Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
File: XYJmcuaPPaXbUO2ButuNM73M0ro.mft (raw, json)
Hash identifier: mWDXPIT+rpSaRtwnV/n5d68Tx5kXtUP9Ku8E4B1QVcI=
Subject key identifier: 78:D4:80:AA:5C:56:85:3B:0C:21:B9:DE:D2:71:D3:97:32:E8:3F:F6
Authority key identifier: 5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
Certificate issuer: /CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Certificate serial: 019EB732E6CE1E4AA16560002E36CFC274CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
Manifest number: 1591
Signing time: Thu 11 Jun 2026 15:00:26 +0000
Manifest this update: Thu 11 Jun 2026 15:00:26 +0000
Manifest next update: Fri 12 Jun 2026 15:00:26 +0000
Files and hashes: 1: XYJmcuaPPaXbUO2ButuNM73M0ro.crl (hash: bbEvZQSLDD3jBC5Phs/CyWVEHRfcc+ajx4Qs3fnvohg=)
2: fDzIkCC4HQZF8d8gvy277WuuRYM.roa (hash: TzMFdxwnyUIL4oJ9MUVrNEjKX81ekLEZoq92hFxo3V4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:32:e6:ce:1e:4a:a1:65:60:00:2e:36:cf:c2:74:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Validity
Not Before: Jun 11 15:00:26 2026 GMT
Not After : Jun 12 15:00:26 2026 GMT
Subject: CN=78d480aa5c56853b0c21b9ded271d39732e83ff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:21:4e:92:61:68:4c:f5:fa:5e:65:7b:42:81:
d6:45:08:c3:07:8f:43:5b:17:64:c7:f9:b3:7f:d3:
41:54:07:3d:18:f7:d7:ec:2a:25:87:71:dd:43:1f:
6d:2b:8e:d8:48:3f:69:07:51:01:5d:3a:e3:7d:5c:
74:62:9e:68:7a:f4:1e:1e:a4:18:b5:21:37:3f:8a:
b2:38:df:e8:72:cd:3a:ca:4f:cf:e4:69:2d:fd:14:
db:88:be:87:3a:b2:33:86:eb:ee:fd:ac:b5:fe:be:
2a:74:11:5d:7e:ab:0e:91:61:3d:a8:c4:af:8c:c1:
9c:34:61:40:a5:5f:ca:36:1d:99:b0:0c:f8:75:f3:
a3:d3:4d:d9:c3:fe:55:55:ce:f7:e6:e0:ea:8d:a8:
8b:f5:12:dc:69:0b:c0:0e:97:ac:3d:7b:ea:e5:db:
5b:3c:d2:84:dc:bb:18:28:14:a5:66:e2:4a:ad:b8:
c7:69:c6:b0:0c:9a:c1:a9:2a:85:44:c7:08:18:a2:
f1:11:c2:4c:45:71:e5:a8:a8:fb:ac:20:12:ce:c5:
a2:12:d7:c4:78:48:0e:cb:35:c7:fb:08:dc:05:e4:
e5:95:77:d5:ab:82:bd:7f:24:cc:30:fc:0c:fb:ed:
6a:0c:6f:dc:12:c7:ad:5a:1b:bb:c6:9c:47:c2:a2:
87:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:D4:80:AA:5C:56:85:3B:0C:21:B9:DE:D2:71:D3:97:32:E8:3F:F6
X509v3 Authority Key Identifier:
keyid:5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:58:53:07:a2:39:42:5b:75:3b:76:d4:3b:b3:06:10:32:c2:
19:e2:dc:24:0f:dc:f0:05:1e:e3:89:d4:f4:05:70:87:08:e3:
f8:fd:f9:33:d7:8e:8e:f3:4a:65:17:7f:00:53:03:fd:04:61:
ad:41:a4:e6:fd:8b:cc:11:30:70:25:8e:da:ca:f9:b8:b5:da:
7e:6c:68:2c:e6:f8:1d:6a:a0:64:81:b6:38:4d:40:e6:39:65:
fb:f7:d6:67:f5:65:9b:0d:0a:28:71:9e:68:dc:4a:71:c7:3d:
60:b1:85:78:f3:06:e9:a3:22:b4:84:f5:20:45:42:28:33:fb:
6f:9a:8c:b6:71:5a:70:06:ca:fe:20:36:2b:75:50:bf:49:91:
8e:7b:46:b3:ec:cf:bf:eb:1e:07:99:ca:eb:0f:65:b2:b2:5e:
b8:76:c3:7b:7f:32:2b:ec:36:d8:1f:be:d8:32:23:21:6e:c0:
66:b2:f4:12:69:d6:e7:2a:5d:e1:77:37:38:8e:84:75:91:ca:
4e:64:c7:79:6a:6a:4c:11:cf:ee:13:48:10:06:dd:a9:ba:5b:
d9:12:56:a6:2b:38:05:36:ff:04:f0:4e:d2:96:04:67:12:96:
ee:ef:da:be:a0:b4:dd:22:a7:25:8f:4f:e8:cd:c4:08:af:f3:
54:60:10:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 20:44:40 2026 by rpki-client