Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
File: xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json)
Hash identifier: u2VxsKoz84EmncL8fv6S3ksOFj9ytqBAhMROD8MSn5M=
Subject key identifier: 67:17:33:E8:F6:FE:82:13:2B:79:9E:C5:C6:C5:C4:D4:87:FC:6D:D2
Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
Certificate issuer: /CN=c5bfa71a5113fed82464776c14371514c9218ef5
Certificate serial: 019EC17FA6DAB1D68AFBDBB9B61E05F6ADE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
Manifest number: 0D93
Signing time: Sat 13 Jun 2026 15:00:28 +0000
Manifest this update: Sat 13 Jun 2026 15:00:28 +0000
Manifest next update: Sun 14 Jun 2026 15:00:28 +0000
Files and hashes: 1: jBvSHulkiAFNZq-1Sz_1NBwC4gw.roa (hash: kIr3tsaXSv0n1HwqnJcooiylPmXgSiBfGD9CqML14GU=)
2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: kkrR0+nUUmhlbEgFhhhYAERPAH5j+D2dCg6CQe7u34E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:7f:a6:da:b1:d6:8a:fb:db:b9:b6:1e:05:f6:ad:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5
Validity
Not Before: Jun 13 15:00:28 2026 GMT
Not After : Jun 14 15:00:28 2026 GMT
Subject: CN=671733e8f6fe82132b799ec5c6c5c4d487fc6dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:55:11:43:a2:2f:72:62:47:ed:65:3b:dc:94:
25:28:27:50:f8:e9:cc:9a:04:45:5c:ae:bf:1e:f7:
f7:b2:71:e6:b7:91:0d:79:09:e6:27:e9:8b:de:f5:
cc:8c:84:4f:ee:9f:78:a5:4a:e6:ab:e0:30:e9:2b:
cd:fa:fb:aa:ed:ed:4f:b8:a6:d1:50:89:d8:19:e2:
4b:a2:22:eb:51:70:cf:0b:20:0b:2a:c2:7f:5c:c2:
95:18:1e:e5:20:c5:c5:27:34:c5:87:50:11:1d:e1:
3b:83:a0:e7:1a:aa:4c:54:5c:9a:f8:58:ec:dd:40:
32:12:06:43:c3:d5:a2:3b:12:b4:14:5e:32:13:34:
f5:6e:8e:98:9b:a9:30:5d:0d:75:70:c2:70:64:ed:
0a:00:0a:6d:91:57:6a:fd:2d:6d:8b:85:38:1b:0d:
c5:27:14:45:1b:bc:9e:25:11:fc:e0:7c:f7:8c:5d:
57:b6:ef:d1:74:30:7e:66:56:71:8c:d0:fa:d1:10:
6d:47:7b:0b:ad:9b:6e:4e:83:42:c7:b8:ad:86:9d:
18:ff:19:03:70:c3:39:d9:fa:d6:dd:6c:72:26:49:
40:3f:ca:6f:8e:cc:1b:38:7f:60:a2:93:21:37:d2:
fa:ba:0c:8a:78:e5:4c:72:44:a2:fc:44:92:b3:b4:
ab:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:17:33:E8:F6:FE:82:13:2B:79:9E:C5:C6:C5:C4:D4:87:FC:6D:D2
X509v3 Authority Key Identifier:
keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:93:7c:3b:d3:5f:81:01:e7:37:bc:11:67:4b:d7:5d:89:49:
f3:f7:b2:fb:8e:a6:a5:f0:fd:a2:31:3c:74:62:4c:31:b9:2c:
95:62:2f:67:69:c4:8e:57:24:7f:1f:ad:87:a6:fa:91:d8:18:
19:bf:a7:c9:20:08:b6:58:72:60:38:d5:8b:a7:22:6e:8a:72:
a8:7c:d7:5a:bd:10:6d:da:c7:91:78:d5:db:41:76:33:cf:9e:
23:28:6e:ef:54:a7:26:fd:3f:6f:03:c5:d0:be:c1:a7:14:ef:
b3:59:8d:95:a4:4d:9d:3c:55:ce:fa:0e:49:04:c1:08:86:d5:
20:f5:20:a3:63:b6:b1:63:25:e9:3a:7e:f5:48:ae:03:c3:c2:
9c:43:b1:c2:9e:0e:1b:c8:4a:3d:53:41:05:3a:34:36:52:2b:
05:eb:e5:b1:c3:6e:de:30:9a:9a:1a:df:97:65:8b:ac:97:dc:
4d:c8:44:a0:d1:53:53:a2:6b:95:e2:ea:2c:a4:ca:9d:fb:81:
7c:4c:23:4b:f1:d5:58:e1:a8:88:2c:f5:56:85:57:0a:52:49:
16:7e:f3:60:7d:12:06:59:fd:a1:80:3f:55:a3:b7:92:5b:96:
f9:1b:25:ae:3c:81:39:0c:cc:f8:f1:06:c0:6f:72:e4:8b:60:
10:a5:61:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:58:47 2026 by rpki-client