Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
File: XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft (raw, json)
Hash identifier: elMA5IF5O3fj9IB+/HtYVdbROdNRZ9CudctE2gsmVxM=
Subject key identifier: 32:15:3F:8E:04:9A:4F:DB:E3:A7:51:FF:19:B2:14:26:53:B8:DD:94
Authority key identifier: 5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
Certificate issuer: /CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Certificate serial: 019EC0A3DAB36D2AA78BE26FF11E9570667B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
Manifest number: 1960
Signing time: Sat 13 Jun 2026 11:00:24 +0000
Manifest this update: Sat 13 Jun 2026 11:00:24 +0000
Manifest next update: Sun 14 Jun 2026 11:00:24 +0000
Files and hashes: 1: BVjAALpJvxuQy2GyePspuTkr6KE.roa (hash: n2Oqqyn+P3DE0EdI3BsAkGnYPcIXpRm9D9/3qqS3Klw=)
2: XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl (hash: 6oSuDJm+YK1AyeY031EJYWNrBt5LyV1UuFscBoQf9EY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:a3:da:b3:6d:2a:a7:8b:e2:6f:f1:1e:95:70:66:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df5ed040efe2e581754deb5c3cd82d99dfee8d9
Validity
Not Before: Jun 13 11:00:24 2026 GMT
Not After : Jun 14 11:00:24 2026 GMT
Subject: CN=32153f8e049a4fdbe3a751ff19b2142653b8dd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:db:e4:8f:f1:12:7e:d7:05:36:3b:c6:6d:0a:
fd:2e:b7:db:31:6e:b2:de:83:27:5d:27:11:d4:bb:
66:0e:f3:b9:2f:74:41:21:44:be:e3:54:4f:6b:b7:
9b:29:af:21:95:5f:b0:77:63:4e:fe:8a:fd:33:86:
5f:c9:c7:6e:26:87:51:08:c1:1b:24:5c:6f:f0:56:
d4:03:c7:81:dd:7e:8d:d7:cc:61:cd:87:4f:91:53:
9b:c0:94:f8:50:6e:2d:cd:c3:94:24:3e:0d:c9:a5:
e9:98:67:c0:14:cf:7b:43:2b:a3:a1:24:dc:cf:15:
df:2a:74:44:fc:f3:1c:c5:31:fb:53:1c:00:69:20:
fc:83:e3:e1:93:e8:15:8d:94:30:fb:1e:02:9d:16:
46:34:c7:cd:68:7e:c4:52:12:9c:8f:1a:fd:c9:5e:
92:1f:ad:0f:f2:4f:e6:87:1e:63:26:89:44:b4:7b:
24:0e:98:42:a5:ea:e8:2d:f6:6d:30:bd:10:89:63:
f6:b4:c7:0f:d3:90:5b:01:3b:65:c6:6b:ef:44:6c:
73:a6:b9:29:70:94:7e:5d:e9:c8:b0:8f:5f:ce:56:
40:f3:f7:b2:0b:9f:76:d6:7d:c5:33:4b:f8:00:cc:
64:38:1a:be:e3:cc:d9:30:f8:b2:3e:62:59:2d:40:
a9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:15:3F:8E:04:9A:4F:DB:E3:A7:51:FF:19:B2:14:26:53:B8:DD:94
X509v3 Authority Key Identifier:
keyid:5D:F5:ED:04:0E:FE:2E:58:17:54:DE:B5:C3:CD:82:D9:9D:FE:E8:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfXtBA7-LlgXVN61w82C2Z3-6Nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b3d76f-6ef9-4c4a-812c-befe4b34c6f0/1/XfXtBA7-LlgXVN61w82C2Z3-6Nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:68:b7:f0:0a:41:11:0e:e2:d4:74:bf:75:fc:5a:16:82:a2:
08:8b:d1:6f:9f:9b:da:6c:8b:b9:6d:b0:4c:4a:d2:df:75:e4:
d6:56:0c:eb:37:16:9a:4e:07:bf:c5:e5:f1:89:8f:bd:0d:4e:
a4:f1:4a:7f:7a:b9:63:3f:a8:a1:be:33:aa:92:aa:26:fe:de:
84:26:44:9a:46:85:6d:1c:d7:b1:5d:76:0b:b9:72:a4:49:29:
e0:56:cd:96:23:a0:b2:3e:24:e5:4b:2d:39:4f:fe:9f:e2:a3:
75:73:f7:cc:6c:fc:76:5b:ed:66:62:c6:df:5b:06:88:60:4e:
64:4c:28:09:a7:3d:da:69:75:6f:5e:e3:f4:be:8c:b8:09:81:
30:6c:5d:3c:da:c7:18:46:f8:83:c4:53:05:79:19:c7:fa:20:
e1:19:3c:df:78:27:dd:ef:a8:3d:b3:8b:82:d8:e7:8d:ce:f2:
f5:09:a5:ed:4c:73:02:3b:3e:1a:67:ef:a7:f5:de:53:3c:de:
46:06:14:94:fa:89:c9:00:0e:14:92:28:5a:97:30:12:2a:09:
f8:2d:26:77:28:98:bb:b8:85:49:bf:c4:cd:3e:9e:06:94:29:
76:48:15:60:2a:ed:5d:ec:ad:17:75:9d:82:65:3c:84:a3:c1:
eb:37:70:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:30:48 2026 by rpki-client