Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
File: XiZI8SkNRHG821C4K-TtkyADCU0.mft (raw, json)
Hash identifier: CaBPQ+jmW4DEEqAhcJ8TiEAq/ZHV5uL5cNn3iJXcB0E=
Subject key identifier: 47:A5:ED:DC:E5:A3:AC:70:9E:7E:92:CF:1E:22:34:0F:72:79:DE:DC
Authority key identifier: 5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
Certificate issuer: /CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Certificate serial: 019EC224F06E859029F67643AF07B9A54F5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
Manifest number: 18ED
Signing time: Sat 13 Jun 2026 18:01:01 +0000
Manifest this update: Sat 13 Jun 2026 18:01:01 +0000
Manifest next update: Sun 14 Jun 2026 18:01:01 +0000
Files and hashes: 1: XiZI8SkNRHG821C4K-TtkyADCU0.crl (hash: OurAwdVlo2030pVw10SbmpBfJzEnlvQjQFlEPajBubk=)
2: sq8rzyi0UVog1iS5Ju1CZc-6dl0.roa (hash: hTNSZci/jvQbgI5g6zcbraZud5VHWLa8WEC2pVISMYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:24:f0:6e:85:90:29:f6:76:43:af:07:b9:a5:4f:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Validity
Not Before: Jun 13 18:01:01 2026 GMT
Not After : Jun 14 18:01:01 2026 GMT
Subject: CN=47a5eddce5a3ac709e7e92cf1e22340f7279dedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:70:7f:d1:20:c5:bf:98:90:26:d1:8b:86:7f:
67:17:2c:d2:25:35:7f:82:02:30:23:34:69:21:42:
20:b6:fc:a3:e2:35:9e:b0:d0:ad:6c:58:13:5f:2c:
1b:24:b1:ec:d7:79:9d:08:8d:b7:1c:cf:99:b5:d6:
4d:1c:5c:42:9b:49:a1:1d:9c:91:de:bc:2a:69:32:
66:99:ea:9e:78:17:de:3d:58:45:ac:f9:45:80:a8:
d5:aa:56:4c:79:9d:11:8b:61:4a:a0:0b:d6:01:57:
d1:54:3a:df:61:eb:8c:f6:ab:fa:ee:a0:0d:37:66:
f0:eb:94:32:ea:97:2b:ef:f3:1c:59:e1:6f:32:d4:
15:67:5b:ed:7f:f7:b2:e6:3f:d4:6d:c9:04:46:c7:
df:16:27:61:11:6f:cb:7b:cb:96:03:c1:52:87:0a:
c0:1b:55:f5:1d:e8:97:81:dc:0f:e0:3b:ae:cc:1f:
40:14:e5:18:6f:e0:ae:f7:d0:11:e3:aa:c3:16:d7:
a7:21:6e:69:2c:c5:d1:5d:c4:85:a0:e2:43:a2:0e:
26:5e:79:87:10:ee:d7:e1:6f:63:89:6a:55:60:ca:
5e:d0:85:a6:6d:8f:47:f5:29:02:89:2a:7b:ec:dd:
03:bf:34:28:b4:5e:4e:06:4e:4e:f9:bb:3b:9a:31:
b5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A5:ED:DC:E5:A3:AC:70:9E:7E:92:CF:1E:22:34:0F:72:79:DE:DC
X509v3 Authority Key Identifier:
keyid:5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:5e:84:19:3b:3c:be:ef:fa:6e:27:e8:76:70:59:ac:cc:9f:
1a:42:62:a7:38:1c:4d:e9:6f:0d:45:a0:d5:7d:13:d2:51:0c:
11:86:a8:13:44:e6:26:d5:48:f5:46:c9:e8:e8:f1:d8:d5:4d:
fb:35:0b:14:de:64:31:a5:c9:98:85:67:ad:db:b0:1e:6e:31:
02:9e:5e:06:57:42:ae:a5:95:38:62:da:21:f7:16:6e:18:57:
17:7f:e3:0f:cd:76:64:6c:f4:7c:23:4e:11:6d:e4:f1:4b:cf:
62:c0:21:dd:74:10:8a:16:ca:04:70:04:c6:e9:4c:e3:bc:27:
06:80:11:82:63:09:47:ae:7d:41:b9:24:7e:07:f0:4e:e2:dc:
6d:07:93:fc:e6:bd:ca:8e:75:3c:e8:10:fa:26:1b:b3:99:bb:
6e:32:a1:ce:1f:13:be:db:4b:e6:bf:14:41:50:5e:1f:41:1c:
8c:4e:a9:b7:f9:c0:83:2b:52:7c:17:2e:9b:fa:58:06:f2:c9:
89:3a:31:77:30:e0:97:24:17:55:1a:56:2b:64:3f:ca:84:47:
27:58:c8:0c:05:b8:75:30:04:93:4e:98:5d:36:e5:ad:4d:5b:
c4:83:03:2a:c9:a9:2b:ef:74:83:06:38:ff:8a:f4:3e:cf:5b:
b5:12:2f:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7CJPBuhZAp9nZDrwe5pU9fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlMjY0OGYxMjkwZDQ0NzFiY2RiNTBiODJiZTRlZDkzMjAw
MzA5NGQwHhcNMjYwNjEzMTgwMTAxWhcNMjYwNjE0MTgwMTAxWjAzMTEwLwYDVQQD
Eyg0N2E1ZWRkY2U1YTNhYzcwOWU3ZTkyY2YxZTIyMzQwZjcyNzlkZWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8HB/0SDFv5iQJtGLhn9nFyzSJTV/
ggIwIzRpIUIgtvyj4jWesNCtbFgTXywbJLHs13mdCI23HM+ZtdZNHFxCm0mhHZyR
3rwqaTJmmeqeeBfePVhFrPlFgKjVqlZMeZ0Ri2FKoAvWAVfRVDrfYeuM9qv67qAN
N2bw65Qy6pcr7/McWeFvMtQVZ1vtf/ey5j/UbckERsffFidhEW/Le8uWA8FShwrA
G1X1HeiXgdwP4DuuzB9AFOUYb+Cu99AR46rDFtenIW5pLMXRXcSFoOJDog4mXnmH
EO7X4W9jiWpVYMpe0IWmbY9H9SkCiSp77N0DvzQotF5OBk5O+bs7mjG1XQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEel7dzlo6xwnn6Szx4iNA9yed7cMB8GA1UdIwQY
MBaAFF4mSPEpDURxvNtQuCvk7ZMgAwlNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iYzRjNTMtMGRiNS00ZjExLTg0ZjYt
ZjU1ZmNkZjk3ODQ2LzEvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iYzRjNTMtMGRiNS00ZjExLTg0ZjYtZjU1ZmNkZjk3ODQ2
LzEvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUl6EGTs8
vu/6bifodnBZrMyfGkJipzgcTelvDUWg1X0T0lEMEYaoE0TmJtVI9UbJ6Ojx2NVN
+zULFN5kMaXJmIVnrduwHm4xAp5eBldCrqWVOGLaIfcWbhhXF3/jD812ZGz0fCNO
EW3k8UvPYsAh3XQQihbKBHAExulM47wnBoARgmMJR659QbkkfgfwTuLcbQeT/Oa9
yo51POgQ+iYbs5m7bjKhzh8TvttL5r8UQVBeH0EcjE6pt/nAgytSfBcum/pYBvLJ
iToxdzDglyQXVRpWK2Q/yoRHJ1jIDAW4dTAEk06YXTblrU1bxIMDKsmpK+90gwY4
/4r0Ps9btRIvlA==
-----END CERTIFICATE-----
Generated at Sun Jun 14 03:30:20 2026 by rpki-client