
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: vN+1u3QwathvDMhNHiAhJsDlL9s2GFGQC4wvfy/mbpg=
Subject key identifier: 1C:D1:E9:68:0A:36:46:6D:8C:1B:DE:36:7A:47:4B:F4:E1:9C:1C:87
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 019F6D2A28C6F14E64E5F4B7A3E2193E8C66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 14C3
Signing time: Thu 16 Jul 2026 23:01:47 +0000
Manifest this update: Thu 16 Jul 2026 23:01:47 +0000
Manifest next update: Fri 17 Jul 2026 23:01:47 +0000
Files and hashes: 1: 46eH9Cj2ZoAvvZOdO1gLEixXty0.roa (hash: nutrSegvu5QxeGV6g/QuVOtrzFyb4Km/JeoI/dWaXRo=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: MxFErx8mY3vyaxBuVGynB107nF2gOYIdlvrODEZDkAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Jul 2026 23:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:6d:2a:28:c6:f1:4e:64:e5:f4:b7:a3:e2:19:3e:8c:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Jul 16 23:01:47 2026 GMT
Not After : Jul 17 23:01:47 2026 GMT
Subject: CN=1cd1e9680a36466d8c1bde367a474bf4e19c1c87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:69:bc:de:31:77:04:b0:e0:37:26:06:d0:02:
03:f0:f9:e7:ab:38:9a:d0:9c:cb:46:c9:5d:73:f6:
24:e3:96:77:b2:37:dd:63:22:02:46:16:77:5f:e9:
9e:c2:f0:14:3e:ec:a9:f3:6a:ce:dd:6e:48:71:9c:
77:1a:1d:db:96:69:0f:8e:7a:da:d9:5a:c6:08:38:
10:b3:75:27:9e:9e:35:ef:da:33:3a:2e:9c:dd:dd:
3c:63:11:10:a2:98:b9:11:c3:72:62:06:c3:17:a8:
40:bf:3a:cf:81:2b:78:1e:53:7c:39:54:b4:99:81:
9c:de:03:39:86:90:e9:5d:bc:95:ac:83:21:3a:93:
41:4a:4a:33:44:5b:f9:fc:ca:3d:d3:52:ba:6e:07:
b3:c9:79:c7:31:8c:65:62:28:e9:25:f9:6a:40:64:
85:b0:f6:e4:e4:91:2d:ed:2c:e2:a5:27:d3:ca:31:
f5:70:a8:3d:72:5e:ef:86:b3:9f:e9:54:07:ed:8b:
42:04:e5:81:c6:6d:91:a9:5a:89:dc:4d:44:f5:a7:
13:ad:15:00:32:72:fe:2c:af:59:13:d6:84:4a:5a:
df:de:57:34:d1:97:4b:a3:a0:f8:70:92:cf:eb:92:
07:1a:c1:c6:e0:a4:5a:01:94:c4:b9:a5:18:52:ea:
1c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D1:E9:68:0A:36:46:6D:8C:1B:DE:36:7A:47:4B:F4:E1:9C:1C:87
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:a4:1b:6c:2b:2c:0d:23:56:37:0e:e6:a7:a1:aa:95:96:9d:
ef:be:77:b0:a4:cb:2d:43:37:5e:28:f7:9a:0c:45:1e:3a:8c:
4e:50:b7:a8:79:5b:53:12:72:76:12:4a:51:b7:45:95:23:7a:
c5:8e:9c:65:dd:a5:d2:d9:31:b9:98:e5:8b:ea:db:ab:96:15:
71:59:50:f5:99:5b:4f:ec:cd:4e:88:6b:9c:d8:66:0c:69:ee:
1f:dc:c0:7a:69:e0:a0:ca:e2:58:a5:5c:ad:9c:f4:91:d7:54:
d7:56:22:4e:97:49:bf:9a:18:4c:be:91:93:07:63:9b:9e:fe:
40:89:33:25:d6:7c:c0:d0:46:b3:2c:cd:cc:6a:71:1e:e8:24:
9b:31:61:b7:94:27:28:82:6f:8b:20:48:3f:a5:28:0f:35:e8:
ad:45:0b:a5:56:82:10:6f:4d:9e:0f:d7:b8:76:98:9c:b2:b4:
0d:6a:7b:2e:f9:23:8b:f9:93:ad:6f:7e:2c:d5:80:6c:7b:fc:
47:01:bb:c0:0c:30:d7:2c:8f:55:59:60:94:19:fc:bf:0f:40:
b9:65:5a:d7:ff:b9:c9:6b:80:e1:10:57:8c:cb:fc:37:e5:63:
dd:6d:60:0f:c1:7a:ae:93:56:27:ff:b4:d3:61:c3:08:0b:45:
68:61:ca:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 17 03:06:00 2026 by rpki-client