Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
File: _XTetBhEJvpiIlthIMNnBvc3uOI.mft (raw, json)
Hash identifier: toJyZeOJalJ2JWBzDFD3001d9wlnE/rXxUmSByQlKOg=
Subject key identifier: F9:20:96:2F:1F:C5:FB:3B:18:D2:E9:C8:BC:10:03:8B:ED:4A:05:17
Authority key identifier: FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
Certificate issuer: /CN=fd74deb4184426fa62225b6120c36706f737b8e2
Certificate serial: 019F13AEED66EE824CCA8F487C88B4125EB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
Manifest number: 1986
Signing time: Mon 29 Jun 2026 14:00:58 +0000
Manifest this update: Mon 29 Jun 2026 14:00:58 +0000
Manifest next update: Tue 30 Jun 2026 14:00:58 +0000
Files and hashes: 1: 4H3kqbZKgvCRJ41TW2E8J1NDC88.roa (hash: ah0Wo037A9MM/sUCKBiJ/BqofxWUcKYL1Cq5STwAUy8=)
2: _XTetBhEJvpiIlthIMNnBvc3uOI.crl (hash: F0T2mvMEVamVryGaMc8vg5cPhAqkhgDTPYD8P4NGDuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 13:53:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:ae:ed:66:ee:82:4c:ca:8f:48:7c:88:b4:12:5e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd74deb4184426fa62225b6120c36706f737b8e2
Validity
Not Before: Jun 29 14:00:58 2026 GMT
Not After : Jun 30 14:00:58 2026 GMT
Subject: CN=f920962f1fc5fb3b18d2e9c8bc10038bed4a0517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:18:40:e8:15:22:8f:b9:12:c6:de:88:c4:1e:
fb:2f:1e:92:a2:38:b0:0f:60:23:c6:6e:60:5f:2f:
ed:69:f5:c6:b3:08:67:92:27:90:cf:a2:8b:44:cc:
89:a2:b8:32:07:16:fd:8f:9d:fa:89:bf:75:e5:75:
bc:84:f1:e2:fa:86:18:40:2d:0f:dd:22:d7:e0:ae:
ab:5f:6b:87:01:84:4b:68:ae:0a:bd:fb:ef:f8:11:
56:a0:8c:1e:2f:2a:d1:85:3b:dd:f5:58:bd:5b:b5:
c7:9f:37:1c:5c:72:9b:76:aa:6a:ba:33:6d:2a:07:
1a:66:38:13:41:3a:4a:45:09:07:0d:88:45:1f:a5:
cf:01:2e:00:45:a9:29:74:09:19:a9:8b:de:d9:e6:
66:89:05:33:84:47:63:5b:c5:8b:19:76:ac:17:e9:
f5:35:44:76:89:7e:96:7a:a5:53:0a:6a:79:a1:6f:
73:33:6d:89:7b:eb:42:77:fa:f1:1d:17:87:ad:46:
da:fa:6f:f6:cb:22:f4:dc:f8:8f:be:7f:c4:cb:0c:
a0:50:57:fb:16:c7:89:74:29:99:5e:9b:5b:72:a9:
78:b2:a0:e2:55:e7:88:e4:03:77:28:b0:35:23:aa:
59:88:6a:2e:48:99:82:79:f8:0a:31:10:ca:4d:a7:
ae:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:20:96:2F:1F:C5:FB:3B:18:D2:E9:C8:BC:10:03:8B:ED:4A:05:17
X509v3 Authority Key Identifier:
keyid:FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:df:4a:9f:49:85:6f:00:be:0e:fb:cd:e5:38:92:50:c6:6d:
9d:56:2f:1d:44:d1:9d:e0:c4:61:ed:87:74:ac:41:26:81:a1:
30:fb:50:da:70:28:f6:b3:9e:b2:e2:53:a1:02:d0:ba:47:07:
dd:0e:c4:68:37:23:23:a5:cc:f2:dc:88:52:64:0d:a6:18:e9:
54:48:d2:5e:75:28:65:c7:ae:bc:7b:1f:65:44:26:8b:8a:a1:
68:99:ef:69:e5:bf:46:05:95:a6:65:86:78:44:78:74:ec:8f:
d4:c0:df:7e:c6:ad:98:30:3f:62:a6:6a:8b:3c:53:ae:37:8e:
e4:a9:8c:da:29:ed:6d:e4:04:eb:f5:51:89:40:1d:3a:8f:a0:
33:88:88:b7:16:48:d5:0e:76:05:6e:7d:66:40:b1:4c:3f:6d:
f4:5f:fc:83:c7:b8:57:0c:b7:d3:04:46:a1:b5:92:e9:a3:b4:
1d:f3:07:9f:10:b2:32:c0:8d:f6:7a:48:e4:92:4f:6a:27:e1:
51:45:6f:ad:9e:ca:c0:ac:19:59:a3:56:b8:d6:91:e9:42:1c:
0c:af:ce:49:67:57:d5:1c:4d:fe:5f:c4:c7:e8:ee:c8:5b:ad:
a8:98:5d:db:1e:f4:51:4b:4b:8a:e5:4b:79:14:f0:2f:99:d8:
c4:74:c0:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:42:28 2026 by rpki-client