Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
File: XM97P9h86bzpn5ALZBmdYGvxYGk.mft (raw, json)
Hash identifier: Ku92oc4u/iBpInJN0sqaS6hBp2ysZFz1oVYx70SOg/I=
Subject key identifier: D4:CD:E3:AE:E3:7C:D4:05:BB:F4:CF:59:5D:2E:88:4D:5E:86:30:F4
Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Certificate serial: 019EC0DBA2765C2376FD3B86D220CC360067
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
Manifest number: 18ED
Signing time: Sat 13 Jun 2026 12:01:19 +0000
Manifest this update: Sat 13 Jun 2026 12:01:19 +0000
Manifest next update: Sun 14 Jun 2026 12:01:19 +0000
Files and hashes: 1: KhLnM9UHZFCOQul_YnhOlrlNWQg.roa (hash: F9XQk4xPu6hZHYNZKH9uTFT9zpakfltc+2j9WkGLNVk=)
2: XM97P9h86bzpn5ALZBmdYGvxYGk.crl (hash: scecER1UutqENEISxBAly81EtXYOBxCtrXRWQl+bLI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 12:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:a2:76:5c:23:76:fd:3b:86:d2:20:cc:36:00:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Validity
Not Before: Jun 13 12:01:19 2026 GMT
Not After : Jun 14 12:01:19 2026 GMT
Subject: CN=d4cde3aee37cd405bbf4cf595d2e884d5e8630f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:da:6e:d3:66:85:b9:93:af:f3:59:ce:33:d2:
14:e8:b9:ef:ff:0d:e3:d7:b9:00:76:5e:b4:cf:9c:
c9:b7:5e:ee:9d:21:d9:1a:44:77:90:a6:8c:9a:f7:
b8:bb:5e:b7:a0:1a:3b:e9:00:e3:60:e7:28:d9:a4:
0d:dd:dc:75:9c:27:e5:07:a4:f7:6e:a3:01:a7:17:
f1:03:e0:4c:67:9c:6a:21:48:be:38:f1:12:fe:e4:
a4:9c:03:b0:1e:ce:4e:27:c7:13:5b:39:89:90:48:
1d:38:23:5b:ff:c6:a6:7c:95:88:87:74:f9:0d:8e:
0e:22:8a:f4:f0:1f:c7:e0:9f:ef:9b:fc:e8:21:bb:
47:e9:e1:bc:5c:ed:73:51:bb:d1:7c:96:9d:39:5e:
da:8c:ee:9b:f4:9f:99:a7:41:7a:33:f9:d0:22:a7:
80:27:fe:b3:34:36:b2:80:dc:9e:0e:ad:5b:c1:05:
76:17:9a:36:2a:8b:4a:9f:32:07:4c:c8:34:cf:26:
5c:16:20:56:fd:e4:f1:10:a9:2a:d2:71:82:48:10:
55:ff:af:97:7a:ec:30:e0:f8:da:d2:b5:0b:b1:39:
4c:13:13:b1:d0:4c:7d:6c:f4:b7:c2:c5:5d:93:a7:
80:25:02:0e:a6:95:ed:61:02:9f:75:3d:6b:88:2d:
d6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:CD:E3:AE:E3:7C:D4:05:BB:F4:CF:59:5D:2E:88:4D:5E:86:30:F4
X509v3 Authority Key Identifier:
keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:3a:bc:88:c4:d3:d6:00:39:11:57:93:84:f7:84:5a:89:63:
33:fc:2c:6c:e2:ee:cd:4e:af:68:47:54:72:06:dc:ab:85:91:
0c:eb:68:7a:42:d0:16:fd:0f:e3:b0:f2:13:1f:e7:c2:2e:96:
b7:b2:8c:14:a5:bc:89:a1:dd:eb:3e:77:ce:64:5a:3b:a3:76:
fd:f7:c8:52:a1:0b:46:b3:17:6a:c6:d6:c2:58:3a:73:e4:f2:
96:07:5f:d0:a8:65:9d:67:bd:68:bc:48:13:d7:c0:fb:7b:39:
14:5a:af:fc:17:96:02:34:d4:87:a0:4f:1a:c0:d5:87:5c:7a:
b0:a4:26:9a:3f:1c:9f:46:ad:7b:6a:af:74:af:90:7f:4f:bd:
32:11:df:e5:66:36:c1:28:ec:27:d9:79:a3:60:23:a5:d1:47:
b5:6e:95:43:a9:df:f5:83:92:22:40:65:5e:79:22:fb:a8:db:
ab:ec:2e:fd:ef:1f:d1:0a:fa:04:88:17:e1:87:4a:39:09:d3:
1c:c1:b4:b7:7b:16:73:41:11:bf:d3:c3:78:99:49:13:f4:b6:
c2:c0:f5:8d:56:31:ff:13:69:4d:d8:5e:18:e1:ae:f7:ea:79:
ac:f0:09:5f:b9:2a:f0:15:de:03:85:f9:92:c5:b7:45:85:db:
e9:2b:17:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:56:28 2026 by rpki-client