Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
File: xafD9LFGk1EiAllaik-VsNa3oQE.mft (raw, json)
Hash identifier: b1AMtRIkk1A/f/bXB8rJORbbdXj0t766hbrOnWNRBm4=
Subject key identifier: D1:B7:02:4D:20:AC:EA:86:4E:80:ED:A8:FB:F9:31:5C:DB:CF:19:2C
Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Certificate serial: 019EC25BEFFC44A021AD0C81C775E5165353
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
Manifest number: 18EF
Signing time: Sat 13 Jun 2026 19:01:05 +0000
Manifest this update: Sat 13 Jun 2026 19:01:05 +0000
Manifest next update: Sun 14 Jun 2026 19:01:05 +0000
Files and hashes: 1: 2hbC2fRcwVVGLuxr3y8s9IdUqJ0.roa (hash: WENyhbzOdCYh/WeleDC3Eb7ZL7vwxD85NmDsUD+Ca/o=)
2: rJ0B3_PG0rjHq-_hS6K9nBrn-PY.roa (hash: m7Zi/TNYib5gTH6m2mPeaQUI4WRQNMe1ierjcvG2bOc=)
3: xOCpqHIGWYpMZiK0D_GduGL-xNY.roa (hash: EH/6F7DAxWGzLP0f7IyWGiPlk48ND1XykF58xtVXDcQ=)
4: xafD9LFGk1EiAllaik-VsNa3oQE.crl (hash: r1XGXgq/S+u7N5CAU3JiV+xP7xv/+S2TCADttb20hRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5b:ef:fc:44:a0:21:ad:0c:81:c7:75:e5:16:53:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101
Validity
Not Before: Jun 13 19:01:05 2026 GMT
Not After : Jun 14 19:01:05 2026 GMT
Subject: CN=d1b7024d20acea864e80eda8fbf9315cdbcf192c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b9:dc:b4:54:b7:95:3e:ff:91:a7:46:6e:86:
f0:37:26:c3:b0:33:0a:dd:f2:22:90:a1:cc:53:64:
f0:f0:dd:47:e9:2d:88:d4:14:bd:24:42:ab:a3:9e:
60:9f:d1:61:53:92:6b:10:51:a0:73:7c:2a:00:b2:
2e:79:cb:4d:84:dd:45:fe:13:21:3c:75:2d:1f:0f:
28:7e:d6:86:89:8c:e0:73:f8:99:80:5e:8d:61:69:
54:86:f9:dd:fa:7d:12:bf:38:d1:a6:7b:b7:76:ab:
62:14:39:9a:9b:49:cb:cb:ee:25:a3:74:77:a6:f6:
6d:12:65:7b:1b:0a:ac:b2:17:94:0c:69:fd:a9:fd:
a5:76:82:b2:e8:67:e1:19:a6:f9:60:cc:a8:ce:82:
2c:3c:4a:70:4a:7f:0f:ed:7f:ea:31:6e:7d:8a:ec:
69:0a:43:4c:60:ee:0f:1c:be:9c:0c:65:9c:d5:0e:
d3:96:2f:2f:c0:bc:2d:87:5f:28:6d:ae:cc:5d:7c:
88:a5:9a:8f:db:22:e5:ac:a7:12:cb:d8:5b:58:24:
b7:c1:55:26:24:6f:a3:f2:c9:1f:c0:21:fc:d8:c6:
a2:c7:e0:43:f5:5e:a4:4f:0d:9b:e0:8c:56:cd:d3:
69:c3:0e:2f:81:94:df:0d:50:2a:1f:6a:6e:94:81:
fc:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:B7:02:4D:20:AC:EA:86:4E:80:ED:A8:FB:F9:31:5C:DB:CF:19:2C
X509v3 Authority Key Identifier:
keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:1d:19:de:fa:27:95:74:e9:96:c5:bb:33:d9:05:04:7e:f3:
15:20:1a:8c:d3:d0:86:c5:47:1f:62:a8:0d:5d:1a:e1:f7:84:
92:39:3f:a8:bd:fd:ae:59:d3:5e:13:44:b8:87:be:80:2e:d0:
20:fc:a1:f8:66:57:b2:16:3f:7f:e6:bd:cf:76:5c:3d:86:ae:
e0:0b:ed:9d:71:2f:f9:d2:88:51:3a:6b:5f:d7:95:5d:b8:51:
7c:b2:f8:75:a2:2f:0a:fb:9c:56:46:1e:d0:0b:fa:c0:4d:d9:
78:b6:6d:18:e8:79:50:66:69:46:ef:82:2d:27:72:89:3e:d5:
22:2c:1a:fe:b7:7e:ac:a3:ef:12:ef:47:b5:1b:33:89:06:92:
1d:76:30:39:c3:e9:6f:26:ba:4b:df:ee:2f:17:84:4f:38:f8:
62:f4:97:6e:8e:c9:ae:d2:cf:d9:28:92:87:0a:5b:b6:ae:d4:
3d:ea:85:1b:1a:ca:af:cc:08:4d:22:2c:29:09:7f:78:67:fc:
e7:bb:21:21:5c:d7:be:9b:cd:7b:c8:f8:86:b5:7a:41:f4:43:
34:da:a2:78:dd:f6:44:09:7c:96:67:64:7d:35:d9:33:6c:a1:
b6:49:d2:4a:10:ad:ad:57:98:c6:33:0e:14:d2:32:75:cf:2d:
16:8c:9b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:39:24 2026 by rpki-client