Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
File: XM3soXHkIseck4wnMqkNSKjFPAY.mft (raw, json)
Hash identifier: CRZBK8E1C/Bn0W1kYLcVxgjG5w/uKeyxVMuodwMv40k=
Subject key identifier: 10:9D:F5:BB:D6:5F:CE:E6:EE:BC:BD:24:34:B7:41:7D:1D:8E:B0:F1
Authority key identifier: 5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
Certificate issuer: /CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Certificate serial: 019DB0218D54ED049B7ED8674C7EACD8AEDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
Manifest number: 18DD
Signing time: Tue 21 Apr 2026 13:01:21 +0000
Manifest this update: Tue 21 Apr 2026 13:01:21 +0000
Manifest next update: Wed 22 Apr 2026 13:01:21 +0000
Files and hashes: 1: Vcrxz5upkyAccEnWWkm1jKbiHCU.roa (hash: DF9acpeNSt3QcU3RLTkyAoSPyBTgnqf4yVUPlH/IEUw=)
2: XM3soXHkIseck4wnMqkNSKjFPAY.crl (hash: Lm5apzu+FIqgrtRHBGgUJWTdpFqthKIbxdMb0MyQRSk=)
3: d61QkjArffvt5fKMvIXWF8nIPcE.roa (hash: n77B2cSkql2uFL2mgGTUwbPJJQCN8pumVVKiMumdlmQ=)
4: gt4NX8URVAv-A4_huezwCBnTr38.roa (hash: vN+Famgpb/hzxjnp6tma5vU9LuyB53AY4c85WPFvJ9g=)
5: vEmqZz7TyOIZcMFGWq5sr0qWa9c.roa (hash: rxEx9pdbLlzRrifCSn69fPPljhSEaN1XwXY/F5cFM9M=)
6: x9IxkDkzEkDokkzWh7NpXLA6pSU.roa (hash: HHdD49yqs88lPuXMSPj56CT2/FilbQVuZopBY9/6oH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 13:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b0:21:8d:54:ed:04:9b:7e:d8:67:4c:7e:ac:d8:ae:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccdeca171e422c79c938c2732a90d48a8c53c06
Validity
Not Before: Apr 21 13:01:21 2026 GMT
Not After : Apr 22 13:01:21 2026 GMT
Subject: CN=109df5bbd65fcee6eebcbd2434b7417d1d8eb0f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:01:6e:94:8b:51:b7:18:03:ca:1b:97:68:88:
83:5a:7d:a1:98:ed:8d:89:a8:c5:fb:67:69:b2:8a:
4c:ba:e6:7e:ec:8f:ae:be:d8:ea:da:6b:23:44:de:
07:b0:97:76:f6:fc:57:41:47:70:53:4b:e4:cd:8c:
f1:21:d5:af:4c:74:8a:8f:d9:d9:41:0d:44:43:b2:
fd:4a:3a:55:d5:d9:33:b2:09:6e:c1:ee:ec:8a:22:
32:b7:a4:53:de:c9:de:f2:4a:17:16:7e:04:dd:97:
5c:3a:19:d2:df:d5:b3:00:55:af:29:b5:3a:c3:cc:
32:ad:a5:ab:27:85:1b:4c:51:d0:ac:e5:81:15:36:
3a:3d:a8:5f:13:dd:26:ab:ed:1c:6d:bd:ee:29:e9:
c7:ec:28:6d:af:cc:18:25:98:12:59:7d:31:f9:95:
30:26:cc:d9:2f:d7:c9:3c:69:6c:b4:0e:ee:8b:f9:
02:3c:dd:5f:10:86:d7:02:92:e6:86:26:26:c3:ca:
56:cd:35:fb:ad:85:13:f1:f0:4d:1c:f6:12:1d:62:
d8:e3:0e:72:cf:ee:e2:a7:29:b4:eb:a4:05:91:5b:
dd:13:c3:8a:e6:d4:dd:7a:7a:2f:ac:76:a0:0c:eb:
57:93:e7:9a:35:ce:bb:6b:43:35:d9:6e:4c:95:93:
7c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:9D:F5:BB:D6:5F:CE:E6:EE:BC:BD:24:34:B7:41:7D:1D:8E:B0:F1
X509v3 Authority Key Identifier:
keyid:5C:CD:EC:A1:71:E4:22:C7:9C:93:8C:27:32:A9:0D:48:A8:C5:3C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM3soXHkIseck4wnMqkNSKjFPAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/b8f5e6-c951-4ddb-b4f5-a881ec8228b5/1/XM3soXHkIseck4wnMqkNSKjFPAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:73:90:95:56:be:28:96:3c:8c:04:17:09:2c:cf:6f:b2:77:
d4:86:05:8b:53:5c:da:45:df:29:4b:00:0e:08:bd:3c:68:5b:
a6:87:80:c0:61:73:9a:b8:3c:f9:96:69:fd:56:8f:4c:ac:00:
3d:dc:7b:b7:88:90:1d:af:f2:b5:e9:5a:34:fb:e8:66:29:5a:
d3:03:bb:a9:c9:12:f3:59:02:40:e7:c6:63:44:e3:5f:44:c4:
46:5e:d7:90:29:53:21:3d:b8:90:08:d3:5c:39:98:3c:ef:66:
ba:08:40:53:71:00:b3:b4:d2:71:55:1d:f8:b1:34:9a:92:b4:
d2:79:c8:00:ef:42:2c:4d:53:b9:c0:e4:ae:e1:e5:c1:ca:28:
c8:90:95:0d:a0:1f:09:fe:f9:42:b4:21:30:b8:c6:7c:bb:1a:
d0:3b:b4:93:44:f9:b4:11:b6:c5:03:80:09:8c:a0:d0:11:0e:
40:61:5c:42:df:b0:0e:bd:2b:4c:e2:f9:c3:2d:52:97:87:6c:
c6:45:1d:11:b4:22:08:2c:50:cd:c3:5f:c2:00:1e:c1:bc:a8:
95:5f:b4:08:12:b6:7d:54:b9:ae:8c:2a:7b:67:95:14:c3:f0:
2e:61:37:47:88:bb:60:c0:18:1b:03:94:98:be:14:a7:b5:26:
72:ba:25:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 21 19:04:12 2026 by rpki-client