Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.mft
File: XY9AsSSN49pfXWCX-BBoKTxL7vc.mft (raw, json)
Hash identifier: 5sTPn6oXJSNOIuqX1o7X5Ct7ROzdPxnyPvUfIwMf9Is=
Subject key identifier: E7:37:AD:AB:DB:F2:0A:82:76:BB:86:FA:64:F2:18:5C:B1:03:B0:5A
Authority key identifier: 5D:8F:40:B1:24:8D:E3:DA:5F:5D:60:97:F8:10:68:29:3C:4B:EE:F7
Certificate issuer: /CN=5d8f40b1248de3da5f5d6097f81068293c4beef7
Certificate serial: 019EC3A5719C7F11D8F600A0245AD51D2C69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XY9AsSSN49pfXWCX-BBoKTxL7vc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.mft
Manifest number: 0287
Signing time: Sun 14 Jun 2026 01:00:59 +0000
Manifest this update: Sun 14 Jun 2026 01:00:59 +0000
Manifest next update: Mon 15 Jun 2026 01:00:59 +0000
Files and hashes: 1: XY9AsSSN49pfXWCX-BBoKTxL7vc.crl (hash: UkaxT+k2BDIjJ1Ub1qJDUlMS/X590V54z9LDbwBFh+M=)
2: _a7gNZLlQxgHn1SWkyljxM4Vp8E.roa (hash: riqb9ZgtO6K145lOcaQYpYRovN3sqPG5Tn86hViYkIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XY9AsSSN49pfXWCX-BBoKTxL7vc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 01:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:a5:71:9c:7f:11:d8:f6:00:a0:24:5a:d5:1d:2c:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8f40b1248de3da5f5d6097f81068293c4beef7
Validity
Not Before: Jun 14 01:00:59 2026 GMT
Not After : Jun 15 01:00:59 2026 GMT
Subject: CN=e737adabdbf20a8276bb86fa64f2185cb103b05a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:20:6e:7b:5c:a3:f6:63:01:d4:23:96:37:7e:
71:e3:ef:60:b7:dd:34:61:99:c9:3b:d5:51:58:89:
32:33:4d:72:36:48:2c:ad:81:0f:37:28:dd:f1:27:
fd:7e:1b:29:b3:f5:f8:d5:d4:e4:26:99:bf:e2:be:
c8:3c:92:25:19:bb:6e:64:05:0b:84:10:99:e0:e5:
ea:94:0a:44:55:18:1d:21:97:90:b7:e9:db:78:07:
06:15:fd:21:19:7b:41:ed:6d:ad:55:26:77:12:52:
b9:8b:d0:2a:58:99:71:c9:59:9d:d3:0d:b6:6f:37:
a5:94:55:c6:ba:76:65:2e:0b:b8:fa:0c:a6:d7:42:
01:51:6e:62:bd:33:00:84:bd:75:6d:3e:3b:06:1e:
1a:f1:2d:35:b6:ca:61:a5:f5:68:4d:0a:a4:23:fe:
1d:ab:1b:42:0c:07:18:bc:73:46:92:32:85:a8:f5:
95:27:19:23:f8:41:1f:1f:54:7a:6b:e1:95:3a:c4:
3a:40:80:8c:0b:78:76:f1:53:8c:74:9c:0d:19:f3:
96:82:26:c7:6b:65:25:09:03:71:a6:2d:9d:54:ef:
3a:31:cf:41:93:ad:72:a7:c1:52:8e:24:4b:7d:c4:
2a:d7:6a:8f:d7:2d:34:3e:e9:02:d8:b3:f6:85:9e:
d6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:37:AD:AB:DB:F2:0A:82:76:BB:86:FA:64:F2:18:5C:B1:03:B0:5A
X509v3 Authority Key Identifier:
keyid:5D:8F:40:B1:24:8D:E3:DA:5F:5D:60:97:F8:10:68:29:3C:4B:EE:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XY9AsSSN49pfXWCX-BBoKTxL7vc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/10fea8-4f9c-42e2-b041-bd65fed67dc6/1/XY9AsSSN49pfXWCX-BBoKTxL7vc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
db:cd:86:b9:fe:54:2d:69:9c:9c:27:bf:50:32:78:d4:b0:c2:
62:09:b2:9e:15:92:ee:02:b0:d4:56:47:bb:58:83:a8:29:64:
a8:77:79:eb:1d:8f:db:b4:04:29:e9:66:60:ae:ea:da:58:35:
22:82:82:93:9e:5e:ec:f0:62:5f:43:50:6e:ec:7a:08:60:3b:
25:b1:35:ad:ca:08:a0:3a:34:f1:4f:95:b0:2a:dd:9a:f9:15:
07:f4:12:24:f5:97:7f:4a:02:9a:8e:e3:3f:d4:72:8b:b5:3b:
1e:f3:c5:4d:8d:e0:76:2c:a6:a4:e7:db:b6:9a:c0:75:19:a4:
41:3e:38:1f:3a:20:7c:93:41:ea:22:6c:47:75:a7:83:b9:8b:
ca:02:13:87:de:69:66:a7:98:68:ae:db:14:e2:73:c3:c6:7a:
40:c4:3d:fd:f7:14:1e:cd:41:f4:44:f8:94:86:44:81:bb:7d:
6b:90:05:4f:54:94:af:cd:09:90:c9:b7:82:8d:28:b2:c7:52:
94:d2:c9:69:e0:bd:6c:a9:8b:44:d1:67:6c:da:db:5e:9a:2f:
05:15:2d:56:5e:03:ad:fc:f0:fc:61:d9:14:e0:87:5c:45:fe:
a2:bd:e0:cd:66:18:ff:9b:4e:3e:c3:d1:42:5b:af:a9:8e:c1:
ea:b2:d2:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 07:09:36 2026 by rpki-client