Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
File: XM97P9h86bzpn5ALZBmdYGvxYGk.mft (raw, json)
Hash identifier: cJFcUCNAUmY6Cp1SnoNmZIskYkfk4ejBEjl+kljjJlw=
Subject key identifier: A2:7D:21:39:E2:92:7B:CA:99:38:67:95:DC:20:01:97:B0:60:1E:70
Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Certificate serial: 019EA7C0DF8A5F45CCC215C127B74D4C5DF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
Manifest number: 18E0
Signing time: Mon 08 Jun 2026 15:01:35 +0000
Manifest this update: Mon 08 Jun 2026 15:01:35 +0000
Manifest next update: Tue 09 Jun 2026 15:01:35 +0000
Files and hashes: 1: KhLnM9UHZFCOQul_YnhOlrlNWQg.roa (hash: F9XQk4xPu6hZHYNZKH9uTFT9zpakfltc+2j9WkGLNVk=)
2: XM97P9h86bzpn5ALZBmdYGvxYGk.crl (hash: 3HIsUrTHLusp43+qU4JE2HDikbXA3C7qrP0PQd34e9Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 14:52:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a7:c0:df:8a:5f:45:cc:c2:15:c1:27:b7:4d:4c:5d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Validity
Not Before: Jun 8 15:01:35 2026 GMT
Not After : Jun 9 15:01:35 2026 GMT
Subject: CN=a27d2139e2927bca99386795dc200197b0601e70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6b:f0:c3:93:1c:be:be:41:7f:ea:8b:e0:6e:
02:15:71:a4:2d:7c:6a:ad:a8:91:13:81:4e:a1:2e:
2e:22:bb:c6:c8:8c:2f:71:22:b3:6c:84:88:f2:45:
cf:2a:37:4f:43:4c:cc:ca:ac:65:31:53:55:05:bf:
34:88:69:0e:bd:06:60:50:c0:0a:75:c5:5a:40:7c:
f5:96:b7:14:3b:ba:32:83:37:cd:27:7e:10:ff:a0:
00:01:fd:58:a2:92:29:53:da:15:17:47:68:78:93:
d2:49:aa:a3:c7:1c:88:84:c0:b4:53:4c:ac:34:29:
a0:bb:4b:2f:91:22:ce:22:dc:d5:89:97:84:2c:db:
ba:8c:ef:2a:4a:d6:f4:55:bb:db:c3:4b:9c:54:bf:
dc:6e:d7:52:8d:22:72:0d:35:fb:ea:d3:43:bb:c7:
dc:61:08:49:72:78:26:08:61:15:bd:13:1f:1c:7a:
4b:9e:0a:ba:c1:5b:9c:cf:7b:f6:ae:d9:51:7f:5e:
5b:7b:1e:ac:7a:51:ad:17:1e:c4:57:ee:ef:88:f5:
43:6f:73:26:18:77:a5:d3:d3:a1:e0:bb:b3:c3:8d:
38:16:e7:7f:4a:ea:41:49:fd:e9:a0:6c:7a:00:73:
c9:29:0d:f4:35:62:e5:fe:cf:4c:d4:67:53:72:8c:
e4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7D:21:39:E2:92:7B:CA:99:38:67:95:DC:20:01:97:B0:60:1E:70
X509v3 Authority Key Identifier:
keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:bb:27:2e:be:2e:77:fd:ab:59:d0:c8:77:8d:57:14:f9:f9:
cc:40:ef:9d:6d:ec:ed:09:e3:df:bb:91:18:74:7d:4c:71:a6:
78:0e:91:72:2c:53:7d:86:78:b6:46:97:56:c6:87:dd:af:d0:
95:2f:61:d4:59:ae:3b:36:6e:e8:49:aa:e8:ea:f4:3c:05:2c:
6a:22:28:3a:f3:01:ad:63:f3:bc:cd:93:14:33:6a:2e:bd:76:
b5:df:b9:62:c1:2c:a2:16:1e:26:00:37:d0:ec:cb:ea:47:a2:
b1:dc:6e:cc:a4:bb:22:9c:37:e0:aa:4f:07:5d:10:bf:e7:c1:
94:0d:56:39:dc:1c:c8:dd:ee:0c:15:7e:89:52:32:1e:d3:06:
68:8e:16:29:bd:fd:6f:ff:13:b9:4d:dc:56:91:18:0d:70:7c:
e3:8c:da:2e:6c:86:49:a9:80:2f:1e:a8:d5:27:6e:9a:e3:d3:
90:0c:7d:79:7b:68:ba:d5:27:95:cc:39:6b:3d:3d:97:aa:fa:
46:8d:bf:7a:57:11:d4:7e:c0:d5:11:c0:94:9d:f4:21:15:1a:
c5:28:95:ea:4e:0c:52:24:e7:37:8d:9c:5f:b9:ef:f6:c4:67:
da:23:98:03:c0:51:74:5b:43:0f:f2:f7:65:f7:ff:9b:91:60:
96:08:ed:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6nwN+KX0XMwhXBJ7dNTF3yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjY2Y3YjNmZDg3Y2U5YmNlOTlmOTAwYjY0MTk5ZDYwNmJm
MTYwNjkwHhcNMjYwNjA4MTUwMTM1WhcNMjYwNjA5MTUwMTM1WjAzMTEwLwYDVQQD
EyhhMjdkMjEzOWUyOTI3YmNhOTkzODY3OTVkYzIwMDE5N2IwNjAxZTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGvww5Mcvr5Bf+qL4G4CFXGkLXxq
raiRE4FOoS4uIrvGyIwvcSKzbISI8kXPKjdPQ0zMyqxlMVNVBb80iGkOvQZgUMAK
dcVaQHz1lrcUO7oygzfNJ34Q/6AAAf1YopIpU9oVF0doeJPSSaqjxxyIhMC0U0ys
NCmgu0svkSLOItzViZeELNu6jO8qStb0Vbvbw0ucVL/cbtdSjSJyDTX76tNDu8fc
YQhJcngmCGEVvRMfHHpLngq6wVucz3v2rtlRf15bex6selGtFx7EV+7viPVDb3Mm
GHel09Oh4Luzw404Fud/SupBSf3poGx6AHPJKQ30NWLl/s9M1GdTcozkDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKJ9ITniknvKmThnldwgAZewYB5wMB8GA1UdIwQY
MBaAFFzPez/YfOm86Z+QC2QZnWBr8WBpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC81NGRlYmItZDBiNi00NGQxLThlNTgt
OGNmOWU2ZjhhYjQ1LzEvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC81NGRlYmItZDBiNi00NGQxLThlNTgtOGNmOWU2ZjhhYjQ1
LzEvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArLsnLr4u
d/2rWdDId41XFPn5zEDvnW3s7Qnj37uRGHR9THGmeA6RcixTfYZ4tkaXVsaH3a/Q
lS9h1FmuOzZu6Emq6Or0PAUsaiIoOvMBrWPzvM2TFDNqLr12td+5YsEsohYeJgA3
0OzL6keisdxuzKS7Ipw34KpPB10Qv+fBlA1WOdwcyN3uDBV+iVIyHtMGaI4WKb39
b/8TuU3cVpEYDXB844zaLmyGSamALx6o1SdumuPTkAx9eXtoutUnlcw5az09l6r6
Ro2/elcR1H7A1RHAlJ30IRUaxSiV6k4MUiTnN42cX7nv9sRn2iOYA8BRdFtDD/L3
Zff/m5Fglgjtdw==
-----END CERTIFICATE-----
Generated at Mon Jun 8 23:04:58 2026 by rpki-client