Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
File: xHKa8T09FW9BGXaxduVU-mcddvc.mft (raw, json)
Hash identifier: G+sXZir/GWtsSvbFmeqhsRvcPxicLj9+dUux8tEBbT8=
Subject key identifier: 10:8F:75:85:3F:D5:D9:82:8D:FD:E5:C3:46:4C:DE:34:21:16:87:70
Authority key identifier: C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
Certificate issuer: /CN=c4729af13d3d156f411976b176e554fa671d76f7
Certificate serial: 019E30A9A166B7B912065BD1FDF7FBDA4196
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
Manifest number: 1654
Signing time: Sat 16 May 2026 12:01:23 +0000
Manifest this update: Sat 16 May 2026 12:01:23 +0000
Manifest next update: Sun 17 May 2026 12:01:23 +0000
Files and hashes: 1: 5bGOVGgpUSjx1uwMkRS9oqXlCJM.roa (hash: gEd4SfTflxW3Gsgz2afT2mctC6KsEwsMe5axMz0injA=)
2: xHKa8T09FW9BGXaxduVU-mcddvc.crl (hash: oLaK0X45t6QUNeb68qP7EpijkxfXmzN+ohKjg2wA//c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:a1:66:b7:b9:12:06:5b:d1:fd:f7:fb:da:41:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4729af13d3d156f411976b176e554fa671d76f7
Validity
Not Before: May 16 12:01:23 2026 GMT
Not After : May 17 12:01:23 2026 GMT
Subject: CN=108f75853fd5d9828dfde5c3464cde3421168770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ae:00:c2:23:2d:92:82:7c:d2:0f:c1:6f:ea:
e7:ee:f7:46:4d:ab:be:cd:83:5f:f6:ce:d4:27:a2:
5d:01:71:2d:99:22:07:1a:36:2e:c0:f1:06:1c:3d:
2d:62:63:c6:2f:04:16:fd:53:37:94:40:da:ef:8a:
9e:be:60:d2:8c:25:98:31:88:9f:c6:e4:60:ab:61:
bd:ce:34:58:96:79:b6:58:0e:01:c7:88:7e:5d:aa:
66:3f:2a:cf:2b:1d:6e:51:65:02:37:16:d5:57:41:
da:22:8d:f4:bf:60:3b:43:ef:8b:4c:df:72:2d:67:
c3:df:dc:6e:11:44:a4:8d:68:19:08:91:83:e8:28:
52:c8:53:0c:d6:23:6f:6d:4e:55:d3:49:66:99:57:
03:8a:0a:a2:d8:7d:2b:b4:8c:0b:d7:05:2b:2c:ad:
00:74:43:5a:56:4c:17:ff:8d:a1:f4:e9:3c:eb:8f:
bd:e9:8b:cd:eb:7f:66:d6:94:45:41:db:19:a4:f9:
89:cf:28:1f:30:98:8b:4f:82:90:4d:85:9e:52:e9:
b5:28:df:db:44:bf:df:b7:8f:ca:97:fe:79:29:fc:
7b:5d:3d:fc:00:84:e2:d2:60:97:ee:af:98:87:00:
74:f2:b6:ab:a0:95:84:37:c4:7f:fe:62:b4:a0:97:
db:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:8F:75:85:3F:D5:D9:82:8D:FD:E5:C3:46:4C:DE:34:21:16:87:70
X509v3 Authority Key Identifier:
keyid:C4:72:9A:F1:3D:3D:15:6F:41:19:76:B1:76:E5:54:FA:67:1D:76:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHKa8T09FW9BGXaxduVU-mcddvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/95e060-fa2a-4057-9578-b0898fbb1cab/1/xHKa8T09FW9BGXaxduVU-mcddvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:5d:cb:76:4a:89:a1:26:e0:60:0e:90:8f:b8:b9:4b:b3:dd:
7b:c5:8f:01:ed:e3:1c:aa:20:ca:d6:03:c4:f7:1b:d0:df:19:
52:7e:34:93:a4:28:dc:a8:65:f7:aa:0c:a1:c1:81:58:11:06:
b8:e7:36:d7:d0:d7:13:84:88:85:ae:33:4a:ef:55:3d:38:5c:
e9:f6:c9:52:dd:93:ce:24:4e:08:a3:b7:2b:0a:b6:4a:36:b5:
8d:53:56:2b:8c:20:ee:92:dd:be:c5:64:ff:3a:e4:23:b7:6c:
a6:9f:6f:c9:a1:c1:cf:9a:c7:6a:9a:b1:9c:eb:e2:cf:f7:42:
19:c3:d9:f5:0b:aa:9d:ae:71:f0:d4:4f:64:49:a0:9a:f7:cf:
32:21:e6:d1:fb:be:08:de:ef:df:e5:d7:f5:31:a4:3d:0d:ab:
2a:62:56:c6:3c:b6:49:83:2a:44:c2:7c:dc:01:26:33:2e:05:
b3:6a:02:6c:bb:fc:03:fd:eb:98:0f:a9:3c:4e:20:7b:2a:2a:
f8:9c:0a:1d:f1:22:0c:da:3c:fa:ea:0e:c5:b1:80:34:26:3e:
c9:a7:9b:92:c5:f4:23:83:97:a4:fe:8a:31:b9:33:79:12:34:
31:65:81:7d:90:fb:e7:f5:fb:f8:6a:2d:f9:85:04:90:af:66:
92:bf:a2:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:22:52 2026 by rpki-client