Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
File: xtEbZP_hjvpC9DpsdlY53uONAn4.mft (raw, json)
Hash identifier: nNJIxVDcCP/PpgTdFzjTXbXXmz/KjdyQNfFT5wGExL4=
Subject key identifier: 16:E1:5B:29:62:06:28:17:91:1B:03:00:2A:FC:97:E5:4E:17:9F:3B
Authority key identifier: C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
Certificate issuer: /CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Certificate serial: 019EC148E99C653BD04CBB9628FB1288D7CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
Manifest number: 11E2
Signing time: Sat 13 Jun 2026 14:00:41 +0000
Manifest this update: Sat 13 Jun 2026 14:00:41 +0000
Manifest next update: Sun 14 Jun 2026 14:00:41 +0000
Files and hashes: 1: 1HMsGfdsMj6bVCe_HqSPHKmPGQA.roa (hash: Aa+3horScinkb91IcV06nuOTEkzdcEAPUq8TBlQGMDg=)
2: Q6q5ifTmogwJicn2e4z2f5_1UN8.roa (hash: ZCT+LPivkmFqXHHIYRE3kEHzKOk9mVM2bvW0OtpppFg=)
3: xtEbZP_hjvpC9DpsdlY53uONAn4.crl (hash: cNV/hX9VyWZBIHo4duPIxn9UOTmHXFilfmKhok5b6aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:e9:9c:65:3b:d0:4c:bb:96:28:fb:12:88:d7:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Validity
Not Before: Jun 13 14:00:41 2026 GMT
Not After : Jun 14 14:00:41 2026 GMT
Subject: CN=16e15b2962062817911b03002afc97e54e179f3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d2:6c:99:ee:bc:41:ba:0c:c8:a8:90:80:de:
cd:1a:34:b8:bb:d3:01:db:58:d3:aa:39:83:1b:33:
ac:83:44:02:29:38:b3:cf:6e:dd:8f:a6:a1:da:3e:
7d:79:a9:88:35:a0:f7:2f:ce:2f:e5:94:86:07:67:
10:28:f6:03:34:08:6d:c6:88:09:c2:f8:2a:1a:27:
97:09:be:17:54:36:cb:dd:5a:75:b9:c7:d4:f8:af:
c4:39:d5:8f:57:e5:06:dc:e9:e2:e2:29:6e:9c:6e:
26:51:2f:21:e9:93:75:c0:a3:f1:c8:26:52:83:27:
c5:5b:cc:7a:4b:c6:29:e2:af:6f:de:92:5b:7e:85:
cf:60:cf:bc:25:97:fb:c7:98:1b:ab:e0:a5:7d:8b:
3b:c7:2c:9c:54:b3:80:0b:80:7f:01:a7:64:9a:80:
3d:31:e0:82:ef:41:4f:ad:af:99:39:bf:20:25:2e:
40:05:74:aa:0e:42:37:8c:7d:ef:ab:21:6e:2a:fc:
b0:19:73:fa:14:7d:18:e7:57:db:16:bc:f3:21:e2:
66:d2:e9:9a:d5:7e:8f:e4:d1:df:f5:fe:d1:ec:84:
59:dc:43:2c:dc:bd:4d:5e:3f:1c:40:4d:55:aa:90:
b0:3f:44:6f:aa:40:6a:29:4d:10:77:dd:fa:ea:be:
f5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:E1:5B:29:62:06:28:17:91:1B:03:00:2A:FC:97:E5:4E:17:9F:3B
X509v3 Authority Key Identifier:
keyid:C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:3d:d4:0f:3f:1b:39:31:d9:b1:9b:28:83:93:27:dc:1c:0e:
2b:82:21:f0:b8:6a:f9:49:6c:b3:ed:f1:fa:e9:28:0b:de:79:
81:03:6f:85:8d:63:35:88:3f:b2:7e:d2:8a:f2:ac:12:64:3c:
32:52:cc:25:9b:29:37:f9:8f:1b:4c:09:de:a8:8f:b3:83:59:
e7:4c:5c:2d:d5:fd:0b:f7:c2:0e:f7:b1:5a:87:34:90:e0:2a:
12:88:0f:bc:f4:7e:76:2c:7d:b2:e8:bc:eb:77:67:1b:2a:60:
85:3a:5a:d8:5f:2c:38:2b:61:ff:b8:60:02:f7:b7:56:c2:d8:
37:91:fa:bf:e3:51:cc:9d:a4:1b:71:f4:39:5e:1e:af:f2:12:
a3:47:fd:55:d5:bd:f6:c2:30:b4:60:87:22:83:17:71:d5:ad:
3d:3f:06:e2:16:ee:aa:a0:61:4b:5d:0d:14:1a:22:e0:69:9a:
93:66:76:3a:3b:b2:ba:02:37:c4:96:1d:7f:80:6e:c8:2d:ed:
d3:f1:8d:4a:c3:84:e9:6e:bb:26:80:65:33:a1:08:21:45:87:
c7:4b:72:a5:af:46:9f:a0:ce:68:4f:06:29:4a:df:9d:d2:00:
95:20:84:02:21:40:ab:2e:3d:e3:69:4f:bc:ff:b6:d3:f9:1a:
13:7d:94:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:22:47 2026 by rpki-client