Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
File: _XTetBhEJvpiIlthIMNnBvc3uOI.mft (raw, json)
Hash identifier: yXwxZ6FtAmS4T31MC8ZSLYOBQpf5LkO3CsR53hABizU=
Subject key identifier: 4F:D7:5F:37:1D:4F:23:A5:F1:49:0F:4D:16:5C:8A:A7:46:5D:DE:75
Authority key identifier: FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
Certificate issuer: /CN=fd74deb4184426fa62225b6120c36706f737b8e2
Certificate serial: 019E2A02A1A31B89A6CF29D2667AED29216E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
Manifest number: 190D
Signing time: Fri 15 May 2026 05:01:15 +0000
Manifest this update: Fri 15 May 2026 05:01:15 +0000
Manifest next update: Sat 16 May 2026 05:01:15 +0000
Files and hashes: 1: 4H3kqbZKgvCRJ41TW2E8J1NDC88.roa (hash: ah0Wo037A9MM/sUCKBiJ/BqofxWUcKYL1Cq5STwAUy8=)
2: _XTetBhEJvpiIlthIMNnBvc3uOI.crl (hash: 6P0TdNDzIXx1TZhvlpgxKe4W+Lx69/x2W6bhtA06F0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:a1:a3:1b:89:a6:cf:29:d2:66:7a:ed:29:21:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd74deb4184426fa62225b6120c36706f737b8e2
Validity
Not Before: May 15 05:01:15 2026 GMT
Not After : May 16 05:01:15 2026 GMT
Subject: CN=4fd75f371d4f23a5f1490f4d165c8aa7465dde75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:31:19:a6:b7:45:7d:61:78:93:91:cc:2b:f6:
b6:ef:7e:c3:62:11:78:c3:2c:7b:56:d6:78:f1:61:
00:6e:38:b0:55:e1:d5:35:8c:21:91:7b:e5:dc:69:
0d:1b:65:21:d1:2a:e7:29:24:db:4f:4a:73:f3:75:
5b:29:e6:c8:53:f8:84:92:3c:37:fc:39:cc:e2:89:
38:cc:64:c0:3c:fc:69:e0:a6:dc:23:65:3a:1e:54:
8a:4c:ef:27:d7:60:6b:6e:95:5f:d5:06:85:05:7e:
82:34:a0:16:04:5b:db:5f:71:15:91:ce:ab:bb:a5:
f9:ae:7e:d3:d3:1b:68:bc:c4:c4:48:2f:0b:f0:37:
02:5e:0b:6d:6d:6a:48:f1:32:f7:f2:b8:56:02:82:
6f:af:08:64:73:fc:28:69:9e:e3:36:ff:e0:1d:86:
4c:c8:87:15:9d:9c:ac:6b:b5:69:a6:64:54:65:03:
61:0f:38:b4:a7:3f:81:df:f5:96:62:fd:c6:fa:68:
84:83:b1:37:e0:e4:a1:15:e3:fe:67:c8:91:af:a4:
f9:b7:ed:53:9c:58:c3:bc:4a:fe:8e:32:47:3e:d5:
22:90:11:a6:b6:8b:34:a9:7e:be:2e:4a:99:d4:ea:
f0:2d:65:95:25:ac:ee:63:9d:40:ef:aa:60:78:ad:
c3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D7:5F:37:1D:4F:23:A5:F1:49:0F:4D:16:5C:8A:A7:46:5D:DE:75
X509v3 Authority Key Identifier:
keyid:FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:dd:0a:54:ce:8c:4d:28:87:44:05:2f:c3:63:9a:b5:09:ff:
49:0a:76:19:27:56:6b:87:92:64:42:45:f6:98:6c:81:95:45:
78:da:bd:e9:d0:b2:8b:67:a6:16:8c:83:d6:73:ed:82:8f:c4:
46:6b:69:60:44:5a:eb:e0:72:9b:49:01:df:ae:5f:5d:6c:87:
16:6f:3a:e9:19:80:f9:70:31:f0:5b:47:33:92:b1:7f:6a:af:
03:f2:c4:59:bc:7e:05:c4:35:4b:08:04:dc:8d:43:71:9c:ae:
e7:18:a9:0b:03:67:56:99:90:ff:83:d1:10:6c:59:7f:50:04:
13:d6:30:f1:a9:2a:c0:76:f6:61:d6:97:7d:37:4a:c9:fe:0f:
68:44:41:6a:a4:ce:2e:b4:61:78:1e:f9:88:c5:55:bb:8f:b6:
84:b3:5a:4c:26:c0:17:10:21:c0:83:88:b1:91:b1:72:e9:51:
9a:30:9c:b5:2c:2a:c7:6a:b6:bc:e6:2c:b8:be:5a:68:d3:31:
35:30:6d:72:04:ca:a2:3d:d0:fc:ce:da:14:5a:1d:59:48:71:
00:4b:a1:d0:d3:15:2f:4a:f4:d0:31:2f:ef:33:d5:3c:1f:e5:
f5:0f:75:b5:33:47:98:dc:1e:fe:37:97:06:4e:a5:b6:41:8f:
d5:5b:fb:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 09:51:17 2026 by rpki-client