Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
File: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft (raw, json)
Hash identifier: aJb2w9EZ/woFGSSDLGTjSYvrvETyxUCaFr/IP8HbEJs=
Subject key identifier: 58:F5:1B:EF:9D:7C:61:E3:0D:BF:48:67:AA:C9:3B:F0:2D:6A:D6:59
Authority key identifier: 5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
Certificate issuer: /CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Certificate serial: 019F13AEDF51BA07EBA738092AB1061CEE81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
Manifest number: 1884
Signing time: Mon 29 Jun 2026 14:00:55 +0000
Manifest this update: Mon 29 Jun 2026 14:00:55 +0000
Manifest next update: Tue 30 Jun 2026 14:00:55 +0000
Files and hashes: 1: XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl (hash: 19dlpOoO115utwVKQAYr71/gBuqfzsqjtBr6wPO5xao=)
2: kk41E9wK0dMNp3UzVD82jZ-Xu_A.roa (hash: uelRjQS+f/j8WooWIB3/Gzm3JA/8BAj3iz0X2FN7kXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 13:53:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:ae:df:51:ba:07:eb:a7:38:09:2a:b1:06:1c:ee:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e42c35612f45af41103520af2761cdaa51e3aa4
Validity
Not Before: Jun 29 14:00:55 2026 GMT
Not After : Jun 30 14:00:55 2026 GMT
Subject: CN=58f51bef9d7c61e30dbf4867aac93bf02d6ad659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a7:20:ac:d1:75:cb:3d:a4:9e:5c:ce:9c:9f:
21:db:66:ab:d4:bd:50:88:ec:ee:39:00:56:1a:46:
8e:fe:c4:7c:61:99:ab:1b:e9:03:b3:86:6a:76:50:
3f:19:6d:91:aa:93:ed:2f:a9:cc:1a:67:d8:cb:a9:
c0:62:72:5f:5e:b3:d9:60:fd:0f:be:64:26:e9:2b:
5c:78:d4:df:61:f9:d8:c3:45:b9:70:91:99:7b:4e:
7c:f8:29:8e:24:02:4e:6f:92:ac:19:62:b0:74:d4:
62:98:96:74:7b:ec:1a:9e:b6:71:61:5d:fa:25:ef:
7b:ea:2d:b8:5c:16:ee:ca:c1:93:ef:cf:27:dc:c8:
18:cd:0b:a6:3e:9e:05:ba:d8:05:8b:18:b4:1b:36:
83:94:92:c1:46:7c:c5:2c:00:e0:e4:e5:96:6c:2f:
03:1b:73:65:28:43:3b:04:d0:09:e8:d2:fd:9d:da:
61:fe:1b:93:b9:e1:12:12:83:33:56:3e:0f:65:57:
3d:62:22:14:4a:a6:33:e7:c5:5c:d9:5d:48:00:cd:
26:9e:2d:5b:98:65:fd:7f:82:57:a9:d9:43:2c:80:
1a:c8:8c:59:57:85:93:d0:a6:39:ef:be:1f:38:35:
4d:4c:b8:52:ca:0c:14:06:f2:3a:2b:26:a1:e0:91:
4a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F5:1B:EF:9D:7C:61:E3:0D:BF:48:67:AA:C9:3B:F0:2D:6A:D6:59
X509v3 Authority Key Identifier:
keyid:5E:42:C3:56:12:F4:5A:F4:11:03:52:0A:F2:76:1C:DA:A5:1E:3A:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/674496-97bd-4eb0-a886-82119978d6bb/1/XkLDVhL0WvQRA1IK8nYc2qUeOqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:83:fe:dc:c5:6b:4f:50:40:0a:52:bb:ac:36:10:f6:d3:71:
a1:ef:5e:9f:2d:5d:c1:f6:fd:71:b5:83:6c:c6:4a:cc:1e:45:
9e:51:99:29:6d:64:c3:ef:88:4a:f4:d7:74:b1:ac:c0:fb:72:
7d:8b:7c:07:95:f0:11:29:3a:72:17:3e:fc:49:89:e3:10:97:
a8:ad:11:67:29:7b:96:d6:fb:49:50:74:22:88:16:d6:89:94:
ca:d4:df:b9:d2:07:44:a3:47:28:75:b7:c2:ae:f2:c6:0f:1f:
6b:23:dc:23:a5:43:e5:c3:16:d9:70:26:e0:8b:59:cd:18:a2:
d4:88:fa:93:00:2a:a7:a4:47:a8:81:9e:99:85:7b:58:60:e1:
29:e8:a4:8a:a0:df:65:f0:13:b2:2e:fd:be:5d:b8:d1:24:a2:
8a:09:29:bd:08:16:49:5f:4e:a8:4a:23:02:1b:f7:72:73:90:
00:c1:82:4e:e1:f6:31:ff:68:55:e4:63:27:fb:64:76:89:ca:
42:cf:fb:06:e8:0e:31:18:1e:47:d1:11:0f:2e:cc:d8:fd:9f:
9b:3e:06:ad:7d:2a:88:e8:ca:cb:f7:5a:d6:8f:6e:5a:a6:c2:
d5:7e:4a:4f:f7:6a:4c:6c:a0:ba:a1:01:e2:8c:d9:48:33:e0:
4f:77:bf:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:46:56 2026 by rpki-client