Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
File: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft (raw, json)
Hash identifier: omQ29mO97gXa/C+WSEkE6q4LJ3+bYdW71gGyoM+LD7c=
Subject key identifier: 64:67:13:6F:20:08:9E:F3:0F:37:45:5A:E7:4F:7D:B9:A2:74:63:DA
Authority key identifier: 5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
Certificate issuer: /CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Certificate serial: 019ED42BEA5168CD5767359D995281C7EB9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
Manifest number: 1423
Signing time: Wed 17 Jun 2026 06:01:48 +0000
Manifest this update: Wed 17 Jun 2026 06:01:48 +0000
Manifest next update: Thu 18 Jun 2026 06:01:48 +0000
Files and hashes: 1: 2fgSJGjOHvJgOvr9cAl5B_g8y2U.asa (hash: 058tG8fWDOMDG95p5S64hIDispDFLeErLh8vu62vjbg=)
2: Q2eq3vQ27LdqIhXEwPYKtKFxrj8.roa (hash: w/CxsU35XsDW4qiiMK3VW7xr1QGFT3WBU9iNjApYbmk=)
3: Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl (hash: 2ub0SIp0GwVyF+2RcnjfxCdrQxVYBCZjNOLm3KrlofY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 17 Jun 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:2b:ea:51:68:cd:57:67:35:9d:99:52:81:c7:eb:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9b9bed8f8d3d579bb0552e4fc4b81986861e64
Validity
Not Before: Jun 17 06:01:48 2026 GMT
Not After : Jun 18 06:01:48 2026 GMT
Subject: CN=6467136f20089ef30f37455ae74f7db9a27463da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d4:95:52:5d:3f:8e:36:70:c2:95:e3:8e:b4:
5b:ab:3c:6f:f7:bf:7c:78:a4:c1:a5:41:4e:ee:46:
7d:1c:5b:60:d0:22:96:f2:2f:0d:0a:1e:0f:df:0b:
b2:75:49:96:c2:c7:60:c9:3f:94:3e:82:38:a9:bd:
86:4c:ae:8d:b4:77:e8:90:9f:f1:24:f1:6e:b0:eb:
dc:c8:37:a7:13:5b:9c:30:8e:6b:3b:f2:8a:94:a7:
d0:35:a6:0f:d3:03:f7:32:95:47:56:85:b8:58:21:
bd:63:d0:af:5b:72:74:8b:da:38:1b:69:2d:82:20:
e8:6c:16:b4:47:6b:ee:93:35:aa:e6:5a:4b:72:27:
2f:88:7b:e0:c1:04:62:d2:75:23:9a:da:88:8c:f8:
7c:4e:91:8d:1f:ae:7a:01:0c:d1:5a:06:88:c9:33:
cf:9e:fa:cb:28:f4:89:71:78:0b:9d:87:03:eb:00:
ca:b8:3a:51:c1:6a:b4:0a:51:5f:7f:31:a1:1d:82:
6d:d6:96:fd:5b:bf:ea:38:bd:0c:f8:7b:0b:05:5e:
cb:0a:16:ff:c7:94:a0:83:d9:91:fd:cf:df:11:5c:
00:a8:c1:39:39:7a:17:9e:a9:45:6c:4d:c7:0f:ff:
92:92:c4:52:2d:ab:53:49:ae:fc:3b:e8:a2:34:95:
ac:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:67:13:6F:20:08:9E:F3:0F:37:45:5A:E7:4F:7D:B9:A2:74:63:DA
X509v3 Authority Key Identifier:
keyid:5E:9B:9B:ED:8F:8D:3D:57:9B:B0:55:2E:4F:C4:B8:19:86:86:1E:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/448c85-a966-4df2-98e4-a5a5ad06eb43/1/Xpub7Y-NPVebsFUuT8S4GYaGHmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:78:1a:00:b3:be:85:55:69:0b:29:3d:6c:5e:43:d0:34:ce:
25:a7:1d:dc:4b:61:49:ac:04:f7:5a:48:cf:35:62:94:94:e3:
70:c5:e1:63:39:d5:0c:33:b4:92:1c:5f:f9:72:c4:21:51:cb:
57:36:f9:3d:a2:25:6d:0c:e4:31:77:9b:61:c8:4e:8d:2c:af:
06:20:49:4d:c7:01:ae:fa:c8:d4:6b:bf:84:02:26:96:cf:1f:
ec:6c:7e:8f:41:30:d9:cc:89:c0:db:bb:f6:98:f4:3d:8e:4c:
b7:31:76:59:a5:23:4d:c5:90:5f:aa:71:b4:4d:f5:6b:f9:da:
9c:c3:30:d7:f9:e9:af:7e:0d:e8:c7:98:10:9b:45:85:b4:90:
d4:d2:ff:2f:f6:dd:2a:5f:3e:57:ae:76:a9:8e:5e:16:1c:9a:
41:f7:c5:b7:74:ed:21:b2:f8:58:5c:4d:27:3c:6d:0d:33:41:
59:99:bd:4e:21:69:60:e2:a1:fb:76:18:8d:15:9d:6b:14:6d:
17:dd:89:94:c1:93:3d:b4:8d:5a:b1:72:15:34:18:ec:87:2c:
c9:71:d0:8f:99:a8:b6:65:f3:02:e4:21:6a:a6:41:92:df:f5:
d2:0c:32:79:90:ab:c8:24:b5:f2:a7:8f:36:04:3d:58:44:d2:
33:ce:10:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7UK+pRaM1XZzWdmVKBx+udMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlOWI5YmVkOGY4ZDNkNTc5YmIwNTUyZTRmYzRiODE5ODY4
NjFlNjQwHhcNMjYwNjE3MDYwMTQ4WhcNMjYwNjE4MDYwMTQ4WjAzMTEwLwYDVQQD
Eyg2NDY3MTM2ZjIwMDg5ZWYzMGYzNzQ1NWFlNzRmN2RiOWEyNzQ2M2RhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNSVUl0/jjZwwpXjjrRbqzxv9798
eKTBpUFO7kZ9HFtg0CKW8i8NCh4P3wuydUmWwsdgyT+UPoI4qb2GTK6NtHfokJ/x
JPFusOvcyDenE1ucMI5rO/KKlKfQNaYP0wP3MpVHVoW4WCG9Y9CvW3J0i9o4G2kt
giDobBa0R2vukzWq5lpLcicviHvgwQRi0nUjmtqIjPh8TpGNH656AQzRWgaIyTPP
nvrLKPSJcXgLnYcD6wDKuDpRwWq0ClFffzGhHYJt1pb9W7/qOL0M+HsLBV7LChb/
x5Sgg9mR/c/fEVwAqME5OXoXnqlFbE3HD/+SksRSLatTSa78O+iiNJWsGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGRnE28gCJ7zDzdFWudPfbmidGPaMB8GA1UdIwQY
MBaAFF6bm+2PjT1Xm7BVLk/EuBmGhh5kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHB1YjdZLU5QVmVic0ZVdVQ4UzRHWWFHSG1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC80NDhjODUtYTk2Ni00ZGYyLTk4ZTQt
YTVhNWFkMDZlYjQzLzEvWHB1YjdZLU5QVmVic0ZVdVQ4UzRHWWFHSG1RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC80NDhjODUtYTk2Ni00ZGYyLTk4ZTQtYTVhNWFkMDZlYjQz
LzEvWHB1YjdZLU5QVmVic0ZVdVQ4UzRHWWFHSG1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2HgaALO+
hVVpCyk9bF5D0DTOJacd3EthSawE91pIzzVilJTjcMXhYznVDDO0khxf+XLEIVHL
Vzb5PaIlbQzkMXebYchOjSyvBiBJTccBrvrI1Gu/hAImls8f7Gx+j0Ew2cyJwNu7
9pj0PY5MtzF2WaUjTcWQX6pxtE31a/nanMMw1/npr34N6MeYEJtFhbSQ1NL/L/bd
Kl8+V652qY5eFhyaQffFt3TtIbL4WFxNJzxtDTNBWZm9TiFpYOKh+3YYjRWdaxRt
F92JlMGTPbSNWrFyFTQY7IcsyXHQj5motmXzAuQhaqZBkt/10gwyeZCryCS18qeP
NgQ9WETSM84QKQ==
-----END CERTIFICATE-----
Generated at Wed Jun 17 09:24:44 2026 by rpki-client