Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: tt0uyO9SH6PEdn5M8iu24C0B8XVHn3KNQK4yerle3kg=
Subject key identifier: 66:57:2C:4F:69:ED:18:91:50:40:57:4D:19:C4:4F:CB:3D:CC:1D:EA
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 019EBFC7FD8A44A8050FCF77B62F3B69173C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 0AF8
Signing time: Sat 13 Jun 2026 07:00:15 +0000
Manifest this update: Sat 13 Jun 2026 07:00:15 +0000
Manifest next update: Sun 14 Jun 2026 07:00:15 +0000
Files and hashes: 1: bkpFrc_6laoYbGdkqTlHlW-Qe80.roa (hash: p/3gwRkkBDXycKoUYkEzWpJbWT3T+RMybdZ5AMyzIgo=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: zAmIHVshO5EwjbYdM8FexNiRvFB/sGi0D3+NaSXiPCE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 07:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:c7:fd:8a:44:a8:05:0f:cf:77:b6:2f:3b:69:17:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Jun 13 07:00:15 2026 GMT
Not After : Jun 14 07:00:15 2026 GMT
Subject: CN=66572c4f69ed18915040574d19c44fcb3dcc1dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:da:db:16:eb:92:51:9a:7d:4b:fe:2b:c9:94:
10:15:86:bd:96:c7:b4:6d:00:3e:fd:97:29:44:73:
64:05:f8:4e:32:21:14:4f:8e:29:6a:6d:e8:8a:cb:
97:07:62:04:98:73:64:cd:46:dc:60:0b:3a:ff:60:
89:f3:5d:c6:cd:f9:37:b5:9f:99:68:a3:27:ba:6f:
19:00:25:8b:da:79:c4:f6:74:6a:4b:a0:6f:c1:a7:
88:af:d2:89:ca:e8:6d:89:04:c3:42:d3:cd:67:7e:
49:53:e6:74:b1:df:cf:ce:f2:b8:17:78:22:77:b4:
75:0e:77:21:e6:b4:f1:ca:38:ff:d0:54:a4:ad:c8:
56:ae:f0:30:34:55:70:6b:14:d4:49:0e:7b:05:f7:
a6:99:67:f1:00:6e:66:17:9d:15:0c:93:b4:77:b6:
52:f8:c0:5c:29:00:1e:28:f2:17:a4:63:20:4f:1d:
4b:0a:46:90:0f:25:09:41:fe:c0:c8:30:50:94:04:
b5:b1:60:8a:a0:c6:78:6c:ce:c1:23:67:cc:70:79:
bf:5e:67:2f:2e:26:ad:82:4e:f8:db:64:74:82:d5:
af:27:42:e7:f1:5c:0f:00:61:be:a9:9a:b8:9d:56:
4f:32:27:0d:cb:55:5d:cc:10:2e:d0:1e:f2:4e:14:
a1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:57:2C:4F:69:ED:18:91:50:40:57:4D:19:C4:4F:CB:3D:CC:1D:EA
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:2f:14:14:e6:32:60:df:14:e0:e7:34:ab:38:0f:52:c9:b8:
61:f8:3e:cc:43:09:e4:f1:60:13:57:6d:6b:3f:1a:1d:23:78:
b2:37:8d:9b:69:4d:49:7e:16:c9:f8:f2:bd:0e:54:ac:8e:d7:
9c:ee:e9:40:4d:90:16:1d:46:ff:76:cd:b8:01:80:53:7c:24:
8d:90:4d:08:0c:03:25:fa:41:30:6e:07:d3:90:d9:76:79:e8:
f3:a5:be:fa:c1:01:f7:a6:ce:b0:54:31:b6:00:13:f7:e7:db:
d4:cc:9e:a9:8c:e5:a1:2c:ee:5d:df:ca:3b:d7:4d:c3:25:ad:
7f:af:3d:e1:10:41:bf:cc:c2:7a:42:33:8b:5f:af:23:32:c6:
96:d7:47:04:3b:81:1a:67:9f:08:71:e3:0e:36:7d:57:b1:80:
ae:32:21:17:70:99:50:b9:a2:66:b3:fc:93:a6:a1:8c:ec:50:
2e:fd:27:e3:52:3e:33:24:39:0e:b0:18:ea:f0:46:c3:5f:16:
bb:b9:62:21:88:41:c0:d1:e6:d2:25:5b:0d:6a:72:39:e7:7b:
e5:2e:25:b5:5a:06:4a:de:bf:b2:c6:27:7e:cb:82:a0:1d:e5:
6f:c6:11:f4:57:18:0e:b9:4f:82:44:cd:59:d7:cf:af:0c:be:
1c:48:1e:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:50:27 2026 by rpki-client