Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
File: XigJUGU6fsWMUzhdALOB77tGWCQ.mft (raw, json)
Hash identifier: 8ga+FGgRmKJjUpGsy4XOGu9nxukCrUKlH4XEa4EOTCI=
Subject key identifier: 1E:5F:32:EC:19:DC:2F:07:2A:A7:A3:3E:F3:DB:70:D4:F4:05:E0:6E
Authority key identifier: 5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24
Certificate issuer: /CN=5e280950653a7ec58c53385d00b381efbb465824
Certificate serial: 019E1EA31822C6B81EBC5DA9A1EF03654E66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
Manifest number: 08C7
Signing time: Wed 13 May 2026 00:01:05 +0000
Manifest this update: Wed 13 May 2026 00:01:05 +0000
Manifest next update: Thu 14 May 2026 00:01:05 +0000
Files and hashes: 1: 1-N-Z3cPVFu_Om0GHK2AgOkgXdoM.roa (hash: fr16WHaKP/dmz7kwPH4GVwwXFVV/SyIEEVY49/wQV+U=)
2: 1aw8Nv97xOelgCP3-YnwnaxEm5Y.roa (hash: jy29WIgwdNl8op/0r93ONPzqQSdB42DU8p3Gs7efZY0=)
3: 2PxDuTNSWd2nVBQOyZp7w-a3G48.roa (hash: nuRMk74zjQwmTzVhehj6QjrkhW4+qo+fGCHLFEBJBC0=)
4: XigJUGU6fsWMUzhdALOB77tGWCQ.crl (hash: M9zhm6s8ISm49edLedFT5iHta4UrajYeC/I61zeRy2Q=)
5: c9R4pyYEgXuth8LibhVlQrijaqw.roa (hash: GjJoF2AKi6roB+eJMggN2owFvnp/FEnfdBtdPLGnDgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:18:22:c6:b8:1e:bc:5d:a9:a1:ef:03:65:4e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e280950653a7ec58c53385d00b381efbb465824
Validity
Not Before: May 13 00:01:05 2026 GMT
Not After : May 14 00:01:05 2026 GMT
Subject: CN=1e5f32ec19dc2f072aa7a33ef3db70d4f405e06e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:98:a2:82:3f:c6:21:72:71:a4:8a:72:0d:39:
82:03:d7:c2:c9:c4:bc:47:9d:11:04:03:a4:34:0f:
94:9f:ee:a6:1a:74:e5:f5:f2:cb:62:cc:3a:46:38:
77:09:37:14:8e:fc:11:e3:c4:3b:b8:e6:6e:bd:0c:
90:7a:ec:49:00:79:db:8e:a0:ed:d8:dd:f2:d8:85:
d5:6b:7e:8d:a7:67:94:84:9c:5e:b6:a9:7c:0c:be:
8a:7c:dc:0d:27:f7:6b:87:a7:ce:47:db:3b:77:0f:
da:1f:b9:30:0d:3d:47:cc:d1:81:99:8b:3d:24:1d:
f9:67:8e:f6:95:01:dd:20:dd:99:ee:bd:69:3f:58:
d5:06:eb:04:2c:e3:08:ea:18:1d:51:57:2f:3b:be:
3d:bf:6c:50:95:4e:0b:c3:35:5d:d0:cc:4d:ef:9b:
7f:16:e5:ac:52:9e:35:75:d9:85:d3:f7:a6:f9:70:
96:7f:80:e9:aa:5c:50:c5:b6:e1:bb:04:ba:28:6e:
c1:7e:f3:67:33:4b:44:08:d9:a5:21:4e:9c:e8:43:
cd:04:c8:59:e8:dd:53:b3:a4:d7:02:ff:66:31:8f:
28:f9:16:1c:08:40:15:33:5b:ff:6e:68:b7:a1:68:
21:9f:13:08:71:b6:19:7d:b1:59:ce:fb:63:30:94:
8e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:5F:32:EC:19:DC:2F:07:2A:A7:A3:3E:F3:DB:70:D4:F4:05:E0:6E
X509v3 Authority Key Identifier:
keyid:5E:28:09:50:65:3A:7E:C5:8C:53:38:5D:00:B3:81:EF:BB:46:58:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XigJUGU6fsWMUzhdALOB77tGWCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/72c587-c5cb-40e4-8ce1-e1b53556c1c3/1/XigJUGU6fsWMUzhdALOB77tGWCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f4:31:63:42:b3:e3:1b:52:58:c2:18:64:2b:de:e4:71:91:
a5:9b:6a:e2:97:23:ab:42:d6:3d:49:64:ba:21:48:a5:61:1e:
ac:11:8b:e0:24:5c:d7:19:83:70:15:e2:6b:f3:25:2b:df:de:
43:cb:e4:33:c0:30:d5:f8:9a:2b:e8:d4:b2:6b:03:00:1d:8b:
84:72:2f:a0:6b:19:37:ef:46:4c:0c:8d:e6:93:aa:a6:f3:a6:
d8:05:94:0b:a2:ad:6e:1e:65:9b:88:bb:64:c5:ad:5d:41:8d:
67:cc:46:fa:44:b7:b5:b8:ff:5b:eb:98:bb:c2:14:eb:0c:ec:
d7:91:a3:f4:d5:62:e3:ef:5e:77:2c:77:08:bf:5f:38:95:4f:
e3:d6:20:0a:18:24:c0:d6:11:56:8c:01:25:0f:db:1c:29:21:
ff:d2:0a:79:38:47:de:15:22:72:bb:b2:79:61:a8:00:63:cf:
e0:b8:f1:d2:1e:e1:6e:c0:d0:66:af:c2:9a:6a:e4:4d:c4:e4:
44:2c:19:ff:23:31:26:b4:2f:8d:54:54:71:27:fd:af:87:4c:
ce:7d:64:10:68:ea:e1:ef:8b:1b:cb:37:3c:9d:c3:5d:8c:4e:
93:2f:fc:b2:17:d3:cb:04:fd:fc:8b:ea:a0:0a:05:d7:11:f6:
05:e0:f5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:30:45 2026 by rpki-client