raw, json)
Hash identifier: d2kRvZOsz/kHqCbV1OVy3ttu72L5XNQrKGZHTM9HPmA=
Subject key identifier: 02:EF:7D:7E:0F:97:C3:26:3D:C1:8D:17:DC:33:4B:4A:CB:3F:AC:88
Authority key identifier: C5:4F:6A:11:77:82:6C:5A:B6:4B:D3:AF:01:38:A9:B5:7A:4B:91:E5
Certificate issuer: /CN=c54f6a1177826c5ab64bd3af0138a9b57a4b91e5
Certificate serial: 019E1E355B3DA697F31D363C9A1DE4BDC282
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xU9qEXeCbFq2S9OvATiptXpLkeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/14f367-3b9e-49d4-9686-2ea8ace5b95e/1/xU9qEXeCbFq2S9OvATiptXpLkeU.mft
Manifest number: 0198
Signing time: Tue 12 May 2026 22:01:13 +0000
Manifest this update: Tue 12 May 2026 22:01:13 +0000
Manifest next update: Wed 13 May 2026 22:01:13 +0000
Files and hashes: 1: AAL-YY9GVuWqbLX5GG1k3ImctWA.roa (hash: dOcDqpARrTucPUNtlVinnlKcwBaTZo2MLnDCrG84YIw=)
2: xU9qEXeCbFq2S9OvATiptXpLkeU.crl (hash: ztcvu+2ZqqiAn0bkruU08bYoYcZU7pw+5f7LdIxHocw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/14f367-3b9e-49d4-9686-2ea8ace5b95e/1/xU9qEXeCbFq2S9OvATiptXpLkeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/14f367-3b9e-49d4-9686-2ea8ace5b95e/1/xU9qEXeCbFq2S9OvATiptXpLkeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xU9qEXeCbFq2S9OvATiptXpLkeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:5b:3d:a6:97:f3:1d:36:3c:9a:1d:e4:bd:c2:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c54f6a1177826c5ab64bd3af0138a9b57a4b91e5
Validity
Not Before: May 12 22:01:13 2026 GMT
Not After : May 13 22:01:13 2026 GMT
Subject: CN=02ef7d7e0f97c3263dc18d17dc334b4acb3fac88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e3:1b:6d:c8:02:7c:de:72:11:0a:40:35:e7:
7f:ca:0a:aa:a1:20:a1:a2:9e:6c:c7:62:8a:dd:12:
c9:db:3a:f9:3c:f6:d3:c8:78:55:a1:7c:b9:41:b3:
fb:11:76:24:4f:cc:0e:d3:b1:71:f1:f3:c7:62:ce:
b8:5a:4f:ae:c5:de:f7:dc:16:70:90:4c:35:48:d3:
6f:c6:cc:cc:54:86:42:38:f7:41:06:9b:9a:de:1c:
ee:3d:7f:46:b9:af:a6:09:67:fd:81:6a:bc:04:bd:
15:80:4e:ac:ff:00:e0:1d:a5:ad:10:2b:29:32:75:
4c:83:91:fc:18:8e:ec:1f:68:e0:75:e9:b3:15:44:
61:77:c4:0b:14:49:6e:25:7b:3d:cc:6d:3a:75:1b:
79:db:8d:fa:76:54:06:a6:fe:c7:71:95:40:e6:52:
6a:62:70:ba:cb:8d:ba:87:bb:10:d3:7b:46:df:54:
c7:1b:e4:27:c1:ff:8e:d1:c3:1a:92:9c:e6:16:62:
b0:c8:36:7f:bd:e4:8d:4e:a1:6d:ac:c9:32:45:1a:
81:bf:de:05:a3:bd:d2:cb:34:16:5a:53:bf:70:f2:
0f:4f:cc:61:65:b1:49:d3:7a:6d:e7:07:f8:6f:4c:
13:5c:fc:39:06:05:08:60:03:b1:66:ba:3a:e0:39:
26:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:EF:7D:7E:0F:97:C3:26:3D:C1:8D:17:DC:33:4B:4A:CB:3F:AC:88
X509v3 Authority Key Identifier:
keyid:C5:4F:6A:11:77:82:6C:5A:B6:4B:D3:AF:01:38:A9:B5:7A:4B:91:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xU9qEXeCbFq2S9OvATiptXpLkeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/14f367-3b9e-49d4-9686-2ea8ace5b95e/1/xU9qEXeCbFq2S9OvATiptXpLkeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/14f367-3b9e-49d4-9686-2ea8ace5b95e/1/xU9qEXeCbFq2S9OvATiptXpLkeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:3e:0e:f6:98:ec:86:8b:70:49:da:2a:80:bd:8f:86:33:8a:
11:a7:30:5c:0a:05:69:7b:12:94:c0:b4:97:35:39:8a:44:48:
57:11:b2:42:e6:25:e0:14:44:ed:4d:a7:fe:fa:74:26:1d:52:
1c:f8:d2:14:02:25:68:3d:6a:28:11:da:33:4f:f7:49:13:fd:
8f:6e:83:f8:5e:7e:bf:e8:16:4d:e1:47:dc:d2:99:34:2d:14:
6c:b3:e1:81:32:a7:ee:93:4f:c0:5f:82:5e:82:c0:9f:66:d1:
45:58:bb:0c:a1:2a:85:a8:e5:f4:3e:88:41:c7:89:a4:90:63:
6b:3c:58:c1:41:c8:7b:36:36:3b:24:ce:5f:86:3e:85:e8:e4:
b7:79:6a:48:61:be:b6:5d:39:35:b4:8d:b6:d9:d1:8e:e6:ea:
42:54:90:a7:3f:b9:93:b1:eb:17:7d:79:0c:38:72:9c:e8:84:
ba:22:61:80:ee:76:06:7c:a3:c9:b2:b8:0d:e7:88:5b:78:ad:
2c:1a:1d:90:ca:28:69:de:d1:b4:23:15:d1:af:5f:e9:68:a2:
f8:55:09:e5:e0:ef:a3:9b:3b:48:42:b9:d5:6a:f2:97:ec:bc:
b2:c2:3f:34:2f:7f:b5:64:17:25:dd:af:c0:f5:fa:dc:25:26:
85:14:cf:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:40:32 2026 by rpki-client