Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
File: xTG2PRGmzC0c5p4TEch6waanBzM.mft (raw, json)
Hash identifier: Ie5D1Gq9OIXpUlUoDh2MX9nriM5C0yeWr1yTdXniK6g=
Subject key identifier: 44:BE:B3:F2:FA:18:E8:64:03:D3:40:88:30:00:7D:08:15:64:EE:CF
Authority key identifier: C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
Certificate issuer: /CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Certificate serial: 019ED386783C9380FC06A1F36DA2ACB3067A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
Manifest number: 11E9
Signing time: Wed 17 Jun 2026 03:01:05 +0000
Manifest this update: Wed 17 Jun 2026 03:01:05 +0000
Manifest next update: Thu 18 Jun 2026 03:01:05 +0000
Files and hashes: 1: WGUKVj-vf2RKGeE0tMRbU2IE_NQ.roa (hash: tHeLPtV3EhtYhN1tkXzaqoA9I1M0f8QKiOJp3r6uMxQ=)
2: xTG2PRGmzC0c5p4TEch6waanBzM.crl (hash: 2ZCZ9a5RWM7jicEa478DQpAB1FgKIXey+yikzKxchoM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 03:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d3:86:78:3c:93:80:fc:06:a1:f3:6d:a2:ac:b3:06:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Validity
Not Before: Jun 17 03:01:05 2026 GMT
Not After : Jun 18 03:01:05 2026 GMT
Subject: CN=44beb3f2fa18e86403d3408830007d081564eecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:57:37:0a:ba:18:00:52:71:68:ab:34:2b:82:
1f:f9:3a:91:49:66:07:10:c4:d2:d0:73:f7:7f:e8:
6e:28:e4:d0:e6:44:72:d8:15:6d:a4:e0:ff:af:ca:
d1:97:9d:ba:64:9b:be:3e:ba:8b:0b:93:5d:be:ef:
8e:04:db:19:61:b2:70:3d:d4:21:98:88:cc:29:6d:
5c:8d:69:7b:a7:1b:5c:d3:ba:73:4a:b5:ea:86:59:
70:01:ac:00:c3:60:ea:a8:99:c0:7c:bc:c7:d5:76:
76:6f:b3:be:ca:61:e4:66:4e:e8:4b:f2:47:c0:54:
f5:72:4d:71:3e:a5:49:f2:d9:c6:6c:6d:8d:5b:2c:
65:1e:12:92:76:a9:f6:21:46:9b:1e:f3:50:6e:f0:
02:90:0f:f9:26:37:61:66:46:a4:ce:6c:eb:d5:bd:
3c:65:0a:54:c0:2d:57:b5:39:5b:2c:a3:57:d5:b8:
73:02:9b:ba:57:52:0e:d7:74:72:18:10:aa:7b:a8:
94:43:be:cf:89:b2:5b:96:9e:c0:24:5c:ba:54:66:
48:40:ed:0a:01:57:cd:c6:84:f7:e4:90:01:01:36:
5b:86:b7:e7:52:36:61:34:fe:ee:c2:cb:f0:c0:60:
a1:db:b4:b1:70:37:4b:0c:6d:4a:2c:81:1a:4c:55:
cb:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:BE:B3:F2:FA:18:E8:64:03:D3:40:88:30:00:7D:08:15:64:EE:CF
X509v3 Authority Key Identifier:
keyid:C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:b5:be:0b:3a:e7:9f:3e:29:b2:41:9f:ad:b1:72:72:45:44:
f7:03:b2:f3:ce:25:0f:11:ff:37:f0:26:a1:7e:06:30:b6:6b:
30:6c:41:fc:53:16:ba:69:af:63:62:d4:20:6c:d9:2c:57:f7:
d7:5e:3b:be:99:98:96:9f:a9:79:2c:b9:ce:f3:83:32:5f:11:
09:54:8e:57:1f:c7:d9:7b:cc:f4:6a:27:7f:4e:33:aa:43:6c:
04:63:d1:38:01:0a:06:4f:23:f8:13:47:47:67:2b:ef:9e:64:
e0:a7:7b:71:2c:14:52:a3:5c:2d:10:e5:fb:da:83:f3:05:f5:
ac:3f:64:2a:b8:50:2c:bb:4b:84:0b:c9:a9:fa:a6:b7:49:5e:
a7:e3:62:06:2f:fe:b1:31:91:83:1a:d7:c6:c0:74:10:06:dd:
12:fd:fd:70:ed:c0:f2:cb:75:c6:9e:b6:17:97:12:bf:be:2f:
d8:4c:ef:3b:c5:da:fe:38:2f:10:66:9a:73:c4:96:4f:eb:6b:
b7:98:01:52:35:39:4f:f1:af:02:b5:bc:dd:74:79:f1:ad:27:
e0:ae:cb:12:1d:14:dc:1e:d8:e5:9d:4c:9b:21:5d:1c:85:dc:
59:b7:dd:5e:19:48:55:8d:fb:12:1b:95:94:44:41:86:c8:d2:
b5:49:20:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Thng8k4D8BqHzbaKsswZ6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1MzFiNjNkMTFhNmNjMmQxY2U2OWUxMzExYzg3YWMxYTZh
NzA3MzMwHhcNMjYwNjE3MDMwMTA1WhcNMjYwNjE4MDMwMTA1WjAzMTEwLwYDVQQD
Eyg0NGJlYjNmMmZhMThlODY0MDNkMzQwODgzMDAwN2QwODE1NjRlZWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1c3CroYAFJxaKs0K4If+TqRSWYH
EMTS0HP3f+huKOTQ5kRy2BVtpOD/r8rRl526ZJu+PrqLC5Ndvu+OBNsZYbJwPdQh
mIjMKW1cjWl7pxtc07pzSrXqhllwAawAw2DqqJnAfLzH1XZ2b7O+ymHkZk7oS/JH
wFT1ck1xPqVJ8tnGbG2NWyxlHhKSdqn2IUabHvNQbvACkA/5JjdhZkakzmzr1b08
ZQpUwC1XtTlbLKNX1bhzApu6V1IO13RyGBCqe6iUQ77PibJblp7AJFy6VGZIQO0K
AVfNxoT35JABATZbhrfnUjZhNP7uwsvwwGCh27SxcDdLDG1KLIEaTFXLzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFES+s/L6GOhkA9NAiDAAfQgVZO7PMB8GA1UdIwQY
MBaAFMUxtj0RpswtHOaeExHIesGmpwczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84Njg5OGUtZTZlNi00Yjg4LTg4MTEt
ZGI4Y2FiY2VlMjFlLzEveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC84Njg5OGUtZTZlNi00Yjg4LTg4MTEtZGI4Y2FiY2VlMjFl
LzEveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdLW+Czrn
nz4pskGfrbFyckVE9wOy884lDxH/N/AmoX4GMLZrMGxB/FMWummvY2LUIGzZLFf3
1147vpmYlp+peSy5zvODMl8RCVSOVx/H2XvM9Gonf04zqkNsBGPROAEKBk8j+BNH
R2cr755k4Kd7cSwUUqNcLRDl+9qD8wX1rD9kKrhQLLtLhAvJqfqmt0lep+NiBi/+
sTGRgxrXxsB0EAbdEv39cO3A8st1xp62F5cSv74v2EzvO8Xa/jgvEGaac8SWT+tr
t5gBUjU5T/GvArW83XR58a0n4K7LEh0U3B7Y5Z1MmyFdHIXcWbfdXhlIVY37EhuV
lERBhsjStUkgoA==
-----END CERTIFICATE-----
Generated at Wed Jun 17 10:37:06 2026 by rpki-client