Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
File: XLtvfRHev55LqLH2nDg7j8PErhI.mft (raw, json)
Hash identifier: PHiMgNchgpw2UQ80UTIdSq6apV8yvhSRaNkNxzpM2/w=
Subject key identifier: 66:31:E9:20:6E:4C:08:C6:E4:40:EF:F4:2C:69:D7:2A:BD:8F:82:5B
Authority key identifier: 5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
Certificate issuer: /CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Certificate serial: 019EC0DAAACA88434A9A6DDF487CB562D88A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
Manifest number: 0D80
Signing time: Sat 13 Jun 2026 12:00:16 +0000
Manifest this update: Sat 13 Jun 2026 12:00:16 +0000
Manifest next update: Sun 14 Jun 2026 12:00:16 +0000
Files and hashes: 1: XLtvfRHev55LqLH2nDg7j8PErhI.crl (hash: Ualo1StWgf+K8YhJ+8Udsvo6tCvwOw++/tyz4dZsRxQ=)
2: eO46gXXoSZwATk8MoN76YPpN1jQ.roa (hash: F/WomuEJ+uQlAxaPHkR6qqNqSNUL0B0LVxqFRNytneU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:da:aa:ca:88:43:4a:9a:6d:df:48:7c:b5:62:d8:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbb6f7d11debf9e4ba8b1f69c383b8fc3c4ae12
Validity
Not Before: Jun 13 12:00:16 2026 GMT
Not After : Jun 14 12:00:16 2026 GMT
Subject: CN=6631e9206e4c08c6e440eff42c69d72abd8f825b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a8:f8:76:c5:c1:80:55:26:1f:c2:c6:a6:f4:
d4:67:dd:09:48:59:3e:33:cd:b9:9a:c6:ea:66:92:
94:a4:69:fb:6d:f3:42:c0:de:1e:cf:9d:38:bc:05:
ed:5f:81:b7:91:4e:96:8e:b7:74:30:3f:66:e0:34:
96:60:9b:48:26:a6:23:92:3e:55:14:81:bd:cd:fd:
f6:e3:23:34:44:23:17:d0:d2:d4:50:7c:f6:2c:15:
51:f0:fa:82:1d:8d:14:fb:82:6a:74:da:f4:61:24:
20:42:59:72:32:cc:72:43:22:b2:e4:f2:55:24:3c:
88:b8:cb:0c:0d:7f:81:86:9e:6d:98:ab:3f:a9:c5:
68:e4:18:05:28:31:14:70:34:2f:f4:37:a3:f9:a8:
86:4a:39:98:0d:01:2d:3b:0b:ac:89:88:2d:c2:82:
1e:24:a9:3b:80:dd:41:58:84:24:b1:03:89:69:52:
a7:1d:13:7c:42:e5:dd:91:8a:f9:49:7d:10:2f:69:
92:d8:e8:ce:0b:83:87:52:c0:05:ae:a3:cc:a4:86:
57:cf:aa:db:98:0e:5a:7e:b7:cb:2b:f2:ea:97:8b:
b7:14:a5:4b:7c:02:32:5a:95:8d:45:fc:0e:83:00:
3e:95:18:9e:f1:6a:4a:6a:fe:52:eb:61:e1:01:99:
6b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:31:E9:20:6E:4C:08:C6:E4:40:EF:F4:2C:69:D7:2A:BD:8F:82:5B
X509v3 Authority Key Identifier:
keyid:5C:BB:6F:7D:11:DE:BF:9E:4B:A8:B1:F6:9C:38:3B:8F:C3:C4:AE:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLtvfRHev55LqLH2nDg7j8PErhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ca8125-5477-4222-b055-bbeb4550d9e6/1/XLtvfRHev55LqLH2nDg7j8PErhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:41:e0:33:2c:35:90:f4:c3:ad:87:c5:72:94:78:e1:a1:a3:
30:17:ac:d5:5e:f3:22:d0:e8:33:20:11:4c:08:ba:b3:d1:04:
9c:fd:9f:4d:5d:13:d3:d3:e5:8b:6c:4e:94:b1:fe:47:62:a6:
c2:77:1f:18:33:b1:6d:02:5b:86:e0:47:4e:6f:3e:0a:80:20:
16:3a:3b:d9:92:9c:4e:0d:16:32:94:e1:11:82:13:3a:29:09:
07:44:73:9a:a8:77:1c:9c:8c:6e:20:0e:09:8e:ba:df:b8:5c:
50:82:da:88:c3:e6:57:9f:1a:87:72:ec:d2:1e:15:bf:10:de:
60:9b:ff:03:ed:3a:38:9e:e0:96:d3:4b:80:ec:93:dc:89:09:
5b:9d:35:a9:09:72:c1:32:9b:f2:d7:6f:41:49:d7:de:58:7a:
14:f6:54:9a:be:96:6a:7c:0b:c5:22:f5:27:81:23:c4:e2:1a:
0e:24:40:26:d9:81:7f:7a:b7:63:f9:e1:a7:cf:bc:a4:98:ca:
10:e5:64:cb:cb:3a:a6:20:b4:cd:06:ee:0e:4c:de:33:2a:75:
cb:68:f1:b9:12:df:1b:31:3e:ac:e3:06:21:fd:4e:d3:d6:1f:
67:7a:21:9b:66:5b:5d:cf:be:0c:7f:54:3d:cc:cb:58:2a:c2:
cf:a4:84:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:46:55 2026 by rpki-client