Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
File: XZxbcz-6cemMB-E7A6fFWrhMyO0.mft (raw, json)
Hash identifier: SM4hmfJuAlhqNQTgtx5ira7KUuxyqlN18BOUIKvm0Mc=
Subject key identifier: 33:2A:A5:DF:F5:5D:AA:63:8D:B6:B0:C3:FC:AA:83:B8:CD:16:8B:42
Authority key identifier: 5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
Certificate issuer: /CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Certificate serial: 019ECE2972073B1DA2335F5D1C4D288C06B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
Manifest number: 1964
Signing time: Tue 16 Jun 2026 02:01:22 +0000
Manifest this update: Tue 16 Jun 2026 02:01:22 +0000
Manifest next update: Wed 17 Jun 2026 02:01:22 +0000
Files and hashes: 1: D7RyDh7lTL4H2jBeI3MtODxeB2w.roa (hash: j4FPb00AEU8sTGz7vN2WFChjUdkqXvKYmGt4w0kqQbw=)
2: XZxbcz-6cemMB-E7A6fFWrhMyO0.crl (hash: ceeoUptVgJ9TvbApINb8HZx3Wr695o0FE3d0Fg1npxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Jun 2026 22:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ce:29:72:07:3b:1d:a2:33:5f:5d:1c:4d:28:8c:06:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d9c5b733fba71e98c07e13b03a7c55ab84cc8ed
Validity
Not Before: Jun 16 02:01:22 2026 GMT
Not After : Jun 17 02:01:22 2026 GMT
Subject: CN=332aa5dff55daa638db6b0c3fcaa83b8cd168b42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:33:ba:ec:72:16:45:eb:89:52:ec:79:78:
1f:0a:da:57:ba:0e:bf:28:37:7e:57:8c:67:b8:78:
b5:27:10:d6:57:e0:d2:72:74:7c:8c:2d:00:04:c0:
22:f0:e3:3f:ec:79:7f:1d:eb:9c:77:b6:c4:43:c7:
92:bf:f8:6d:5b:c2:84:10:3b:7a:3c:d2:96:0d:0e:
37:56:62:4a:f4:3e:f3:58:4f:ad:4e:9b:08:54:be:
fd:47:2e:be:5b:86:ac:88:5f:0f:78:4b:3c:b9:8d:
b1:51:3f:e6:20:6e:7b:47:70:c1:63:d2:dc:a6:e8:
53:34:20:ac:60:9f:46:19:3f:6e:bd:f5:6d:58:cf:
96:b4:88:42:97:f1:8a:2e:c6:ed:ff:8d:56:42:21:
ad:59:6c:50:f6:9f:f0:1e:cf:9a:cb:04:df:24:cd:
6f:88:c7:34:0f:58:48:3e:56:96:b6:43:94:c8:34:
aa:2a:aa:04:50:67:1d:ba:82:6e:9a:c0:ba:a6:bd:
4f:cb:2d:99:1b:2d:eb:e3:17:29:40:3e:ab:7d:d2:
e8:0f:73:b5:46:15:98:f5:b2:6e:03:6f:e2:75:95:
2b:37:cd:28:02:c5:86:d5:0e:c5:72:97:21:5f:04:
77:05:57:8a:95:30:23:b3:43:f7:3d:b9:8c:c3:fb:
ac:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:2A:A5:DF:F5:5D:AA:63:8D:B6:B0:C3:FC:AA:83:B8:CD:16:8B:42
X509v3 Authority Key Identifier:
keyid:5D:9C:5B:73:3F:BA:71:E9:8C:07:E1:3B:03:A7:C5:5A:B8:4C:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XZxbcz-6cemMB-E7A6fFWrhMyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a2d4cb-923a-4e04-8d85-ad9d5db0f099/1/XZxbcz-6cemMB-E7A6fFWrhMyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:67:b3:c8:4f:4e:0a:9e:2a:b7:b5:4c:66:c9:18:81:29:e5:
78:33:0e:bb:d0:c0:53:8b:c4:40:01:7c:fe:5c:6c:b3:8e:78:
62:f5:d6:ee:54:c2:b8:b9:44:56:26:87:9d:e6:93:52:4b:37:
fb:11:0f:7b:dc:74:b8:e6:a4:1d:7d:fd:8f:e3:bd:d9:08:5b:
63:2b:b5:08:2c:fb:1a:40:d1:b4:0e:69:95:81:2a:ee:35:6e:
7a:cc:94:f4:42:da:00:ee:70:c8:63:66:98:3f:99:b2:14:d3:
8e:64:ae:68:6c:87:d7:cf:60:df:ed:91:b6:6f:42:3d:8b:d7:
be:49:84:13:83:db:69:88:85:34:12:88:ce:28:b5:0e:77:12:
fe:a3:e8:5e:52:aa:d7:ee:d7:ff:32:0b:fb:24:07:1f:98:1f:
a6:82:86:26:e3:d0:84:05:f0:44:93:25:f4:91:ef:cc:be:0c:
3a:bc:da:82:0d:f3:cf:8f:9b:60:86:6e:f3:39:e1:42:96:d1:
6d:af:28:e7:d4:d6:b6:76:1e:69:4b:70:f3:9e:45:55:dc:50:
a3:5e:3a:ea:44:ab:83:ce:5d:a5:f2:69:03:4b:83:82:75:e3:
b3:7b:d9:91:81:c4:3e:3b:d6:c3:a5:93:b1:cd:87:a6:41:3d:
ba:a9:4a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 16 08:01:26 2026 by rpki-client