Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: JfkYF3W6ahZv6yvNMdpHeRlljeDl24sVVcYnxSGW8lc=
Subject key identifier: 00:C3:83:D9:5B:8A:A4:9F:71:E1:91:A6:73:44:F0:50:EF:E0:23:0C
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 019EC1491269B1C9A9EB3CD527A44931BA29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 146A
Signing time: Sat 13 Jun 2026 14:00:51 +0000
Manifest this update: Sat 13 Jun 2026 14:00:51 +0000
Manifest next update: Sun 14 Jun 2026 14:00:51 +0000
Files and hashes: 1: 46eH9Cj2ZoAvvZOdO1gLEixXty0.roa (hash: nutrSegvu5QxeGV6g/QuVOtrzFyb4Km/JeoI/dWaXRo=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: d2+dN62s0V2Twvv5qU9Wisg8szLYTs20xhGcKCsvqT4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:49:12:69:b1:c9:a9:eb:3c:d5:27:a4:49:31:ba:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Jun 13 14:00:51 2026 GMT
Not After : Jun 14 14:00:51 2026 GMT
Subject: CN=00c383d95b8aa49f71e191a67344f050efe0230c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:72:84:f3:cc:54:10:23:c1:2b:66:55:dc:d3:
b8:e4:92:2e:b7:36:cc:e2:00:a3:41:c4:44:37:07:
50:ef:a4:13:04:eb:96:cc:a4:7f:68:e6:db:ee:6b:
90:a7:d7:0d:65:98:e9:3d:1f:d8:79:e6:c3:5e:4e:
3f:43:5b:b7:eb:40:c3:be:93:9e:e2:dc:3d:d3:a2:
31:40:88:81:46:c8:9c:ab:3c:8d:79:b5:ad:77:9c:
1e:13:5a:b2:f0:7d:b3:49:d5:c0:61:d4:c6:ef:b9:
0d:9c:ab:60:40:68:04:1b:b4:08:34:86:60:9c:01:
4a:d3:c5:a6:08:ed:90:d1:69:d1:63:f0:dd:af:82:
a7:28:ea:b0:c2:ee:93:63:51:05:87:28:36:5f:7c:
1e:cb:49:65:61:61:e0:ff:a1:64:fa:85:9e:8c:86:
a9:a8:a1:58:8c:39:aa:81:cd:5e:a9:bf:b7:ee:77:
ec:ff:f3:59:f1:77:35:39:ca:e4:3c:c1:e0:84:4a:
fc:fa:3f:c0:dc:8e:e5:e0:44:97:f1:08:d1:16:ae:
c6:2a:b8:6b:5e:29:b6:85:cb:09:0b:06:7d:90:7e:
84:d1:98:20:a2:f6:0a:88:ff:4f:ff:1e:2b:d6:ec:
67:e7:87:39:30:40:3b:ee:1b:15:4e:ba:2b:be:d1:
4e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:C3:83:D9:5B:8A:A4:9F:71:E1:91:A6:73:44:F0:50:EF:E0:23:0C
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:23:88:26:8e:4e:7b:04:5e:0d:77:99:f9:c9:a9:de:cf:91:
b1:dd:55:92:62:96:66:90:88:05:5c:5d:24:5a:4d:97:0f:9d:
ec:c9:6e:0b:95:88:46:da:68:9e:cb:72:48:4a:8c:dc:7c:fb:
7f:11:72:27:5c:59:11:0e:28:4a:35:4b:7b:12:e3:a1:f3:a0:
7a:7c:eb:ab:f5:b0:42:3b:ad:cd:68:ab:37:94:d8:88:20:45:
eb:ce:af:84:87:c0:51:e0:20:de:bd:f3:de:08:70:5c:19:f7:
c9:89:64:06:c9:79:aa:bd:78:dd:76:90:41:30:fc:68:12:1a:
bf:89:c9:4f:03:c6:40:71:a0:1f:43:61:ce:92:b7:9a:89:e0:
d8:83:f9:b4:71:02:95:69:42:b5:77:98:71:2b:b2:2e:60:98:
96:b6:36:e2:08:63:53:16:81:3c:28:ff:30:64:8d:5a:71:9f:
35:fd:33:0c:8f:49:43:06:1e:2e:d3:07:bf:7b:43:6b:43:68:
39:a5:8c:ed:51:da:6f:e1:c0:cc:b2:eb:21:21:30:8d:88:d2:
ac:c7:99:bd:98:8a:a3:3a:3a:2b:fa:4b:b1:51:90:b1:ce:bb:
4e:53:63:8a:c4:5d:f7:79:6e:79:8b:54:6f:79:53:4a:5d:7d:
a9:6c:a9:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:42:58 2026 by rpki-client