Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
File: xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft (raw, json)
Hash identifier: IaRjw28QTxw976o9t6ZY2k0cKZNu0G9AK/rCLQr4P5Q=
Subject key identifier: E1:93:D3:83:B7:FA:4D:AB:7E:ED:7B:37:F1:09:28:56:73:AA:45:93
Authority key identifier: C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
Certificate issuer: /CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Certificate serial: 019E32979B24330B7C27E7E5FBB62B9A3240
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
Manifest number: 1915
Signing time: Sat 16 May 2026 21:00:56 +0000
Manifest this update: Sat 16 May 2026 21:00:56 +0000
Manifest next update: Sun 17 May 2026 21:00:56 +0000
Files and hashes: 1: xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl (hash: Oi9+zGF80307XNq99Q6M/S3Q1LxJfY9N+VC2yhWsXkY=)
2: z9U8nnktCizSYk1_4LI0Qkbtcns.roa (hash: POiizupDwGmr1N0Ok5nxERS6rP+EfVEg0CxJ8RCMqp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:97:9b:24:33:0b:7c:27:e7:e5:fb:b6:2b:9a:32:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4ff935057c3bdbadbdf49f343562c5e30016044
Validity
Not Before: May 16 21:00:56 2026 GMT
Not After : May 17 21:00:56 2026 GMT
Subject: CN=e193d383b7fa4dab7eed7b37f109285673aa4593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:40:d0:62:69:df:f7:48:ab:28:8d:95:5e:39:
31:b8:22:6f:30:a1:2e:ec:6c:eb:22:36:f1:22:94:
c2:70:55:6f:f7:dc:47:9d:66:e7:da:80:75:14:a3:
d9:ff:35:9a:96:0a:9e:e3:5a:a9:23:98:6f:53:6c:
61:87:63:47:63:99:dd:bc:f2:6a:07:28:f4:c5:97:
be:5f:a8:32:f6:9b:90:15:47:aa:18:d1:b1:ef:03:
36:11:0e:fa:69:81:dd:82:80:77:31:cf:60:2b:57:
5a:37:e7:0e:fc:bd:03:93:7e:c6:69:18:9c:3e:29:
5c:8b:7d:e1:b4:d0:e2:17:2a:be:25:c9:86:8e:3f:
bd:66:4d:fd:1a:1a:26:bd:a7:76:f4:31:db:29:2b:
11:29:05:e6:be:2a:5e:fd:a6:73:38:d0:f5:8f:58:
bd:06:cc:be:fc:f0:1e:32:52:7c:e7:38:9a:ef:d6:
eb:fd:0d:85:ae:92:2e:5c:34:0d:0c:e5:c5:70:4e:
eb:fb:38:6b:ed:8b:bf:70:a0:51:ca:ad:1f:a1:79:
1e:91:ca:ee:98:24:07:ad:aa:f4:7f:29:4e:d2:82:
2b:d7:7e:08:28:7e:f3:48:79:b6:df:9e:af:cd:29:
be:e8:48:02:7c:3a:2d:a9:83:9c:58:16:cd:6c:eb:
21:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:93:D3:83:B7:FA:4D:AB:7E:ED:7B:37:F1:09:28:56:73:AA:45:93
X509v3 Authority Key Identifier:
keyid:C4:FF:93:50:57:C3:BD:BA:DB:DF:49:F3:43:56:2C:5E:30:01:60:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xP-TUFfDvbrb30nzQ1YsXjABYEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2b059a-325d-4385-811f-17e1a2569568/1/xP-TUFfDvbrb30nzQ1YsXjABYEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:b4:37:5c:e1:ab:b4:ee:0a:86:f7:e4:03:3d:43:84:6e:81:
30:d8:e6:88:6f:5d:ec:f9:6d:b4:be:b0:44:84:55:2a:2f:4b:
94:b0:a0:49:ab:28:dd:da:bc:80:d2:75:d3:96:04:5b:13:3e:
c9:ad:ce:da:f2:6c:7d:93:36:a9:df:b1:42:db:51:41:8e:48:
33:71:d8:1d:d5:54:64:d6:cb:3a:b7:6e:83:91:80:2a:f4:0b:
1c:ea:c7:30:c3:b9:0c:58:52:70:1a:36:bc:10:a3:cd:6c:fd:
d3:99:f4:b4:f9:a6:30:be:69:93:74:21:96:8c:a1:15:36:17:
9a:86:43:45:5e:52:45:55:fa:1c:60:d3:ef:27:9a:f2:96:16:
23:51:e9:e6:ab:34:fd:53:44:21:c6:5b:78:8e:ee:01:5f:eb:
9c:30:fa:7d:d0:25:cb:ab:15:3f:4f:5d:a3:8f:b9:38:78:33:
ce:ab:d8:f0:a1:f8:65:df:f0:0b:6d:6d:93:ae:17:13:38:78:
e0:d6:c1:cf:5f:27:0b:6b:74:65:96:22:e6:14:fd:8c:b8:56:
8f:d8:cd:f3:a5:dd:7f:6e:ed:eb:7f:64:9b:85:4e:78:e1:5a:
58:5b:85:4b:e2:6e:de:1a:9a:4e:f3:1a:e0:e8:81:78:f0:9f:
21:38:6c:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 02:07:44 2026 by rpki-client