Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
File: X017eQ8_STQyjhKaLd5N10qj4T4.mft (raw, json)
Hash identifier: 1ipWWjoKrrz+bDyG+LD5HGXrPykn8GNITMPLAfMM6/8=
Subject key identifier: ED:8B:38:9E:73:7B:A5:11:8B:4C:E0:80:23:77:C9:E4:F0:27:95:30
Authority key identifier: 5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
Certificate issuer: /CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Certificate serial: 019EC44A09B89A2EBB05092A3D3E423CBB20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
Manifest number: 03D9
Signing time: Sun 14 Jun 2026 04:00:46 +0000
Manifest this update: Sun 14 Jun 2026 04:00:46 +0000
Manifest next update: Mon 15 Jun 2026 04:00:46 +0000
Files and hashes: 1: X017eQ8_STQyjhKaLd5N10qj4T4.crl (hash: RuQhMuIBZH/u2QNwrsfAawYXCoMY7qck/+61q+DcWOY=)
2: kSjjDOzoNANECAR0DxlgQ3qg0Ak.roa (hash: /lj5qR8E+7YT0u9bmkNO6K63OEKU1WfqJKCxaWzabBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 02:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c4:4a:09:b8:9a:2e:bb:05:09:2a:3d:3e:42:3c:bb:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4d7b790f3f4934328e129a2dde4dd74aa3e13e
Validity
Not Before: Jun 14 04:00:46 2026 GMT
Not After : Jun 15 04:00:46 2026 GMT
Subject: CN=ed8b389e737ba5118b4ce0802377c9e4f0279530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5a:30:ef:d7:1b:4f:9c:e3:48:f5:d4:63:99:
49:ff:73:76:8e:02:4e:3a:73:03:bb:35:a6:c5:90:
08:71:54:4d:c4:19:be:33:56:68:4e:00:24:6b:e5:
80:0e:24:f9:07:32:cf:9a:94:70:8e:c6:d6:e4:a0:
9e:71:2d:43:38:11:16:bf:3d:43:bb:69:d0:7c:e8:
f5:e8:b7:e4:1e:1e:da:ea:7f:83:4c:7f:6d:f6:e0:
14:75:0b:db:d1:bd:6d:86:3f:d5:7c:bd:74:b5:b9:
63:71:5f:29:a4:04:11:3a:94:a4:58:d9:9a:61:1d:
ea:2b:93:20:8d:d3:d3:ed:e4:f9:df:2e:b9:73:3a:
07:2a:80:2d:ec:af:2c:42:4b:29:75:25:88:65:52:
a0:2e:87:71:61:06:d7:ca:e0:3e:79:37:e6:34:c8:
dd:71:19:74:2c:46:d9:11:35:35:66:19:00:06:66:
71:c6:17:16:d9:64:98:c5:78:31:d0:0d:1c:72:7c:
05:25:65:8f:74:b1:a3:aa:e6:d3:c0:72:5f:df:9f:
00:ca:3f:d3:98:64:24:c2:1f:38:3b:aa:7b:74:10:
7a:90:99:ad:d0:2d:41:25:01:9e:f0:d7:93:30:71:
b2:03:01:52:a9:71:cf:04:74:3b:12:71:32:bc:95:
8c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:8B:38:9E:73:7B:A5:11:8B:4C:E0:80:23:77:C9:E4:F0:27:95:30
X509v3 Authority Key Identifier:
keyid:5F:4D:7B:79:0F:3F:49:34:32:8E:12:9A:2D:DE:4D:D7:4A:A3:E1:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X017eQ8_STQyjhKaLd5N10qj4T4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9b6016-1424-4188-ae62-7d54927445f6/1/X017eQ8_STQyjhKaLd5N10qj4T4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:27:cb:3e:72:c2:5c:c3:59:31:a4:4f:1b:bd:1d:9a:8b:04:
ae:14:5f:9f:22:92:c8:85:97:2e:a6:65:9c:0e:36:d1:fe:d3:
7b:d9:f6:cd:13:5b:08:f3:29:8a:ba:43:08:18:c5:4d:75:33:
1d:34:a7:3f:30:84:dc:bf:c5:55:aa:8c:5d:7c:0f:1e:56:de:
b4:c1:e4:fc:a7:c2:a6:85:0e:27:98:de:10:1d:f2:50:17:59:
fc:5e:e9:7e:79:24:75:17:44:2f:98:12:c4:b3:e7:26:21:80:
23:b7:fd:03:10:f4:61:f1:55:d0:78:11:56:49:b5:0e:e2:82:
d1:9c:d2:4d:9d:fb:64:69:d1:88:cd:15:20:bc:8e:8b:69:46:
c2:97:4a:16:62:ba:a4:21:3b:07:c1:87:7c:52:d6:57:8d:70:
5f:02:ca:bb:5c:a5:cd:e0:a3:48:5a:f1:fd:33:c4:31:23:53:
5a:7d:4d:51:49:79:57:6d:85:ad:34:35:d9:f6:b2:b3:fe:c2:
60:18:bf:92:71:97:6e:58:33:9a:1e:76:e1:15:a0:9d:87:18:
f5:84:5e:ee:8e:65:b4:05:66:9e:5d:51:17:a6:c0:7b:42:d7:
7e:0f:b8:ad:78:1d:a0:05:79:13:a0:8e:60:a6:b3:a1:8b:cf:
d1:6d:02:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 07:12:19 2026 by rpki-client