Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json)
Hash identifier: O6lotjdF83hrBFcWrX+5cH1uooFUbt1+zF/0toU+hKo=
Subject key identifier: 0D:05:4C:07:B8:DA:72:FC:99:93:7A:37:2D:3D:5C:98:8D:18:7F:9D
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 019E326144BF77CAF1857F5007BE54980542
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
Manifest number: 1912
Signing time: Sat 16 May 2026 20:01:35 +0000
Manifest this update: Sat 16 May 2026 20:01:35 +0000
Manifest next update: Sun 17 May 2026 20:01:35 +0000
Files and hashes: 1: QBinzFbTX8ICJKPb335BTjaNXKk.roa (hash: phGs/IfWO4O9NiG9zthPXCYOMupHdBQa3yN7pRaGe2k=)
2: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: 22ydgPo26GtVzRYXCM5jYSWKCuC9XCDvtYa6c1D5hjo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:61:44:bf:77:ca:f1:85:7f:50:07:be:54:98:05:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: May 16 20:01:35 2026 GMT
Not After : May 17 20:01:35 2026 GMT
Subject: CN=0d054c07b8da72fc99937a372d3d5c988d187f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:31:a3:0f:00:e0:fd:bb:e1:80:d8:d9:7c:a2:
2e:9a:a3:8d:91:a5:06:82:54:02:b3:20:32:63:cc:
2a:3d:58:9f:f5:21:35:ad:b6:aa:16:49:0e:18:0a:
75:b6:d4:c8:84:00:a9:b6:fc:5f:6c:74:79:37:8a:
90:71:e6:57:fd:5e:c4:95:0a:9f:f3:29:37:a0:8b:
a6:8b:40:56:04:b8:4f:fb:29:72:8d:30:bd:b3:39:
ef:42:8f:64:68:f7:91:ac:c7:b0:ab:d4:3f:ab:af:
28:7f:8c:6b:1e:d7:17:db:3d:cb:e5:a3:2c:7b:90:
72:46:8b:e6:3c:68:a8:cd:0e:c0:3f:45:4d:67:3e:
e5:d4:8e:c4:a4:7c:fe:0d:ae:3f:2f:fb:5d:96:ee:
20:21:07:d4:be:8a:9f:c8:96:90:07:28:40:dc:9f:
2a:4b:4c:a9:89:6c:3c:5f:39:da:28:b5:52:ee:10:
94:43:4c:68:6f:d0:a2:42:c3:a3:05:c7:73:41:9a:
31:7b:7d:88:88:aa:c8:5d:8b:3b:ae:a8:c9:5f:61:
d1:a8:20:72:37:12:2e:fb:7a:ec:b9:69:68:30:d4:
65:8e:2a:b7:31:48:5c:80:6f:b2:0a:3c:0f:a3:be:
87:49:20:0d:3e:dd:84:fa:f0:13:92:59:d2:3b:1c:
0e:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:05:4C:07:B8:DA:72:FC:99:93:7A:37:2D:3D:5C:98:8D:18:7F:9D
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:ac:94:5e:5b:2f:f3:65:43:56:f3:a7:0c:4d:30:84:35:fa:
38:ad:26:22:ac:f1:e6:31:9c:90:33:7d:d7:38:58:ce:92:b4:
1a:99:e2:da:2e:76:ad:7b:2f:2e:ad:14:ef:73:40:2c:aa:2d:
b7:fe:72:dc:10:71:1f:59:21:43:6d:7d:bd:4d:14:9a:45:59:
bf:ff:3f:6d:bb:98:75:44:75:32:36:12:a7:5c:c5:b7:6f:cf:
6e:fd:67:b5:7f:9e:5e:03:dc:d4:aa:c1:21:e0:58:85:a2:dd:
65:3f:f8:c5:63:1a:b2:79:60:c1:97:b7:fa:b1:04:69:06:6b:
83:b6:4c:d8:47:63:1d:83:f9:4b:1c:43:df:e1:6d:59:11:4a:
d1:07:03:af:3f:65:0d:fa:3a:e1:72:0a:83:e6:f2:06:55:ea:
c7:62:85:cd:f3:7b:1b:ce:89:19:fa:28:99:6f:7a:d2:66:9b:
b1:00:5e:6c:b5:9a:33:c6:b4:37:8b:e5:b5:8c:49:f3:0b:5c:
28:d5:15:4e:23:98:c6:be:09:4b:c4:c0:ed:a1:f2:e4:c3:d2:
88:f5:ef:51:90:50:fd:b5:03:b6:67:0e:db:47:2c:62:93:7c:
e5:c4:59:94:92:b0:9b:f7:60:cf:3e:56:88:30:fb:c7:7d:bf:
73:05:a4:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 00:28:23 2026 by rpki-client