
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json)
Hash identifier: bYsYX/9TLP1WweZX/1kr/EnkRTxNz+mKU7PIYxWCI7M=
Subject key identifier: 6B:16:17:9F:74:BC:7C:1D:28:62:BA:D0:0F:68:36:94:C1:EC:07:F0
Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Certificate serial: 019F1A56622B8142ED1FAA6DDAC6711543E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
Manifest number: 198D
Signing time: Tue 30 Jun 2026 21:01:36 +0000
Manifest this update: Tue 30 Jun 2026 21:01:36 +0000
Manifest next update: Wed 01 Jul 2026 21:01:36 +0000
Files and hashes: 1: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: nD/ZDQEmr4pER4CEyGKZVv9rM6SyhZPbAnUOVH20QhA=)
2: z9U8nnktCizSYk1_4LI0Qkbtcns.roa (hash: POiizupDwGmr1N0Ok5nxERS6rP+EfVEg0CxJ8RCMqp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 20:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:56:62:2b:81:42:ed:1f:aa:6d:da:c6:71:15:43:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Validity
Not Before: Jun 30 21:01:36 2026 GMT
Not After : Jul 1 21:01:36 2026 GMT
Subject: CN=6b16179f74bc7c1d2862bad00f683694c1ec07f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:73:5d:f8:7e:d8:c6:18:78:9f:dc:74:98:00:
9f:05:13:8d:34:59:26:a9:2c:6d:a0:36:79:75:68:
29:db:f4:24:16:b8:9c:64:12:2b:a8:67:72:9c:5c:
f8:73:de:e0:7f:1a:1a:f4:51:1e:22:b2:9e:26:69:
77:ad:83:ee:d6:cd:88:c4:04:7e:ca:e8:77:b2:b9:
3d:1d:55:0b:9b:bf:75:ef:5e:95:c5:06:28:b2:45:
68:e9:71:c1:05:e1:79:7a:69:e1:7a:f8:e8:cd:91:
72:78:c5:93:e9:d2:e8:c9:bd:e8:06:15:a2:9f:63:
99:90:b3:9e:ac:9c:78:d6:b4:09:dc:db:84:9f:00:
4b:80:8f:f0:75:55:75:be:c9:08:6c:c9:b5:a8:61:
22:e5:b7:77:ed:5a:d3:95:e8:ed:99:1d:f3:a8:5f:
eb:39:57:65:a9:63:9d:b6:9d:3f:35:b4:8e:a4:e9:
df:1a:3b:33:e1:fe:45:8d:8b:3e:6d:b3:fa:05:fa:
d8:8e:51:ad:14:e0:0f:41:85:ee:3d:6a:1b:53:f4:
7d:95:94:2f:ea:1c:64:11:13:c0:e8:51:d9:b2:af:
1a:96:7a:a7:2b:9e:16:16:43:9d:be:58:bd:7a:79:
aa:27:b8:88:d4:61:c7:6f:46:7d:f9:b8:a4:0a:06:
86:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:16:17:9F:74:BC:7C:1D:28:62:BA:D0:0F:68:36:94:C1:EC:07:F0
X509v3 Authority Key Identifier:
keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:45:8b:d3:1d:c7:83:71:14:f7:be:3e:27:2b:f6:f2:ef:44:
8f:ca:d0:c6:76:14:5b:ec:54:61:b7:5d:bf:90:46:fa:e6:06:
af:7d:ec:cf:8b:8b:58:14:6e:0a:2e:26:02:29:a9:0b:1d:24:
e1:b2:a5:36:c6:fd:4b:30:ed:d4:78:25:91:b5:0b:04:b8:8c:
49:0d:85:39:ef:b0:e9:d3:21:97:17:16:47:5d:0b:08:bc:69:
12:c1:b3:97:6d:37:ef:15:38:6d:71:72:a5:8f:17:86:f6:ad:
bd:a0:dc:61:aa:c5:c3:b1:ae:a3:0f:c0:78:cd:05:54:e8:78:
4e:17:b7:08:ac:11:9c:1e:64:57:07:a1:7e:4b:4a:91:a0:a6:
4a:2a:f2:77:a8:87:06:44:cc:66:df:12:19:cc:b1:34:06:2b:
45:ad:a1:60:f9:17:c1:97:53:9f:b9:d5:ff:09:1f:10:2c:3b:
5d:fe:eb:b1:31:c5:25:ff:7d:56:5d:1d:85:df:ec:20:41:a2:
f7:07:b7:ac:3d:4e:92:4b:58:be:7f:f6:c2:65:56:2e:15:6d:
a4:5e:48:70:56:c0:67:ea:d8:68:24:ad:24:cb:d5:15:d9:31:
b5:b5:80:36:d8:38:5c:54:54:5c:4b:97:38:f8:0e:e4:b9:27:
ea:35:1f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 03:36:14 2026 by rpki-client