Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
File: XfEaGA3xeZTkitMxhyz9AK2augQ.mft (raw, json)
Hash identifier: E0/uqPHe/m4ZlToi3moXYMKxuHfIwX56m0h4MIPdPP0=
Subject key identifier: FC:08:D9:D6:37:C4:07:15:E3:88:CA:9C:6A:77:66:EC:11:9E:FC:3D
Authority key identifier: 5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
Certificate issuer: /CN=5df11a180df17994e48ad331872cfd00ad9aba04
Certificate serial: 019ED3183E8EE7CEEFFBB3A51AA83C83B4D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
Manifest number: 1964
Signing time: Wed 17 Jun 2026 01:00:41 +0000
Manifest this update: Wed 17 Jun 2026 01:00:41 +0000
Manifest next update: Thu 18 Jun 2026 01:00:41 +0000
Files and hashes: 1: XfEaGA3xeZTkitMxhyz9AK2augQ.crl (hash: oCKFP0lIaKz7M/eULMqM9nQ82Ne1YzBt11o5ztHLMOc=)
2: vOvUH4QL3euA8n5Zs-p3s8pu5OU.roa (hash: qqJCGshMa7lPJa7oCp0UWM6NmrUrD8W4y4uDd4fxLLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 01:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d3:18:3e:8e:e7:ce:ef:fb:b3:a5:1a:a8:3c:83:b4:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df11a180df17994e48ad331872cfd00ad9aba04
Validity
Not Before: Jun 17 01:00:41 2026 GMT
Not After : Jun 18 01:00:41 2026 GMT
Subject: CN=fc08d9d637c40715e388ca9c6a7766ec119efc3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:01:30:18:6c:de:9f:af:f6:6e:e0:c2:b0:60:
8a:a9:5b:e6:33:d8:09:2a:c8:47:cb:d5:f5:d5:21:
4a:a8:e5:b7:a1:a6:33:f9:10:10:12:15:a0:48:05:
c6:53:0f:12:a2:79:62:0a:f4:72:54:87:b4:31:91:
03:38:66:d5:d4:78:6a:de:be:84:bb:68:89:bb:97:
5f:c5:2e:87:f4:02:ae:0c:46:18:dd:92:39:af:c3:
04:31:2f:d3:4f:17:ce:cd:eb:04:12:ec:04:7b:52:
8d:13:ca:97:12:6c:5a:96:e9:d9:78:46:64:9e:18:
3e:9d:5c:a5:35:84:6e:04:95:e2:e8:b5:2e:26:78:
48:cd:70:5a:09:d3:dd:4a:35:cc:cf:49:1e:b9:08:
87:5f:6d:ac:ea:b2:5b:69:d1:60:07:65:ac:de:68:
54:62:d8:04:b9:ee:dc:57:0c:ee:76:25:7e:69:13:
ec:35:a3:a6:5b:1a:36:af:a1:b7:8a:0e:22:45:da:
f9:42:3d:94:e9:1a:22:d7:07:47:5b:bf:1a:e1:ec:
a6:88:f1:15:aa:d0:35:ed:bb:c1:77:ad:ea:8e:5c:
fa:72:ff:40:c8:55:d1:e8:f8:ed:ec:59:c1:23:df:
a4:22:55:20:f1:a0:ff:dd:79:38:cd:3e:24:fd:95:
3a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:08:D9:D6:37:C4:07:15:E3:88:CA:9C:6A:77:66:EC:11:9E:FC:3D
X509v3 Authority Key Identifier:
keyid:5D:F1:1A:18:0D:F1:79:94:E4:8A:D3:31:87:2C:FD:00:AD:9A:BA:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfEaGA3xeZTkitMxhyz9AK2augQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/73d145-eb99-4bd8-a817-6bce7799cbea/1/XfEaGA3xeZTkitMxhyz9AK2augQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:67:f2:11:28:f4:c2:ce:86:f8:d6:b2:eb:56:a1:d8:c2:22:
6c:a8:d9:ea:03:dc:b1:8c:ab:66:e9:f9:55:a2:f6:f9:b1:9e:
54:36:10:8e:b8:9e:03:91:e8:d7:f4:9b:66:83:b0:a9:1d:34:
fa:48:8c:c6:15:59:77:5e:f5:a6:29:9e:87:95:96:45:b6:c2:
96:17:47:2c:ce:dc:0d:28:a8:cc:09:66:92:0d:b9:54:13:f2:
4d:85:d4:85:7b:ca:e2:7b:8c:9c:bc:7d:1a:17:7d:00:9b:92:
e4:1f:5c:41:3d:75:23:b3:e6:85:0d:ac:e7:4f:7d:51:cc:85:
96:2f:05:e1:47:7c:5a:a0:0e:d0:74:07:c6:57:3b:c5:58:33:
76:af:23:5e:ce:55:97:ba:47:03:22:c9:2f:f1:38:39:05:82:
0f:ac:a3:54:20:50:37:ea:88:d0:e5:36:5b:e6:9c:50:2d:eb:
41:b1:fa:b0:10:d2:f3:cd:5c:7f:9d:10:b8:c4:b6:6e:24:dc:
e9:66:56:5b:73:62:41:ed:cc:4e:54:b8:2d:12:34:45:33:69:
90:af:5a:a6:41:6e:27:3f:a1:45:e7:bf:44:5c:be:0e:4e:46:
25:92:66:f1:aa:98:49:ae:3a:5f:1f:2a:5d:8e:a3:ca:55:f5:
7b:ee:05:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 11:45:43 2026 by rpki-client