Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
File: XYqf18UZJuIuqKozs7iDjpPovt0.mft (raw, json)
Hash identifier: xbQWrOAkB8OzbVtP3MMDPb+oqKjObFN4XlxAHelz3ZY=
Subject key identifier: 89:E8:5E:D3:7C:C5:24:CB:DB:1F:E9:AB:6D:87:12:33:82:16:FF:EF
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 019F1265F1CEE05FC9881487B3BA600A1D5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
Manifest number: 1988
Signing time: Mon 29 Jun 2026 08:01:38 +0000
Manifest this update: Mon 29 Jun 2026 08:01:38 +0000
Manifest next update: Tue 30 Jun 2026 08:01:38 +0000
Files and hashes: 1: OS8EDWL74n3CtFxmTxNOolYhsvA.roa (hash: yF17P4v/AdaI5VNNKOl9FtUJuOAbQSvTKgj5Ha/kk7s=)
2: RrlPj_5PMLmauOZbV-XxFE0jClU.roa (hash: +JGjuqCo+HgEGZGs0mkuqnIL4NPJWqKMaUK/A5KXgqw=)
3: XYqf18UZJuIuqKozs7iDjpPovt0.crl (hash: h6e/pyf/fnj/ziR1mpraG4YXblS4wayMKFmipz3Sb64=)
4: dL_9twvmgLzMs895oA64iiDmIEY.roa (hash: LgJcVms5Pq7JFZ8+OO+s5X+XVI8uKF8XIm98bwsR7Lk=)
5: dqfLmPoWYDgnN63zfumMSmq4Qs4.asa (hash: VP2elBPNAsWST4m//JgRDzv1id8AdOzpooWBKdSTZ3M=)
6: m_016GliLd1us5Dyp3gWd_9XmZU.roa (hash: NGfX/rkS6vQZZNfEtGY8uwL12Vk9X/AaXVk/NGit2hQ=)
7: wEd_ihwz_Sc9Z7253Egu-wb4rYs.roa (hash: JaUYZqefug6H01TWJts1HEcFIA5lKpx4F7+av5F+33Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:65:f1:ce:e0:5f:c9:88:14:87:b3:ba:60:0a:1d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Jun 29 08:01:38 2026 GMT
Not After : Jun 30 08:01:38 2026 GMT
Subject: CN=89e85ed37cc524cbdb1fe9ab6d8712338216ffef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:52:57:b7:87:7b:03:a4:f3:cf:9a:02:f6:fa:
53:ba:c8:a8:08:5f:d4:9f:af:05:0e:47:1a:54:27:
62:a2:ab:7d:6f:f7:51:fe:f0:b4:b6:bf:ed:38:04:
71:79:03:82:2e:d0:43:22:6c:63:f3:38:36:fd:2f:
88:8a:71:a9:36:2a:51:c9:bf:d8:95:e1:61:e2:e6:
f0:90:1c:5e:a4:ef:82:a5:66:36:94:94:85:57:81:
e5:57:24:0e:68:16:26:de:0c:b6:14:0e:fe:71:f3:
86:7d:3e:78:44:be:cf:46:7e:f7:f2:99:f5:9f:1c:
45:56:14:47:b8:5d:50:41:e4:dc:01:fd:43:bd:60:
fc:4b:e7:33:b3:4b:da:fb:9e:c3:61:48:7e:cb:ea:
e1:e3:0a:29:d8:06:5e:2f:b7:25:7b:13:08:f8:1e:
9c:94:c5:11:cf:7e:eb:ee:04:c9:61:a0:33:77:cb:
37:88:7a:93:72:9c:55:b0:97:b3:31:75:8a:b2:88:
af:e4:5b:5d:dc:1e:0b:51:ae:5a:7c:01:b3:a5:00:
f1:18:8d:53:b9:8f:6b:db:83:e9:79:3b:62:f1:40:
07:52:7b:63:0b:4b:9a:d9:f3:98:05:43:03:bf:3b:
b0:ce:ee:b2:7d:5d:f9:27:56:4a:9c:09:65:44:fe:
c3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E8:5E:D3:7C:C5:24:CB:DB:1F:E9:AB:6D:87:12:33:82:16:FF:EF
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:8e:af:f1:34:31:41:1e:e4:3a:8b:e6:f1:55:82:cb:2c:b0:
db:c7:d2:db:ea:9f:28:91:b3:99:57:8e:d1:73:3e:a9:ef:72:
93:61:fa:78:63:cb:0c:00:94:7c:cc:52:b3:ba:3e:ab:65:25:
6a:f9:4a:0d:1c:e7:2a:ed:f9:d5:6f:43:e3:e1:99:d8:4d:7f:
c9:c4:57:47:80:c3:81:0a:5e:d6:c8:76:cc:44:f2:99:aa:e3:
d2:f9:34:31:28:c5:39:74:d4:92:bc:f1:84:1f:06:f7:93:f4:
94:70:68:21:ae:54:99:72:e6:a2:0f:29:b8:63:3a:22:62:a3:
6e:bc:00:69:d9:f2:f1:7a:4a:2f:ad:54:69:da:a2:c3:68:cc:
0a:bd:6f:93:a4:5e:ac:83:fc:71:81:f8:74:56:0f:a5:4f:0a:
ec:37:e9:da:22:84:8f:77:af:d4:60:22:4b:42:3d:9c:e4:3f:
75:39:8c:59:f0:ae:80:97:d9:0f:c5:f3:f6:81:d5:a3:77:97:
35:91:84:f1:c3:6e:aa:fc:60:9c:cf:29:5b:63:9c:7b:9b:2f:
fe:30:b0:e8:80:87:b0:7d:7b:90:19:17:d3:6f:42:ae:40:c3:
d6:51:e3:65:88:e7:da:dd:b0:79:0b:bd:a6:72:49:32:3f:75:
e4:c3:b7:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:37:39 2026 by rpki-client