Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/c503d6-b6e4-43e2-91e6-71c570dcb0a4/1/XAAsRHm7TJbiI0OZznH1YDRSmdA.mft
File: XAAsRHm7TJbiI0OZznH1YDRSmdA.mft (raw, json)
Hash identifier: MU81GH4SiM7qGXgdroZTWcTVcf5n0Z2wk0HJffJAGEg=
Subject key identifier: DB:B1:EF:12:D0:05:6F:FC:A1:A4:8E:0A:51:41:66:D6:CA:44:23:9E
Authority key identifier: 5C:00:2C:44:79:BB:4C:96:E2:23:43:99:CE:71:F5:60:34:52:99:D0
Certificate issuer: /CN=5c002c4479bb4c96e2234399ce71f560345299d0
Certificate serial: 019E1ED9EB439DF2E49932CE949904770F8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XAAsRHm7TJbiI0OZznH1YDRSmdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/c503d6-b6e4-43e2-91e6-71c570dcb0a4/1/XAAsRHm7TJbiI0OZznH1YDRSmdA.mft
Manifest number: 0B9B
Signing time: Wed 13 May 2026 01:00:58 +0000
Manifest this update: Wed 13 May 2026 01:00:58 +0000
Manifest next update: Thu 14 May 2026 01:00:58 +0000
Files and hashes: 1: TxbDZ92_D1JcE6gFaCzsdbEg8Dw.roa (hash: w4shAAAl4BC6mnnYlahv1hVwM6Z+ODkO+q4aaMk3Of8=)
2: XAAsRHm7TJbiI0OZznH1YDRSmdA.crl (hash: CxlJfViFNL/nPALurH76phRbAsFQjXa5XzHryRE9Uzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/c503d6-b6e4-43e2-91e6-71c570dcb0a4/1/XAAsRHm7TJbiI0OZznH1YDRSmdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/c503d6-b6e4-43e2-91e6-71c570dcb0a4/1/XAAsRHm7TJbiI0OZznH1YDRSmdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/XAAsRHm7TJbiI0OZznH1YDRSmdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:eb:43:9d:f2:e4:99:32:ce:94:99:04:77:0f:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c002c4479bb4c96e2234399ce71f560345299d0
Validity
Not Before: May 13 01:00:58 2026 GMT
Not After : May 14 01:00:58 2026 GMT
Subject: CN=dbb1ef12d0056ffca1a48e0a514166d6ca44239e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d7:07:de:53:e4:9b:46:86:f9:01:1c:43:16:
4e:01:28:b1:8f:c9:9d:08:e9:07:10:ef:9c:fe:05:
c2:b3:1f:d7:db:74:68:fa:3e:52:b7:a8:1d:1e:77:
25:2f:2c:b0:34:5f:b4:68:e8:3c:a2:d0:f0:c9:e4:
da:13:ad:61:46:ef:f8:c6:70:99:f5:7e:47:41:55:
5b:ef:d6:6c:33:1e:ef:32:60:29:17:5a:94:c4:f8:
94:70:eb:7b:c3:9e:d2:50:a9:09:77:6f:e4:43:1b:
b6:2b:ef:5d:5f:70:b0:fc:bd:7c:31:58:38:bb:d5:
ea:38:67:a6:82:7a:8c:19:98:9e:43:7e:23:a6:40:
25:e4:f5:31:f1:bc:da:2b:fe:6c:14:69:0a:9b:62:
cf:a2:96:26:30:01:76:41:1c:d0:25:24:3a:3f:fb:
6f:cf:b5:da:76:e0:cd:d7:9d:3f:8c:99:72:c3:cb:
bf:6f:22:4a:57:b0:86:95:25:3e:bf:aa:87:7e:d4:
ef:44:41:84:22:a3:e0:98:d6:85:bd:fa:7c:5c:8e:
52:80:77:b2:0a:ec:8e:97:b6:4c:89:6a:f1:8b:55:
1b:8c:82:d2:3e:ef:23:8d:6f:47:9d:b3:f4:02:4e:
c0:ba:ba:cf:98:54:7e:a8:a6:72:4c:3d:81:62:53:
d0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B1:EF:12:D0:05:6F:FC:A1:A4:8E:0A:51:41:66:D6:CA:44:23:9E
X509v3 Authority Key Identifier:
keyid:5C:00:2C:44:79:BB:4C:96:E2:23:43:99:CE:71:F5:60:34:52:99:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XAAsRHm7TJbiI0OZznH1YDRSmdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c503d6-b6e4-43e2-91e6-71c570dcb0a4/1/XAAsRHm7TJbiI0OZznH1YDRSmdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/c503d6-b6e4-43e2-91e6-71c570dcb0a4/1/XAAsRHm7TJbiI0OZznH1YDRSmdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:75:e3:dc:89:d4:61:f9:bc:bd:7b:15:af:5b:2f:87:94:2b:
5e:f6:95:9b:dc:81:4b:b1:91:dc:92:b9:a3:bc:9b:3c:5a:18:
9c:15:e4:52:da:f4:8e:a3:9b:58:f5:88:aa:5c:19:1f:7a:d3:
45:94:c0:63:87:2c:2b:7f:c4:02:d5:4e:4e:13:4d:6a:bf:0d:
a1:c0:57:fb:29:bf:01:bc:e8:0f:a3:86:ae:7b:63:f8:09:83:
c8:c4:66:a0:30:c6:ed:53:fc:7f:78:74:ba:b8:e3:d9:3b:b0:
91:5d:2a:a9:05:69:5e:40:fb:90:1b:7e:fb:58:cc:7c:2c:5f:
ba:47:28:45:8b:91:0e:46:77:66:a3:83:11:41:34:49:15:f4:
fc:2a:51:c7:2e:a9:56:9b:21:f0:88:e7:a3:03:ef:c3:8d:23:
e4:66:09:66:9b:b9:aa:56:76:66:b2:2a:cc:b5:ed:7d:ef:92:
54:d5:1a:a0:66:92:ac:af:77:7c:4c:fa:0a:c0:a7:ea:5e:bd:
ec:ce:8d:38:6b:14:1b:0f:93:be:b2:61:28:33:8f:73:39:04:
ff:a6:33:d3:6f:35:65:56:33:97:29:2e:fe:9e:f5:d2:60:84:
c1:b9:a6:9a:b1:bf:bc:6e:dc:33:d1:43:ee:cf:a7:53:cc:db:
3f:6a:f2:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:42:07 2026 by rpki-client