Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
File: XGGrSm35u5XP3orwdmaKWVs0HeE.mft (raw, json)
Hash identifier: DojgdX879brE7tX4kCSatFHMHe5bX86h5F+XlIMTjIc=
Subject key identifier: 32:B8:21:68:63:2D:DA:7C:AE:B2:A9:5F:6B:39:FA:98:36:24:D0:17
Authority key identifier: 5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
Certificate issuer: /CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Certificate serial: 019EB95853EF738F48D322FBDBAAA4EF93C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
Manifest number: 063E
Signing time: Fri 12 Jun 2026 01:00:33 +0000
Manifest this update: Fri 12 Jun 2026 01:00:33 +0000
Manifest next update: Sat 13 Jun 2026 01:00:33 +0000
Files and hashes: 1: XGGrSm35u5XP3orwdmaKWVs0HeE.crl (hash: T37xVhRQ4kbZ4fc4dKVDPCksK7LnRGf0xcmdKr+ahXU=)
2: d9ad6eSfGOCAtJCyfx5T80LXc84.roa (hash: l8TnxH7nYsbi9OkxC5kgX4fiX1lQ108inFjyeEj/BH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:58:53:ef:73:8f:48:d3:22:fb:db:aa:a4:ef:93:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c61ab4a6df9bb95cfde8af076668a595b341de1
Validity
Not Before: Jun 12 01:00:33 2026 GMT
Not After : Jun 13 01:00:33 2026 GMT
Subject: CN=32b82168632dda7caeb2a95f6b39fa983624d017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:07:3d:4d:18:4c:06:da:62:0a:e3:6c:f9:9f:
18:8d:6a:66:f7:ca:4e:14:d8:19:a6:f4:10:c0:ba:
64:de:b9:b9:bf:d8:74:f0:6f:fd:15:d9:e7:55:eb:
36:8d:f5:09:a0:9e:51:ae:c6:1a:b5:bf:af:9e:0b:
e4:7a:c9:93:08:f9:2a:a6:90:b2:6d:25:0a:41:93:
5b:e4:81:c8:fe:6d:3c:79:f0:51:26:44:5b:63:ff:
0b:b3:0b:a5:57:d6:0c:80:51:02:39:bd:c3:e9:25:
40:68:44:88:77:3d:7e:e0:05:ce:4f:4c:91:7f:0c:
8c:84:06:b3:cb:a6:c7:69:2a:f1:9d:c1:e1:ae:70:
98:d9:80:fe:a0:ee:5f:4a:81:94:ff:f8:83:8f:1e:
ff:d2:eb:29:46:0d:eb:6c:f9:78:0f:a0:99:8f:09:
e7:03:ba:1d:58:a5:22:b3:57:8a:78:d8:37:da:6e:
b5:a8:9c:70:9b:9e:e1:6c:dd:81:17:8e:3c:e8:78:
73:1b:83:6a:fe:0d:1a:43:8d:0f:c3:7a:c4:8d:76:
47:fd:23:53:6a:e5:18:1d:5a:cf:75:f2:83:79:ec:
13:dc:18:13:2d:3e:6b:4b:aa:0e:46:e1:aa:30:67:
d5:a8:9c:2f:f8:55:e3:63:bc:3e:c5:b8:ea:43:25:
c0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:B8:21:68:63:2D:DA:7C:AE:B2:A9:5F:6B:39:FA:98:36:24:D0:17
X509v3 Authority Key Identifier:
keyid:5C:61:AB:4A:6D:F9:BB:95:CF:DE:8A:F0:76:66:8A:59:5B:34:1D:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGGrSm35u5XP3orwdmaKWVs0HeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/fd5a98-272f-4078-948d-6fa868921dfb/1/XGGrSm35u5XP3orwdmaKWVs0HeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:ae:b0:63:a8:7d:5e:7f:e0:98:e7:83:00:e3:e0:86:0a:db:
15:90:96:cf:e0:18:c8:0a:3b:b4:11:8b:31:b5:59:c5:1a:a4:
df:85:a4:c4:91:5e:e2:65:9a:8d:12:8e:5d:47:2b:df:ff:4d:
c0:8d:4c:7e:bb:78:8b:60:1b:70:12:06:fc:17:cf:b1:8c:20:
e7:71:2a:d7:7d:38:a4:68:f7:35:92:b7:9b:d8:bc:84:3b:ff:
26:b5:19:43:ba:eb:8d:0d:91:5a:3c:46:64:ce:f5:26:17:63:
e7:c2:40:f1:01:2a:58:8a:cb:53:27:74:9f:2d:98:2f:55:43:
9c:dd:70:6e:93:90:d1:e6:3c:44:3d:62:4a:87:e9:df:74:d2:
52:9d:af:c3:46:a6:2f:5e:e6:bd:f2:83:5b:0e:2d:c4:4c:69:
2e:e6:6e:32:b5:a6:82:83:33:bf:bb:37:ca:cf:3e:27:57:93:
d1:cd:63:84:c9:14:7c:91:2f:92:0f:16:fe:25:5e:bf:e3:7b:
ab:8f:13:b4:80:21:57:ae:12:91:84:72:51:87:54:71:fb:fd:
4f:1e:a6:10:4e:f7:a4:37:0a:ce:47:cf:a9:c1:0d:3b:b9:71:
15:52:0f:f0:ef:62:04:92:55:df:ad:22:41:cf:f4:c2:72:dc:
89:e4:d4:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ65WFPvc49I0yL726qk75PFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNjFhYjRhNmRmOWJiOTVjZmRlOGFmMDc2NjY4YTU5NWIz
NDFkZTEwHhcNMjYwNjEyMDEwMDMzWhcNMjYwNjEzMDEwMDMzWjAzMTEwLwYDVQQD
EygzMmI4MjE2ODYzMmRkYTdjYWViMmE5NWY2YjM5ZmE5ODM2MjRkMDE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQc9TRhMBtpiCuNs+Z8YjWpm98pO
FNgZpvQQwLpk3rm5v9h08G/9FdnnVes2jfUJoJ5RrsYatb+vngvkesmTCPkqppCy
bSUKQZNb5IHI/m08efBRJkRbY/8LswulV9YMgFECOb3D6SVAaESIdz1+4AXOT0yR
fwyMhAazy6bHaSrxncHhrnCY2YD+oO5fSoGU//iDjx7/0uspRg3rbPl4D6CZjwnn
A7odWKUis1eKeNg32m61qJxwm57hbN2BF4486HhzG4Nq/g0aQ40Pw3rEjXZH/SNT
auUYHVrPdfKDeewT3BgTLT5rS6oORuGqMGfVqJwv+FXjY7w+xbjqQyXA2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDK4IWhjLdp8rrKpX2s5+pg2JNAXMB8GA1UdIwQY
MBaAFFxhq0pt+buVz96K8HZmillbNB3hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEdHclNtMzV1NVhQM29yd2RtYUtXVnMwSGVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mZDVhOTgtMjcyZi00MDc4LTk0OGQt
NmZhODY4OTIxZGZiLzEvWEdHclNtMzV1NVhQM29yd2RtYUtXVnMwSGVFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9mZDVhOTgtMjcyZi00MDc4LTk0OGQtNmZhODY4OTIxZGZi
LzEvWEdHclNtMzV1NVhQM29yd2RtYUtXVnMwSGVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqa6wY6h9
Xn/gmOeDAOPghgrbFZCWz+AYyAo7tBGLMbVZxRqk34WkxJFe4mWajRKOXUcr3/9N
wI1Mfrt4i2AbcBIG/BfPsYwg53Eq1304pGj3NZK3m9i8hDv/JrUZQ7rrjQ2RWjxG
ZM71Jhdj58JA8QEqWIrLUyd0ny2YL1VDnN1wbpOQ0eY8RD1iSofp33TSUp2vw0am
L17mvfKDWw4txExpLuZuMrWmgoMzv7s3ys8+J1eT0c1jhMkUfJEvkg8W/iVev+N7
q48TtIAhV64SkYRyUYdUcfv9Tx6mEE73pDcKzkfPqcENO7lxFVIP8O9iBJJV360i
Qc/0wnLcieTUGA==
-----END CERTIFICATE-----
Generated at Fri Jun 12 08:29:15 2026 by rpki-client