Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
File: 500-XZlL7NPyWMQd858fY-xWPh0.mft (raw, json)
Hash identifier: /c5YqSLa8Lod+kdU+vs7mWCHMyT72QoNN1zOb31NW4Q=
Subject key identifier: A4:34:A9:F4:6E:6F:96:E4:A1:4B:50:94:49:7D:CA:DD:F4:E6:A2:BD
Authority key identifier: E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
Certificate issuer: /CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Certificate serial: 019E307274A1479530D69B9AFD08F655775B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
Manifest number: 12BA
Signing time: Sat 16 May 2026 11:01:07 +0000
Manifest this update: Sat 16 May 2026 11:01:07 +0000
Manifest next update: Sun 17 May 2026 11:01:07 +0000
Files and hashes: 1: 500-XZlL7NPyWMQd858fY-xWPh0.crl (hash: hBaiQmpKb8tI4OASY4ojksd7M+Iug10kNg4ZmjXGl9s=)
2: xJQkEE-myuee2xusX84h4jOXGkk.roa (hash: bgfimRITzgygmGvHr8W4DzraqoP9/oX3mukFAiSIHn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:74:a1:47:95:30:d6:9b:9a:fd:08:f6:55:77:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e74d3e5d994becd3f258c41df39f1f63ec563e1d
Validity
Not Before: May 16 11:01:07 2026 GMT
Not After : May 17 11:01:07 2026 GMT
Subject: CN=a434a9f46e6f96e4a14b5094497dcaddf4e6a2bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:a4:b4:c2:b9:ae:81:a3:da:c9:41:a8:87:5a:
44:51:53:ec:c5:39:84:40:cb:f9:e6:84:1f:b9:6d:
7d:b4:01:44:6e:36:43:3b:42:ff:dd:12:70:5f:d4:
9a:8c:4a:32:fa:02:28:19:b5:15:67:45:aa:47:8a:
ca:93:5d:eb:18:19:93:fe:76:40:ad:c6:36:33:72:
59:6f:43:6c:55:28:43:9b:08:4f:dd:93:3e:bf:c6:
4d:ec:1e:c1:b2:10:08:6a:af:c2:e2:93:2f:c1:3c:
a7:c8:cf:4b:4b:2f:3f:5c:44:a3:76:8a:18:5b:91:
1e:cd:92:c6:61:08:4b:f1:79:1d:78:02:36:90:de:
39:be:96:e6:94:92:41:f1:a9:a6:85:bd:e4:a1:a2:
b3:10:c5:fa:31:fd:f3:31:fc:70:d3:77:34:68:09:
ab:64:ea:b5:3c:81:3a:38:0b:72:07:8f:48:a1:fd:
2f:22:fb:82:14:23:82:ed:97:d4:15:b3:34:3b:1a:
98:61:2a:f0:11:b3:f3:0a:82:72:ed:0d:e6:b8:d8:
84:f3:6b:fd:ca:ae:74:af:3c:82:29:91:36:ed:23:
62:8c:21:0e:f0:4b:89:cc:29:ab:cf:74:67:81:36:
a7:e5:3f:fd:1a:ec:72:c3:f0:a4:e4:2c:d1:04:f9:
8c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:34:A9:F4:6E:6F:96:E4:A1:4B:50:94:49:7D:CA:DD:F4:E6:A2:BD
X509v3 Authority Key Identifier:
keyid:E7:4D:3E:5D:99:4B:EC:D3:F2:58:C4:1D:F3:9F:1F:63:EC:56:3E:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/500-XZlL7NPyWMQd858fY-xWPh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/42e24c-21f5-441f-b6bc-c23d7adbebdc/1/500-XZlL7NPyWMQd858fY-xWPh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:16:6a:be:b9:23:22:7f:bd:a6:6d:b1:97:93:04:55:23:b0:
d6:ff:9b:0b:96:38:19:96:47:09:ca:91:b8:1c:b6:8f:e0:a0:
eb:aa:04:b0:de:33:51:49:8e:38:fc:89:ea:f4:09:cb:e7:95:
68:c2:ca:a2:bd:e7:b2:19:78:9f:27:d8:80:57:83:42:3f:99:
e7:05:d9:67:09:0f:ea:fb:8a:1b:ff:80:80:89:a9:2d:2a:67:
1c:e6:ee:cd:4b:7a:09:c4:c7:ed:f3:1e:09:12:27:2e:c0:33:
a8:03:65:50:d2:2b:02:9c:64:36:00:c3:62:68:65:ab:06:91:
2c:77:f4:ee:b9:0c:81:b0:1f:75:1b:52:87:a6:4e:34:04:60:
8c:a7:20:63:26:0b:b0:74:09:fd:08:44:a0:bf:94:bc:c8:28:
91:7d:5e:a9:bd:0e:f8:38:23:32:99:3f:3c:0d:83:24:f6:40:
3b:32:2e:38:c1:26:0d:9c:65:dc:d5:da:ed:48:9c:dc:66:61:
a9:33:d5:b2:f1:93:a4:9f:6b:82:67:e5:9f:3a:ea:f9:8b:e9:
de:c0:df:8c:a0:1a:59:c8:23:30:7f:44:5d:a2:4a:40:88:07:
b5:3a:dc:18:5c:7a:4b:c1:0c:47:11:05:7c:a7:aa:7e:45:01:
f1:3e:68:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:54:32 2026 by rpki-client