Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.mft
File: xx85HWDhoTnMxCsXoyqVNj31z7A.mft (raw, json)
Hash identifier: Kgc+zZBUjfFTXA4feDtb32ZBXLlJim/psKO49mF5a9A=
Subject key identifier: 87:44:23:49:BD:A4:23:1D:93:E6:20:A1:69:23:C2:21:65:2C:07:41
Authority key identifier: C7:1F:39:1D:60:E1:A1:39:CC:C4:2B:17:A3:2A:95:36:3D:F5:CF:B0
Certificate issuer: /CN=c71f391d60e1a139ccc42b17a32a95363df5cfb0
Certificate serial: 019EC1ED9DFE689039301CAF71C015D14506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xx85HWDhoTnMxCsXoyqVNj31z7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.mft
Manifest number: 0279
Signing time: Sat 13 Jun 2026 17:00:35 +0000
Manifest this update: Sat 13 Jun 2026 17:00:35 +0000
Manifest next update: Sun 14 Jun 2026 17:00:35 +0000
Files and hashes: 1: 5Ac1xGg2xzacy1Elgpwm7Fl9gOY.roa (hash: VWmcJPkpnJaJdz3GW3aT+bj0R6mJFxMSWGrX3LD0Zyk=)
2: xx85HWDhoTnMxCsXoyqVNj31z7A.crl (hash: R7tsb5rnkVBhJz7rADf7fM9iwXi9mYcxIVwKvNo4/1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.mft
rsync://rpki.ripe.net/repository/DEFAULT/xx85HWDhoTnMxCsXoyqVNj31z7A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ed:9d:fe:68:90:39:30:1c:af:71:c0:15:d1:45:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c71f391d60e1a139ccc42b17a32a95363df5cfb0
Validity
Not Before: Jun 13 17:00:35 2026 GMT
Not After : Jun 14 17:00:35 2026 GMT
Subject: CN=87442349bda4231d93e620a16923c221652c0741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:da:e5:39:cc:d3:fc:49:cd:2a:1f:cf:c2:18:
1a:e9:bc:e3:67:35:2e:83:fd:80:a5:e0:ff:56:5e:
7e:2c:1d:0e:62:57:34:cf:cd:b4:c2:27:d2:4b:08:
a1:c6:b3:e7:43:c5:be:0e:14:1e:6f:c4:39:10:17:
22:dc:1e:cc:af:84:ba:ba:58:ce:a3:74:6b:fc:33:
80:6f:bf:e9:2d:63:ab:97:36:23:ca:35:27:58:69:
45:17:ef:96:30:8e:af:5a:4e:77:f7:3d:a9:2e:9c:
ae:7d:c0:15:06:7d:43:d1:de:48:5c:bf:30:25:83:
e0:19:9d:ca:11:cb:6e:ca:b3:b7:b7:31:0d:3d:a5:
e1:61:d4:90:5c:bd:7f:62:3f:37:9f:28:30:b4:76:
1b:3d:1f:25:f2:cd:c3:1a:29:52:a4:3b:1b:f8:ed:
29:d8:ff:2d:f9:e1:e5:f3:23:f7:d9:63:86:99:49:
10:68:d4:aa:13:d9:7f:b6:3a:0d:33:f7:5b:98:3c:
14:8b:16:49:ea:05:70:b3:37:22:0b:c0:7e:a1:34:
41:93:62:b5:1d:8b:c6:21:f1:72:a1:ad:d8:79:6b:
2c:5c:04:d5:16:ce:7c:2b:eb:c5:ff:c2:3b:63:d3:
e1:8f:8b:46:67:39:14:f5:7c:19:91:47:79:14:30:
48:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:44:23:49:BD:A4:23:1D:93:E6:20:A1:69:23:C2:21:65:2C:07:41
X509v3 Authority Key Identifier:
keyid:C7:1F:39:1D:60:E1:A1:39:CC:C4:2B:17:A3:2A:95:36:3D:F5:CF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xx85HWDhoTnMxCsXoyqVNj31z7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/de9ffc-4477-4e30-9570-6541cc006eac/1/xx85HWDhoTnMxCsXoyqVNj31z7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:1d:04:85:68:c0:a6:00:8e:78:c5:b9:e9:bd:56:27:65:08:
42:e3:38:3e:ac:99:15:9e:2c:d6:f6:80:74:91:f9:3f:5d:d8:
c3:cd:5c:60:21:4b:4d:64:c0:78:81:c0:6b:1e:7a:1a:dd:2e:
c5:f9:5a:26:6d:ea:23:86:ef:6b:b4:f1:e9:8e:08:03:dd:21:
50:17:e3:7d:0d:94:2a:cb:83:9b:4b:e2:9d:13:b5:09:73:c4:
ba:98:a6:10:c4:08:61:48:73:4f:64:7a:9a:78:52:15:fd:1f:
ed:72:4e:52:f9:66:b1:4c:25:f2:39:9b:59:fc:e5:f7:df:71:
10:4e:2b:93:73:2b:54:13:60:2c:e2:12:7c:f3:ea:ca:ca:b2:
50:36:19:39:f4:3c:02:8e:6c:62:bd:01:14:18:f4:fc:f7:42:
d9:e5:c1:ac:90:f9:02:95:61:c1:ad:58:67:cc:d4:db:30:2f:
1b:cc:2c:b1:c6:f9:ca:72:78:cd:90:5a:c2:e0:1c:7f:cb:a5:
b4:09:78:46:cc:86:73:b5:8c:28:17:2a:20:59:b1:06:c2:84:
71:f0:33:70:79:80:58:64:11:5f:35:28:12:ce:d5:65:53:05:
85:a7:bb:ad:5c:ba:b6:3c:33:d4:bf:7b:c1:29:de:a7:4c:e3:
90:0e:f6:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:36:16 2026 by rpki-client