Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
File: XTJb79i36F40cQQgbYwKuKbg-04.mft (raw, json)
Hash identifier: njWYhY99NbuuC7Hcw14+yHPn+Wz2fMhOwY4Zq98jP3A=
Subject key identifier: D5:D5:02:E6:56:D8:1B:F8:5E:24:97:BA:5E:DE:CF:9F:C9:23:49:7B
Authority key identifier: 5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
Certificate issuer: /CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Certificate serial: 019E1FED2DFF2881DD3A05F5AD625F3E0F7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
Manifest number: 16E1
Signing time: Wed 13 May 2026 06:01:37 +0000
Manifest this update: Wed 13 May 2026 06:01:37 +0000
Manifest next update: Thu 14 May 2026 06:01:37 +0000
Files and hashes: 1: PzMpMCVPdUDUUH8GTuka9keIPNQ.roa (hash: IKEP0LVD3JdV2nQIZoc3FzX3XZlJgMd0mFQnJDaVjxI=)
2: XTJb79i36F40cQQgbYwKuKbg-04.crl (hash: ibwtJMVvRU99apBtIUNA9JnZhKw2lVp11DurLdbd8PU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:ed:2d:ff:28:81:dd:3a:05:f5:ad:62:5f:3e:0f:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d325befd8b7e85e347104206d8c0ab8a6e0fb4e
Validity
Not Before: May 13 06:01:37 2026 GMT
Not After : May 14 06:01:37 2026 GMT
Subject: CN=d5d502e656d81bf85e2497ba5edecf9fc923497b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f8:9f:66:fd:1c:28:61:ec:ef:14:dc:2a:f5:
da:c8:41:65:80:55:81:99:a5:ab:8d:a8:a9:ef:96:
4f:fe:a6:f9:e5:a4:b0:11:5d:76:54:1c:17:1a:39:
6d:7e:3b:66:20:3b:39:1d:f2:95:75:e8:0d:9c:fc:
38:5e:2f:40:e7:30:c8:61:f3:04:e4:fc:6e:d8:29:
c5:ae:8c:a0:23:66:8d:a1:22:e6:cf:2f:24:6c:43:
39:bb:8b:d1:1e:02:27:fc:eb:34:65:30:ed:e4:ef:
50:80:ab:2a:0d:7c:25:a2:4b:1d:d0:ac:37:9d:3e:
09:45:65:2f:d0:ad:82:bb:2f:48:2d:0a:0c:50:e3:
00:34:2e:8d:2c:38:0d:5c:e9:bc:0a:8f:7f:05:a3:
db:81:99:f8:51:94:4d:9c:aa:32:9b:ae:42:bf:5c:
6e:ce:53:69:b8:32:8b:aa:ed:8f:8d:86:e0:d7:90:
44:9c:3d:b1:9f:85:54:62:9c:c1:9b:f8:ef:61:d4:
16:a4:05:b2:9c:be:da:fa:0b:6f:9b:50:27:3a:23:
ab:e9:57:29:36:4f:c3:a0:37:a8:d3:73:e9:da:9f:
51:73:6f:ed:1f:48:d2:b7:e3:42:4c:93:1c:2e:a9:
28:e2:ef:93:c8:ea:22:78:97:40:f3:cd:97:1a:cc:
6f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:D5:02:E6:56:D8:1B:F8:5E:24:97:BA:5E:DE:CF:9F:C9:23:49:7B
X509v3 Authority Key Identifier:
keyid:5D:32:5B:EF:D8:B7:E8:5E:34:71:04:20:6D:8C:0A:B8:A6:E0:FB:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTJb79i36F40cQQgbYwKuKbg-04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5146d0-3e74-47a1-aa3e-f9995b78a85f/1/XTJb79i36F40cQQgbYwKuKbg-04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:6f:b8:5f:85:43:0b:e7:81:aa:71:22:33:59:79:9d:e1:29:
eb:c7:36:df:1b:ca:2c:68:1b:82:d6:b9:8f:e4:e0:63:a2:24:
72:b7:30:a7:48:aa:0a:eb:7b:a8:b0:46:ed:67:f4:a3:75:7e:
88:a4:9c:27:6c:02:88:ba:07:c2:c3:0f:39:d4:40:e7:ed:4d:
00:f4:72:93:c8:1c:dd:e2:7e:32:d2:f4:c9:a7:37:90:f7:9b:
b2:9c:44:ae:8e:c0:5a:5a:88:df:55:ac:ba:54:71:97:53:1b:
e2:2f:06:b7:3e:5a:ac:42:f4:43:48:7b:8d:76:f4:4d:86:b9:
02:4c:55:3c:27:90:0f:eb:db:ba:bc:f1:56:6f:f8:db:58:ee:
f3:ff:f3:5c:36:94:6d:a2:30:8a:58:7c:06:43:dd:68:b6:29:
78:b0:72:99:27:b5:28:de:f5:9e:3a:0c:b9:ad:4c:a2:0f:7f:
9f:df:8b:07:0a:68:81:44:0b:ae:8a:d7:74:3a:14:7f:4c:fd:
9d:7f:35:1a:ea:1c:48:68:40:2f:3c:c0:9e:50:e7:14:6d:84:
70:ca:2b:ba:b9:c4:54:76:f3:92:40:0b:41:58:ea:71:bf:92:
7d:fd:1b:c5:95:f8:5f:b5:47:0a:4e:f4:57:d1:ae:5e:df:dc:
25:a8:1e:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:10:45 2026 by rpki-client