Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: H5LnsB9f1ct6Nw563//y/oaFO5ZbfP1laOBjlasGwUI=
Subject key identifier: 83:86:71:C1:84:6C:EA:C7:DB:62:19:C2:80:45:31:59:62:2E:8C:50
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 019EBF912CE2CD98A18F1CE42DC91DCD5983
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 1956
Signing time: Sat 13 Jun 2026 06:00:22 +0000
Manifest this update: Sat 13 Jun 2026 06:00:22 +0000
Manifest next update: Sun 14 Jun 2026 06:00:22 +0000
Files and hashes: 1: sesfpS4vflQUJ0zHNMlqdR_eVFI.roa (hash: EeKCakHwf9lALKZ5zNCtLbT5f2osgE69W3ufAPv/OQY=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: jxahs4nhHtv2s+oaH39O4EdtYzEkPBtbwoQD6v6IyHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 06:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:2c:e2:cd:98:a1:8f:1c:e4:2d:c9:1d:cd:59:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Jun 13 06:00:22 2026 GMT
Not After : Jun 14 06:00:22 2026 GMT
Subject: CN=838671c1846ceac7db6219c280453159622e8c50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a3:35:56:83:b0:c5:ef:a4:d2:f2:4a:8c:94:
6e:96:2b:62:f5:40:ca:40:c4:9f:95:05:18:0f:d9:
07:2d:1d:20:61:07:70:3a:b2:2a:dc:c3:ab:b3:0a:
17:8d:db:37:22:05:bd:76:1a:1c:6d:d1:a7:6d:9a:
ee:5b:2f:1b:80:94:da:96:a4:d0:7d:14:28:e6:aa:
92:75:f4:f6:16:4f:41:12:e8:a0:9f:ec:7b:ca:38:
41:f3:c7:3e:f6:45:a9:9d:a6:16:93:2f:73:10:14:
fd:96:d9:86:05:06:2d:f2:9c:84:17:fd:2f:63:c2:
97:c4:e8:42:2d:39:06:2c:17:1e:aa:56:9b:a2:a6:
68:16:69:dd:98:59:2e:70:08:bd:6a:ab:ff:e6:e2:
c3:6f:2e:06:d0:38:c7:c7:5f:d6:00:d3:f8:2a:48:
57:62:44:5c:4d:a5:cb:8e:69:76:50:3f:78:ca:12:
a1:a0:e8:60:85:74:9b:2f:04:33:5c:9e:a6:01:e3:
a2:48:c2:e5:e7:05:43:90:e8:cc:4c:08:ff:38:07:
f3:80:19:7e:a5:1a:1d:82:a4:bd:b0:2f:f3:45:69:
73:48:aa:1e:4b:00:0d:ff:91:95:fc:d8:48:90:42:
5e:3b:5a:ca:86:2a:6d:f2:3f:52:3f:43:d0:dc:a6:
35:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:86:71:C1:84:6C:EA:C7:DB:62:19:C2:80:45:31:59:62:2E:8C:50
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:35:42:d6:28:64:dd:01:53:24:70:94:73:d3:34:ae:10:2a:
91:08:41:b7:f8:92:c4:73:8b:b2:e9:cf:b2:d1:22:e9:d6:83:
50:e4:0a:25:13:9d:d9:b5:72:26:2c:df:10:0f:9c:f9:dd:b6:
f2:be:66:0a:05:ba:2e:b1:9a:be:b0:ed:8a:6d:77:19:c5:3f:
7c:05:c0:6e:f7:1b:55:2b:ef:96:48:8f:55:91:88:ce:31:93:
ff:c6:f7:e2:28:58:ac:7c:ea:e8:05:cc:38:4b:69:ea:8d:5a:
40:ef:da:b0:62:04:a9:4b:63:b1:d0:97:b9:31:85:7d:32:a3:
f9:f2:cc:5d:6e:13:db:63:c3:b2:5b:e4:cd:81:85:d1:0f:10:
35:00:3e:2c:eb:d3:be:44:18:b8:d9:90:dc:32:a2:85:6a:31:
ff:72:df:34:65:4c:ed:65:d8:8e:e4:7e:ba:77:5b:04:28:50:
b8:04:ad:8f:29:db:28:c1:e0:37:37:91:dd:ba:dc:6e:de:9f:
8c:ba:32:6b:ba:ae:2e:59:2d:f7:d8:2f:07:5e:c1:86:52:bd:
3c:f6:51:aa:ee:51:fb:a2:8c:7f:14:7c:57:7a:b8:37:ee:c3:
85:a4:88:9e:19:f1:df:a3:45:57:95:ff:de:5c:a0:b2:5e:c5:
3c:09:d0:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:49:17 2026 by rpki-client