Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
File: xcSzrlnZgfJQzIfatZeFSr7XowA.mft (raw, json)
Hash identifier: ox/GN3ZgkFxTGDrvX3LuaCv9e2AOXc7AOsWOhEYzcNs=
Subject key identifier: AA:67:A9:1D:73:6D:B8:45:3F:45:21:D3:21:89:16:30:F8:2E:77:6F
Authority key identifier: C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
Certificate issuer: /CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Certificate serial: 019EB8EA9985DC9B3812EE520E264E3A066D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
Manifest number: 086F
Signing time: Thu 11 Jun 2026 23:00:42 +0000
Manifest this update: Thu 11 Jun 2026 23:00:42 +0000
Manifest next update: Fri 12 Jun 2026 23:00:42 +0000
Files and hashes: 1: OBYyhiA-o_Lu_Sii3K0csw4HB8Q.roa (hash: losaCS7PxxPceDw56uDFnzA7tz476/wdte0ltw/SmOk=)
2: xcSzrlnZgfJQzIfatZeFSr7XowA.crl (hash: T/SKGo5iX8Yv9q2pEmcyL9XcqVguwRaLmIxKldal8lE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:99:85:dc:9b:38:12:ee:52:0e:26:4e:3a:06:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c4b3ae59d981f250cc87dab597854abed7a300
Validity
Not Before: Jun 11 23:00:42 2026 GMT
Not After : Jun 12 23:00:42 2026 GMT
Subject: CN=aa67a91d736db8453f4521d321891630f82e776f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9b:60:9c:8c:18:89:5b:b2:6b:4f:0f:2e:be:
0e:02:52:0b:73:36:9d:5a:68:8b:9a:69:bc:47:01:
6a:f3:25:15:1d:84:f6:cc:16:95:3a:8f:62:ba:3e:
5e:75:b0:22:26:a0:70:97:cb:ea:db:4e:7a:1e:e5:
45:71:34:b6:00:3c:64:c9:72:86:21:df:f2:88:0a:
26:2c:6a:e9:28:ca:f8:92:a9:e6:fd:b0:ef:f3:1a:
28:80:30:af:99:a2:55:44:f5:bd:ee:42:66:b2:14:
28:61:09:09:f8:a4:e8:6d:12:58:b6:f9:47:f7:14:
35:58:9c:7a:ed:e9:f7:f6:c7:d1:24:eb:0d:84:e2:
45:b5:19:69:61:bd:d0:97:91:02:42:5f:91:76:53:
05:bc:53:e1:cc:3a:4f:df:0a:6b:a6:66:19:d9:9a:
d9:c0:69:38:93:9c:af:7b:3a:3f:8d:46:3c:e7:27:
fe:01:f1:1c:f7:28:7b:83:07:ca:5a:c1:5f:61:1c:
2c:74:f7:2b:cf:f0:03:0a:cd:54:49:ed:58:54:b6:
a1:14:b7:53:bb:75:a6:33:e1:e3:42:5c:fd:21:2f:
a9:a8:50:70:b9:f7:8a:11:d7:ea:d8:83:4d:e9:f9:
85:ae:0e:b6:82:56:3a:a3:7c:d7:a6:4c:de:af:d6:
40:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:67:A9:1D:73:6D:B8:45:3F:45:21:D3:21:89:16:30:F8:2E:77:6F
X509v3 Authority Key Identifier:
keyid:C5:C4:B3:AE:59:D9:81:F2:50:CC:87:DA:B5:97:85:4A:BE:D7:A3:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcSzrlnZgfJQzIfatZeFSr7XowA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/9f54a6-933f-47de-8726-eddf527e8f2d/1/xcSzrlnZgfJQzIfatZeFSr7XowA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:87:6c:a2:aa:d3:77:f7:0c:fe:20:77:9d:90:56:a3:4f:63:
74:ae:c2:37:ce:62:b5:fa:c2:44:82:cb:d1:ab:de:c6:de:e3:
00:70:bf:d4:cb:c4:bc:28:bf:41:1d:fe:c6:ac:77:e9:16:78:
db:f7:9b:64:bd:8a:b4:ba:b2:b0:ec:67:2d:1c:60:9b:fd:09:
b5:42:d4:20:3c:e9:d9:81:fc:69:90:18:1b:a6:d3:48:30:47:
6a:dd:8b:a9:69:6c:29:74:66:12:c9:c1:bd:1d:12:78:f5:31:
68:60:95:4a:cf:ef:32:7f:45:97:45:05:8d:e0:d6:cc:b6:db:
a1:a8:c9:24:57:14:2a:01:a9:22:98:aa:d7:71:e5:6d:77:d6:
de:46:33:cc:f7:b7:2c:d5:53:13:db:b3:cf:8d:f1:da:dc:21:
ef:da:36:7b:ae:c6:17:8d:32:0e:34:08:9b:50:97:e2:52:1e:
6f:19:89:1e:f4:c6:a5:70:ec:e0:dc:af:34:3f:bf:46:63:89:
e6:6b:15:61:4c:02:cf:64:fa:ce:10:20:75:2c:24:c0:4d:96:
73:6e:0a:c7:82:c4:7a:93:82:d6:61:bf:b1:9e:1f:d6:a5:cc:
0e:3d:52:ea:45:1a:d8:06:f6:cf:da:18:27:41:09:f0:55:c8:
37:1e:66:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 09:53:36 2026 by rpki-client