Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: MNzHKj/UFdvFQlX67NWHGFHRi1I5PImWQtCw+PlsjUk=
Subject key identifier: CC:74:77:68:88:47:E2:15:41:9F:C2:B9:48:70:69:57:D7:B7:D8:D4
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 019EBF5A908094F43AE3CA1357443B40B77A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 1304
Signing time: Sat 13 Jun 2026 05:00:43 +0000
Manifest this update: Sat 13 Jun 2026 05:00:43 +0000
Manifest next update: Sun 14 Jun 2026 05:00:43 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: cGkgvTo4UcHRXKlysUxwmteZyaN1RHsqIChiCs8vDIM=)
2: xJQkEE-myuee2xusX84h4jOXGkk.roa (hash: bgfimRITzgygmGvHr8W4DzraqoP9/oX3mukFAiSIHn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:90:80:94:f4:3a:e3:ca:13:57:44:3b:40:b7:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: Jun 13 05:00:43 2026 GMT
Not After : Jun 14 05:00:43 2026 GMT
Subject: CN=cc7477688847e215419fc2b948706957d7b7d8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:52:83:20:15:1f:79:2d:35:cf:9e:4c:4d:3f:
70:04:ac:88:fe:5c:09:aa:2f:4e:60:96:2e:28:05:
53:cd:43:b9:09:11:ce:58:ff:e7:f9:03:a3:66:3c:
9a:87:88:45:0c:a8:6e:49:84:61:77:ac:a5:8f:59:
c8:7d:b3:73:cc:e5:9a:20:ff:fa:0d:6b:35:cb:c4:
93:7a:3f:91:42:ab:e3:5d:34:ff:d1:6f:60:c3:26:
b9:9e:9e:2c:48:af:63:f0:99:dc:6d:c6:64:c3:77:
2c:57:80:a2:68:a8:77:54:34:9a:fd:55:c4:87:4d:
87:38:ff:ce:c4:46:3d:1e:3d:63:f9:d1:b3:d3:96:
ee:87:60:de:dd:ee:36:e9:04:b6:60:e1:9e:66:69:
c4:ba:fe:79:e1:fe:89:31:9a:4a:54:f6:a0:a1:d4:
44:f5:17:a2:bc:b5:6f:98:fc:99:0f:12:f9:f9:c4:
dc:42:05:55:e2:77:af:2d:c7:cd:8d:1e:3e:4e:cc:
05:d4:96:c1:c3:2c:2b:46:e2:00:ed:46:f4:c9:37:
c4:f1:51:ce:b8:a1:f1:83:c1:f9:d4:26:a2:4b:0e:
d4:1d:b0:4c:b5:14:fa:21:2e:c5:42:69:4a:0e:34:
1a:32:3b:6a:f9:05:22:e4:52:46:7e:4d:ff:92:b3:
f3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:74:77:68:88:47:E2:15:41:9F:C2:B9:48:70:69:57:D7:B7:D8:D4
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:77:85:dc:1d:3b:f6:4e:12:e3:35:e1:7c:93:0a:a7:a1:28:
ad:8a:77:ba:8d:33:75:ab:91:27:79:5c:5e:c4:d6:12:21:50:
34:ec:dd:3e:7b:c3:57:31:88:43:7d:85:08:70:9f:7e:4f:72:
a9:89:25:5f:2f:13:e9:ef:96:1b:d8:a6:32:0f:b1:03:42:5a:
5b:25:b1:8e:a9:72:46:22:40:d2:fe:ad:f9:01:8c:16:b4:8c:
a8:27:98:da:2c:f8:57:94:e5:48:3e:af:bc:87:4f:46:c3:3e:
a9:47:c5:fb:c8:15:57:81:cc:cc:d2:ab:23:ca:a5:06:5c:14:
ab:ef:a1:3a:e8:94:69:c7:9c:75:16:72:a9:00:8a:d6:31:8e:
50:cf:33:d2:f2:f7:2e:2c:71:4a:f2:c6:b3:1a:ce:35:a3:14:
c4:56:02:f1:29:d4:58:0e:4e:4b:55:07:9e:48:e8:0e:4e:3b:
20:a2:10:5e:5a:a7:cc:f0:2f:9b:8d:ea:87:71:f5:21:4e:f7:
a9:69:86:9c:96:e7:43:57:f8:93:c9:8f:2d:56:ec:12:94:f2:
2b:f3:d2:27:26:c1:dd:dc:57:cc:d4:51:30:fd:0c:ac:22:b1:
b4:4e:d1:71:46:e6:8c:80:ae:d4:8f:26:92:07:de:74:8f:fb:
73:89:cd:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:18:25 2026 by rpki-client