Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
File: XZxbcz-6cemMB-E7A6fFWrhMyO0.mft (raw, json)
Hash identifier: fTKXRqp7FhobvR+iI6Jx1ihSQsnf36+9dxe1+uSynNI=
Subject key identifier: A5:FE:A7:B6:60:BD:5D:97:75:28:74:AD:1B:15:E7:DD:37:F1:B5:C9
Authority key identifier: 5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
Certificate issuer: /CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Certificate serial: 019EB8EA24EFB11163EE0B75CC2BA68A5826
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
Manifest number: 1959
Signing time: Thu 11 Jun 2026 23:00:13 +0000
Manifest this update: Thu 11 Jun 2026 23:00:13 +0000
Manifest next update: Fri 12 Jun 2026 23:00:13 +0000
Files and hashes: 1: D7RyDh7lTL4H2jBeI3MtODxeB2w.roa (hash: j4FPb00AEU8sTGz7vN2WFChjUdkqXvKYmGt4w0kqQbw=)
2: XZxbcz-6cemMB-E7A6fFWrhMyO0.crl (hash: t/xLEuqD8rk/u3kqS54EGsfF7oyon28PXaEqyTmNdlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:24:ef:b1:11:63:ee:0b:75:cc:2b:a6:8a:58:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Validity
Not Before: Jun 11 23:00:13 2026 GMT
Not After : Jun 12 23:00:13 2026 GMT
Subject: CN=a5fea7b660bd5d97752874ad1b15e7dd37f1b5c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f0:64:61:b2:ad:91:12:0c:25:fe:64:a7:70:
83:90:c3:79:0b:8d:b9:88:0b:04:06:80:cd:75:a7:
6c:84:05:8a:67:c0:03:b5:a9:50:ab:5f:87:72:ff:
b3:a3:df:62:59:5d:7c:82:69:70:e4:75:e1:26:d8:
28:e6:e8:bf:06:1e:35:8c:d5:5e:cc:49:2d:cd:10:
91:16:48:27:66:78:e6:5a:d9:5c:35:64:6d:03:ca:
e4:61:0c:26:a2:13:30:41:29:55:9f:26:24:14:cf:
c9:d1:71:ad:52:4b:68:40:12:6c:4d:69:0e:c7:12:
04:c2:d8:46:35:17:76:59:dd:09:de:96:da:2b:f6:
4b:8a:1a:37:af:d3:89:36:92:ac:57:58:a9:b6:e6:
36:8c:c5:65:79:e6:14:c6:45:77:12:6d:8d:b9:17:
6b:84:fe:71:f2:2a:7e:8f:94:e5:d7:0b:a0:b2:db:
c8:33:06:d0:79:9f:ce:35:c4:13:9e:b7:87:c4:ac:
ad:2c:46:34:ac:1d:a7:f0:80:a4:24:24:14:d1:a4:
76:d0:95:2d:40:40:7d:f5:13:eb:f1:7a:ca:17:19:
70:ff:eb:af:bd:20:7f:01:8b:87:e0:7c:6d:97:50:
66:1a:08:42:c5:4f:ea:0a:4c:5b:46:8e:52:72:04:
b1:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:FE:A7:B6:60:BD:5D:97:75:28:74:AD:1B:15:E7:DD:37:F1:B5:C9
X509v3 Authority Key Identifier:
keyid:5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:7d:d8:ec:0b:ed:94:50:94:3b:f2:ee:92:63:ad:78:8b:2a:
97:eb:d1:5f:65:65:a5:93:95:55:c7:31:ba:6c:01:51:f0:6e:
0d:ff:41:41:42:b1:ad:b4:d2:03:96:a4:3a:35:bb:2e:8c:07:
3e:75:c4:44:74:f4:e6:c6:05:ea:00:53:f4:87:95:ac:e4:f6:
f4:3f:49:b2:3d:bf:8c:da:22:23:97:51:99:a6:5e:d8:b5:9b:
ea:88:32:5b:f5:9f:1e:49:5e:59:7a:ab:f5:b2:95:51:f9:68:
26:78:c3:52:99:5c:43:82:97:e0:7e:43:1a:34:da:03:2d:d4:
d0:00:48:91:ae:1c:20:dd:39:4b:cd:fb:ec:81:a4:94:87:b3:
2f:5a:57:a3:b4:05:49:51:3e:a3:78:82:c8:09:7b:80:07:b4:
4f:33:9a:e9:b5:cc:06:27:9e:f1:2a:86:c7:53:e4:94:56:61:
47:58:cc:ff:b1:53:90:6b:ac:ff:f3:7d:49:90:ff:9f:ec:85:
0d:6b:87:82:63:db:65:85:b8:37:99:af:5c:62:b1:89:11:69:
e8:a8:18:06:21:09:02:f3:34:5d:8e:f3:d8:91:ca:a3:68:56:
cd:d3:9f:0b:aa:a9:5d:25:f3:6e:04:6e:8f:b7:f9:79:cd:c6:
23:83:cf:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ646iTvsRFj7gt1zCumilgmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkOWM1YjczM2ZiYTcxZTk4YzA3ZTEzYjAzYTdjNTVhYjg0
Y2M4ZWQwHhcNMjYwNjExMjMwMDEzWhcNMjYwNjEyMjMwMDEzWjAzMTEwLwYDVQQD
EyhhNWZlYTdiNjYwYmQ1ZDk3NzUyODc0YWQxYjE1ZTdkZDM3ZjFiNWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/BkYbKtkRIMJf5kp3CDkMN5C425
iAsEBoDNdadshAWKZ8ADtalQq1+Hcv+zo99iWV18gmlw5HXhJtgo5ui/Bh41jNVe
zEktzRCRFkgnZnjmWtlcNWRtA8rkYQwmohMwQSlVnyYkFM/J0XGtUktoQBJsTWkO
xxIEwthGNRd2Wd0J3pbaK/ZLiho3r9OJNpKsV1iptuY2jMVleeYUxkV3Em2NuRdr
hP5x8ip+j5Tl1wugstvIMwbQeZ/ONcQTnreHxKytLEY0rB2n8ICkJCQU0aR20JUt
QEB99RPr8XrKFxlw/+uvvSB/AYuH4Hxtl1BmGghCxU/qCkxbRo5ScgSx1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKX+p7ZgvV2XdSh0rRsV59038bXJMB8GA1UdIwQY
MBaAFF2cW3M/unHpjAfhOwOnxVq4TMjtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFp4YmN6LTZjZW1NQi1FN0E2ZkZXcmhNeU8wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9hMmQ0Y2ItOTIzYS00ZTA0LThkODUt
YWQ5ZDVkYjBmMDk5LzEvWFp4YmN6LTZjZW1NQi1FN0E2ZkZXcmhNeU8wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9hMmQ0Y2ItOTIzYS00ZTA0LThkODUtYWQ5ZDVkYjBmMDk5
LzEvWFp4YmN6LTZjZW1NQi1FN0E2ZkZXcmhNeU8wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbH3Y7Avt
lFCUO/LukmOteIsql+vRX2VlpZOVVccxumwBUfBuDf9BQUKxrbTSA5akOjW7LowH
PnXERHT05sYF6gBT9IeVrOT29D9Jsj2/jNoiI5dRmaZe2LWb6ogyW/WfHkleWXqr
9bKVUfloJnjDUplcQ4KX4H5DGjTaAy3U0ABIka4cIN05S8377IGklIezL1pXo7QF
SVE+o3iCyAl7gAe0TzOa6bXMBiee8SqGx1PklFZhR1jM/7FTkGus//N9SZD/n+yF
DWuHgmPbZYW4N5mvXGKxiRFp6KgYBiEJAvM0XY7z2JHKo2hWzdOfC6qpXSXzbgRu
j7f5ec3GI4PPcQ==
-----END CERTIFICATE-----
Generated at Fri Jun 12 03:28:51 2026 by rpki-client