Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: Rr6CJxJHdW7XjcD1RCu/+/7MO9QXHi19q44J0lBgrQw=
Subject key identifier: 9A:C6:96:E9:27:B5:C9:6F:3E:8C:80:72:F7:48:79:43:A2:3F:AB:51
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 019E7FA0B2C25CFDF0B191B0A752C1395C91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 1448
Signing time: Sun 31 May 2026 20:01:38 +0000
Manifest this update: Sun 31 May 2026 20:01:38 +0000
Manifest next update: Mon 01 Jun 2026 20:01:38 +0000
Files and hashes: 1: 46eH9Cj2ZoAvvZOdO1gLEixXty0.roa (hash: nutrSegvu5QxeGV6g/QuVOtrzFyb4Km/JeoI/dWaXRo=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: 4NcVek2Xaavtr5N4iI2DPxYWVIw/diNYHPqSByY6Nms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jun 2026 20:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7f:a0:b2:c2:5c:fd:f0:b1:91:b0:a7:52:c1:39:5c:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: May 31 20:01:38 2026 GMT
Not After : Jun 1 20:01:38 2026 GMT
Subject: CN=9ac696e927b5c96f3e8c8072f7487943a23fab51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:73:ca:dd:70:03:81:ce:1e:57:8a:45:51:4c:
96:9e:0d:e4:34:f1:6d:37:7d:8e:05:7b:80:f3:27:
eb:21:7a:67:64:af:f9:b3:23:68:f1:a2:7e:78:f0:
c1:7b:f3:34:b7:84:c9:14:33:d3:98:60:f8:b0:95:
71:e9:e5:66:06:7e:91:e3:2d:30:5f:00:29:23:f3:
43:89:35:23:e0:de:d9:bc:18:48:9c:dd:8d:8b:98:
75:d8:f6:19:fe:f0:99:f7:f8:4c:0e:76:fa:91:dc:
27:08:91:1a:de:c0:e1:08:c4:12:de:90:6a:64:b7:
a5:dd:c8:be:72:85:1b:0c:73:c2:60:ba:ca:18:b1:
31:7e:c3:f6:7e:28:f4:ca:6b:e1:4e:f3:e0:2f:8c:
54:c4:78:a9:5d:a4:1f:16:1b:a0:b9:23:44:5e:a6:
88:b8:01:e9:66:6b:b3:fa:bf:29:e1:76:f9:12:11:
26:43:cf:78:1f:bc:1f:5f:9f:96:bb:ba:77:46:31:
d7:4e:49:3e:9c:54:56:4d:cf:74:13:79:d9:02:18:
54:e1:9f:57:8c:a4:96:ad:db:8e:33:56:10:69:36:
59:ba:44:fe:09:80:16:a8:00:3f:bb:8a:fb:55:4e:
63:59:9d:2f:26:a3:63:d2:cc:4e:ab:9e:8e:dc:f1:
cd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C6:96:E9:27:B5:C9:6F:3E:8C:80:72:F7:48:79:43:A2:3F:AB:51
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:1c:37:e6:67:9b:1f:5b:a7:2b:d0:56:30:34:64:00:19:57:
aa:4e:ce:c9:a6:9e:e5:3c:80:b8:91:83:df:00:b2:d0:14:49:
4d:ff:b2:cd:b5:51:cd:25:54:66:cb:ab:d1:21:68:ab:ef:42:
17:f1:c5:08:3b:71:3e:e3:5c:fe:61:9a:5d:03:d2:7e:1b:eb:
36:06:b8:c0:ec:47:c5:19:c2:0d:4e:11:91:cc:f6:7f:d0:82:
a1:ac:3c:09:60:83:f2:38:d8:2b:0f:ce:0a:a1:b4:0b:6d:e4:
e2:8f:d2:08:48:5f:1c:54:f3:bb:34:09:fc:67:16:6f:b5:72:
75:9d:b7:c6:5f:63:41:e0:7f:ce:b2:51:7d:c8:76:5e:21:62:
61:52:bb:99:68:e3:5d:29:92:f0:6e:a0:05:b6:a4:84:14:9f:
3a:e0:33:4b:ad:de:24:91:f2:0a:4b:5f:ec:7a:cf:51:cb:ef:
45:d0:53:2e:5b:55:7f:27:0c:a8:04:cb:82:a1:40:db:3f:c9:
f0:30:bb:4e:11:08:c0:48:ed:5f:a7:f2:39:cf:90:6c:af:05:
46:f6:8e:67:2c:5d:a7:e2:32:0d:a0:da:d2:8a:ad:7d:3b:fb:
bc:0d:8e:c5:e3:c0:49:26:32:60:0d:aa:65:b1:54:e9:ab:3e:
77:79:17:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ5/oLLCXP3wsZGwp1LBOVyRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlNzc0NDY3ZTIxODQ5NTI0OTQzZDJiZDQ1OTAxMDcyMGYz
ZTIwZTQwHhcNMjYwNTMxMjAwMTM4WhcNMjYwNjAxMjAwMTM4WjAzMTEwLwYDVQQD
Eyg5YWM2OTZlOTI3YjVjOTZmM2U4YzgwNzJmNzQ4Nzk0M2EyM2ZhYjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3PK3XADgc4eV4pFUUyWng3kNPFt
N32OBXuA8yfrIXpnZK/5syNo8aJ+ePDBe/M0t4TJFDPTmGD4sJVx6eVmBn6R4y0w
XwApI/NDiTUj4N7ZvBhInN2Ni5h12PYZ/vCZ9/hMDnb6kdwnCJEa3sDhCMQS3pBq
ZLel3ci+coUbDHPCYLrKGLExfsP2fij0ymvhTvPgL4xUxHipXaQfFhuguSNEXqaI
uAHpZmuz+r8p4Xb5EhEmQ894H7wfX5+Wu7p3RjHXTkk+nFRWTc90E3nZAhhU4Z9X
jKSWrduOM1YQaTZZukT+CYAWqAA/u4r7VU5jWZ0vJqNj0sxOq56O3PHN1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJrGlukntclvPoyAcvdIeUOiP6tRMB8GA1UdIwQY
MBaAFF53RGfiGElSSUPSvUWQEHIPPiDkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWG5kRVotSVlTVkpKUTlLOVJaQVFjZzgtSU9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yMGEyMmYtMjBmYS00ZDk4LThiMDMt
YWE0MDA1MzJkYWViLzEvWG5kRVotSVlTVkpKUTlLOVJaQVFjZzgtSU9RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8yMGEyMmYtMjBmYS00ZDk4LThiMDMtYWE0MDA1MzJkYWVi
LzEvWG5kRVotSVlTVkpKUTlLOVJaQVFjZzgtSU9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnhw35meb
H1unK9BWMDRkABlXqk7Oyaae5TyAuJGD3wCy0BRJTf+yzbVRzSVUZsur0SFoq+9C
F/HFCDtxPuNc/mGaXQPSfhvrNga4wOxHxRnCDU4Rkcz2f9CCoaw8CWCD8jjYKw/O
CqG0C23k4o/SCEhfHFTzuzQJ/GcWb7VydZ23xl9jQeB/zrJRfch2XiFiYVK7mWjj
XSmS8G6gBbakhBSfOuAzS63eJJHyCktf7HrPUcvvRdBTLltVfycMqATLgqFA2z/J
8DC7ThEIwEjtX6fyOc+QbK8FRvaOZyxdp+IyDaDa0oqtfTv7vA2OxePASSYyYA2q
ZbFU6as+d3kXTw==
-----END CERTIFICATE-----
Generated at Mon Jun 1 04:34:13 2026 by rpki-client