Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
File: XEwop1rJaVHcOEAKgPnvOqryqss.mft (raw, json)
Hash identifier: 4IvEDwjVZdUA9XTUBBbrpHOZE66C45S6maJ1mxc7W+E=
Subject key identifier: CD:4B:5F:6D:09:95:26:A7:DC:FF:E7:1D:D5:F9:91:E1:70:0D:12:78
Authority key identifier: 5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
Certificate issuer: /CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Certificate serial: 019EB98FF0641D47F7518BCF133B745219C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
Manifest number: 1957
Signing time: Fri 12 Jun 2026 02:01:18 +0000
Manifest this update: Fri 12 Jun 2026 02:01:18 +0000
Manifest next update: Sat 13 Jun 2026 02:01:18 +0000
Files and hashes: 1: 9hnY7Mi-DWWNXT8zxPWlDMpFkVY.roa (hash: KmgeWMyp8Cb4dRrZsFfQDYyQitlhpxsyGtinqL7w4YI=)
2: XEwop1rJaVHcOEAKgPnvOqryqss.crl (hash: GLwnKZkJaPKqlMfVk4P4LZ+Sv7tbkE4GfqAWOUH+g38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:f0:64:1d:47:f7:51:8b:cf:13:3b:74:52:19:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c4c28a75ac96951dc38400a80f9ef3aaaf2aacb
Validity
Not Before: Jun 12 02:01:18 2026 GMT
Not After : Jun 13 02:01:18 2026 GMT
Subject: CN=cd4b5f6d099526a7dcffe71dd5f991e1700d1278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:6e:2a:38:8c:7b:2b:d6:9e:52:ca:35:41:cd:
84:e2:5d:bd:68:5a:58:71:d4:f4:b6:8d:34:36:fa:
f4:63:ff:04:42:fa:1e:5f:55:73:52:cb:33:95:dc:
b5:8c:27:2b:1a:6d:e4:f7:7f:ac:ca:06:51:46:b7:
28:61:d6:22:18:80:e3:16:4e:34:7b:0d:06:03:8d:
34:70:5e:23:29:ed:ae:36:3d:bf:34:92:5d:9f:a8:
b5:81:0d:59:bd:47:20:ca:b2:e9:92:2d:9e:61:c2:
1f:6d:b6:c0:68:76:25:12:6b:96:2e:b4:cc:30:53:
70:df:ee:6e:25:2e:2f:60:eb:5e:2b:ef:df:54:5e:
dc:c9:e6:9a:a4:55:98:b2:26:f8:5a:b3:27:0f:d4:
08:de:3f:ca:4f:e7:f8:ff:44:9d:ef:e6:66:85:f6:
c8:37:6c:2f:8c:b2:6c:e9:20:c5:6a:d2:7c:cb:92:
f1:a3:7c:04:99:cb:61:b3:e3:13:68:b0:bd:4c:80:
4c:cc:05:97:1d:91:aa:f5:bf:5d:a5:26:8b:ca:6e:
51:1c:51:59:d7:62:86:af:78:39:9e:9a:bf:e9:bf:
e0:27:05:86:3e:0b:dc:b6:90:b5:7b:f1:33:ab:46:
f3:61:af:fe:d3:9d:a2:a2:26:e6:08:51:42:37:3c:
bb:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4B:5F:6D:09:95:26:A7:DC:FF:E7:1D:D5:F9:91:E1:70:0D:12:78
X509v3 Authority Key Identifier:
keyid:5C:4C:28:A7:5A:C9:69:51:DC:38:40:0A:80:F9:EF:3A:AA:F2:AA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEwop1rJaVHcOEAKgPnvOqryqss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/0977ee-b98d-4a3e-b3af-67c76320186a/1/XEwop1rJaVHcOEAKgPnvOqryqss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:8f:21:6d:d0:de:5f:e8:9e:6b:d1:c3:7a:21:cd:0c:72:fd:
b3:7e:ab:1a:b3:56:60:6d:a1:75:7d:c5:63:3d:ba:0e:cf:4f:
eb:e9:7e:7c:72:c0:10:6f:86:4a:eb:67:91:80:5a:02:94:91:
7a:9a:97:48:23:18:ea:01:d5:fe:6c:33:3e:0f:29:d5:c7:80:
8b:bf:22:a4:07:7b:46:cd:23:88:3a:e7:18:ee:ac:af:90:0d:
6a:f4:89:16:53:f7:8e:ac:c2:0d:f0:6c:ec:e2:18:d3:81:5f:
88:9b:e1:c0:8d:94:7d:87:7e:93:a8:74:ae:8b:f7:59:09:72:
c9:a2:fc:cb:b7:39:d2:a1:ac:02:cb:b6:b7:63:c4:27:e6:66:
3f:8d:21:3c:33:f5:d6:09:f7:0d:16:4d:15:01:03:02:48:1d:
02:b3:ba:27:e3:15:76:37:e1:4b:70:e8:c9:22:cf:82:4e:84:
60:7c:6c:76:10:69:f7:72:c4:1e:3c:a8:5f:cd:00:10:6e:35:
cd:14:29:0a:d4:28:6f:87:f0:29:91:69:cf:a4:81:30:dd:fa:
4e:aa:c4:2d:fd:9d:78:58:9d:5c:3f:df:7a:9e:bd:84:33:92:
33:af:04:ec:c4:40:7c:d0:5f:9d:52:3c:f9:82:a5:70:84:47:
b9:3e:6a:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:55:46 2026 by rpki-client