Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
File: xmCFijitXhG3sYk5KIO8g-trNh0.mft (raw, json)
Hash identifier: nPX+wJuhyVUJkTpK7HR/Z9VV552LhH6War9A5gPhTEQ=
Subject key identifier: A5:63:EC:05:58:08:67:5B:3E:4E:4D:7C:B2:D9:05:27:4B:AF:BB:04
Authority key identifier: C6:60:85:8A:38:AD:5E:11:B7:B1:89:39:28:83:BC:83:EB:6B:36:1D
Certificate issuer: /CN=c660858a38ad5e11b7b189392883bc83eb6b361d
Certificate serial: 019F11C07B86CD2210EF17C99F36BB8A1C1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
Manifest number: 1983
Signing time: Mon 29 Jun 2026 05:00:54 +0000
Manifest this update: Mon 29 Jun 2026 05:00:54 +0000
Manifest next update: Tue 30 Jun 2026 05:00:54 +0000
Files and hashes: 1: xmCFijitXhG3sYk5KIO8g-trNh0.crl (hash: 9ZUcJU2X1L8dSzZdl+/sV1tkbGvz9UgKm3Gx4WEeYjE=)
2: xpQHQe9JK1CUe7FrE6UQJmb2ot8.asa (hash: 4NpowpxrTh5AKJl4K8wnIP5UZeAISCMu/TY3f9v3FM8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:7b:86:cd:22:10:ef:17:c9:9f:36:bb:8a:1c:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c660858a38ad5e11b7b189392883bc83eb6b361d
Validity
Not Before: Jun 29 05:00:54 2026 GMT
Not After : Jun 30 05:00:54 2026 GMT
Subject: CN=a563ec055808675b3e4e4d7cb2d905274bafbb04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:fa:fe:e8:05:fb:62:5a:07:6d:1d:74:79:83:
51:e6:8a:d1:3f:16:db:88:d3:52:e4:e4:d9:f7:5f:
f4:49:7e:0b:37:61:90:9d:9f:e0:a0:9d:25:a7:0a:
ac:c5:22:2c:b2:fb:8e:c2:38:ef:99:67:46:2a:f1:
f8:e0:39:c9:0d:eb:7f:09:2e:36:16:74:6d:53:96:
88:03:2c:d3:20:26:90:32:f7:79:9c:cc:ba:dc:e1:
c6:76:cd:02:48:dc:20:33:ed:98:f7:d5:aa:6d:cf:
ce:f8:06:4d:12:d7:ee:0d:52:80:92:58:d8:ba:1e:
c1:1d:3e:de:c3:6e:41:5e:7f:12:0a:cd:bd:90:0b:
48:d0:b4:90:37:7f:1d:17:fc:69:02:90:f1:c0:12:
ab:56:b0:bc:13:94:8c:83:46:b7:fb:a3:88:81:0b:
0d:66:60:c0:ac:61:34:7c:02:f2:ea:6d:0c:1e:73:
d3:a9:4a:bf:97:9f:2b:ab:2c:74:0f:dd:f4:9c:b6:
ce:d0:11:3d:fc:c7:b0:9d:4e:4f:2c:ca:ba:e4:39:
87:04:56:d3:92:fc:30:cc:f7:d3:40:04:e1:e8:6d:
ec:da:95:89:2f:4a:7e:c4:4b:70:19:c0:6f:fb:b9:
56:fa:57:93:e3:b4:ff:14:b7:af:9c:f2:0b:b4:41:
da:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:63:EC:05:58:08:67:5B:3E:4E:4D:7C:B2:D9:05:27:4B:AF:BB:04
X509v3 Authority Key Identifier:
keyid:C6:60:85:8A:38:AD:5E:11:B7:B1:89:39:28:83:BC:83:EB:6B:36:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:77:fe:32:d3:cc:86:ea:51:84:aa:70:d4:f1:bb:77:aa:81:
12:97:eb:02:6f:2c:54:a6:77:d0:fe:22:d0:e4:97:d8:c3:58:
6e:b0:e2:3a:e1:13:06:a4:0d:64:e8:c2:e2:4b:ec:c3:ca:25:
65:f8:27:f5:f8:ee:9d:be:59:5b:04:6a:fa:fc:66:6a:9a:29:
54:46:d3:b8:86:7f:64:aa:3e:79:bf:c3:26:6c:59:2e:cb:ea:
ef:fa:7f:1b:ec:98:11:c5:04:12:63:81:ba:71:5b:49:53:5c:
81:76:1a:d3:63:e7:80:5b:23:0f:e6:28:1a:04:7b:36:c6:01:
dc:b7:76:80:f4:bf:c5:eb:57:9d:b7:d1:67:b0:5a:4a:71:94:
6f:22:ae:e1:8e:07:7e:a1:0d:c5:55:37:71:f4:59:57:d6:a8:
c7:54:b5:bc:66:4b:ce:cc:6e:a5:20:ca:cd:c0:c8:26:4f:f1:
ac:78:54:c8:40:17:12:77:25:ba:f1:8b:b7:bf:e7:71:c3:35:
35:22:e1:9e:19:e3:26:f5:07:61:c8:a3:cd:81:64:4d:21:1d:
4a:16:a1:c4:24:0e:48:7f:ea:7d:7b:5a:64:33:f4:97:e9:8b:
c5:35:47:07:3b:9a:47:65:d0:33:2a:3c:80:e1:b1:b7:d1:b3:
87:51:97:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:38:36 2026 by rpki-client