Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
File: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft (raw, json)
Hash identifier: Qi/klQPkvB2Px55XUCjB/iUT7MSAcDUBKR4xX9OJ8TM=
Subject key identifier: CC:7F:5F:34:C5:93:B9:24:83:B9:F9:01:5F:5A:F9:6B:68:F9:70:99
Authority key identifier: 5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
Certificate issuer: /CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Certificate serial: 019F1943647B198436EF6EADA650B1E144DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
Manifest number: 14C0
Signing time: Tue 30 Jun 2026 16:01:14 +0000
Manifest this update: Tue 30 Jun 2026 16:01:14 +0000
Manifest next update: Wed 01 Jul 2026 16:01:14 +0000
Files and hashes: 1: 1-rh3SVK_l4oC_Y7ih51PfkV69KE.roa (hash: NJ7OHlFB+x8OrDZE2G7eqZGbDxSKcSz5o8ZkkHAui3k=)
2: DmAsoEh_ftaKPOhVRscVORbXGKo.roa (hash: K5t41X9Sj7F3OsASCaPLgv9lGQLlL9EDWZMrPiqu4D4=)
3: Jj9JAsNkaCzVh3y4XWm1P_rXYU0.roa (hash: //DJwmMWuAhUHyp7ncUG1CBCwhEdbc8wN+6fYn+HdDk=)
4: XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl (hash: xqHVKCOo+JDVdzvP776iPxxh7zoPq7AdlLvg7OnS3VA=)
5: qIrPTvkJoKHOpyB7wnhzahJKcVM.roa (hash: P67wuJBItbnZh+zC9ZR4+mPtRz9kxlpY/Ao75oEVWZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:64:7b:19:84:36:ef:6e:ad:a6:50:b1:e1:44:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d3bb84891651f2039cd81b0b60912f7c0e5cf96
Validity
Not Before: Jun 30 16:01:14 2026 GMT
Not After : Jul 1 16:01:14 2026 GMT
Subject: CN=cc7f5f34c593b92483b9f9015f5af96b68f97099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:40:dc:fd:91:b4:98:60:1d:cc:0c:50:d9:79:
91:c5:2c:b5:38:39:f9:6c:e3:b9:a8:80:ea:9e:82:
c5:63:e5:f6:d3:ba:bb:4c:2d:18:cf:f0:32:ef:ad:
72:13:a8:28:10:43:0e:cc:44:4a:ab:6a:69:ce:aa:
47:83:b0:9a:90:3b:29:8a:2a:96:3c:02:99:fd:64:
1c:6d:25:8b:da:e3:47:50:1e:6c:59:ae:e3:b2:08:
d1:ba:0d:5c:fa:52:2f:68:6c:db:0a:ee:2e:64:54:
62:51:76:98:6d:f9:7c:72:26:d1:aa:94:21:be:10:
42:ff:8b:4d:8f:aa:0b:a0:a6:9a:f9:ff:91:ad:65:
79:86:8d:8d:5b:aa:19:42:76:54:60:e9:a0:36:ee:
5a:be:93:52:19:7d:eb:60:0d:ab:87:5e:9b:bc:34:
90:b8:66:6c:fc:15:6c:a8:93:e9:34:7f:de:98:72:
25:db:64:21:66:4b:a8:ad:75:58:d8:b6:97:98:7c:
c0:40:98:e1:e0:cd:c6:02:40:0c:eb:61:b7:81:b9:
40:5c:2c:65:04:f1:85:6d:93:fb:79:c6:f5:35:4e:
c1:ca:a9:37:bf:89:c6:e2:a8:72:0e:f0:07:d7:00:
b0:95:79:48:ef:80:d5:5d:dc:e3:ba:d4:68:43:87:
ca:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:7F:5F:34:C5:93:B9:24:83:B9:F9:01:5F:5A:F9:6B:68:F9:70:99
X509v3 Authority Key Identifier:
keyid:5D:3B:B8:48:91:65:1F:20:39:CD:81:B0:B6:09:12:F7:C0:E5:CF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/587f7e-60cc-41a0-8869-4f8c638a72e1/1/XTu4SJFlHyA5zYGwtgkS98Dlz5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:89:d3:86:49:62:0f:e2:73:01:0e:c2:f7:a6:b9:19:2d:66:
4d:d5:85:3c:b5:12:00:e7:2e:fa:3e:9e:ca:63:fd:f1:71:94:
49:13:86:e6:7f:21:5e:61:d4:6b:a9:33:c9:6f:6f:84:22:6c:
9a:2f:80:89:79:14:17:05:2c:53:42:7e:19:ad:8f:ad:3d:d1:
84:0c:60:84:e5:02:00:e7:3c:1d:c2:c2:d5:1d:82:6f:3a:56:
2b:03:a6:a2:76:9e:2d:b8:6c:4f:9e:07:12:29:40:1b:56:bf:
25:d2:9d:b0:25:62:03:bf:05:6a:5e:4c:96:05:98:8e:0c:f4:
ed:de:26:2a:ba:4c:1b:41:c3:96:e6:29:0c:4e:28:24:1f:bc:
ac:28:6d:be:9b:97:28:30:8b:a8:c6:d9:1d:2a:cf:be:ab:51:
02:e5:23:7b:44:0f:ef:32:c1:16:5d:3d:c5:b8:b4:26:99:92:
fb:31:13:50:69:e4:24:4a:ac:ef:31:c0:88:37:00:8b:aa:62:
44:9d:dc:87:70:32:00:86:0b:1d:79:c4:fe:ca:f0:c8:fd:72:
d1:93:69:bb:73:eb:10:fa:6d:51:94:65:8e:36:b3:ba:f0:b4:
fc:4d:66:37:65:b7:fd:b7:b9:ee:60:54:bc:3e:97:5d:04:4f:
27:29:ea:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:23:47 2026 by rpki-client