Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
File: XaWsO7omBTjDM-bIYPI2ASyYZ10.mft (raw, json)
Hash identifier: mp9iGQFuPjJj6cXsE7L9tS1q+PUNn6UhZPwSTc76v9c=
Subject key identifier: C9:9B:2C:E4:1F:A8:26:10:18:0B:48:6E:EB:05:3C:C9:43:BA:E1:79
Authority key identifier: 5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
Certificate issuer: /CN=5da5ac3bba260538c333e6c860f236012c98675d
Certificate serial: 019DCF3E302962CC69E78CDD78A8B2002037
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
Manifest number: 1338
Signing time: Mon 27 Apr 2026 14:00:52 +0000
Manifest this update: Mon 27 Apr 2026 14:00:52 +0000
Manifest next update: Tue 28 Apr 2026 14:00:52 +0000
Files and hashes: 1: GqfcLrP9OkUTy-GX1d-k-vfcOX8.roa (hash: XFhkOuqDVaUrmegmAPvZHJBMmOe4H8O6VpNvMvQVK4k=)
2: XaWsO7omBTjDM-bIYPI2ASyYZ10.crl (hash: fTcYaDvW/wJAG77YuLs4BvX/8gFczw/5Fo9dvuFWVgs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:3e:30:29:62:cc:69:e7:8c:dd:78:a8:b2:00:20:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da5ac3bba260538c333e6c860f236012c98675d
Validity
Not Before: Apr 27 14:00:52 2026 GMT
Not After : Apr 28 14:00:52 2026 GMT
Subject: CN=c99b2ce41fa82610180b486eeb053cc943bae179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2d:d8:9a:3b:df:17:e3:25:be:ad:38:9d:d7:
77:c8:50:a4:73:54:90:62:a0:1d:73:39:51:07:cf:
cc:19:e5:40:f2:60:0b:48:e9:46:ca:8d:bc:ed:a1:
73:83:94:65:8a:21:60:37:bb:9b:71:11:21:86:a7:
d6:4b:f1:30:00:8f:9e:4a:60:df:4e:87:1c:11:ae:
3d:c0:84:56:72:5f:95:68:fa:73:34:af:44:4d:1c:
a8:f5:f2:0f:8f:24:c9:6b:2b:36:63:2c:7a:aa:9e:
ac:74:06:c8:a9:26:b0:0a:55:55:0d:58:81:e7:6e:
df:58:09:56:1c:80:14:63:c3:53:7a:e7:f1:01:77:
8b:ac:77:47:36:6b:80:1e:0e:9a:a3:c4:bb:ec:e4:
c4:47:4c:c2:a1:0c:c0:d9:0d:64:51:69:40:77:4d:
6b:c6:dd:96:ed:9d:d1:da:5c:e2:b7:1e:05:b8:fe:
2c:ab:6f:35:63:93:9d:9f:8c:74:6d:af:c1:37:cd:
4f:81:95:68:9c:03:60:ac:21:c7:b7:8f:d8:cd:cb:
29:c1:da:f9:4b:ea:0f:77:15:9d:1b:aa:25:74:bb:
e5:8c:91:41:74:a6:8a:50:ca:86:33:a2:f5:2c:57:
fa:4c:02:60:c6:1c:70:f6:5c:38:1e:fe:6c:44:92:
10:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:9B:2C:E4:1F:A8:26:10:18:0B:48:6E:EB:05:3C:C9:43:BA:E1:79
X509v3 Authority Key Identifier:
keyid:5D:A5:AC:3B:BA:26:05:38:C3:33:E6:C8:60:F2:36:01:2C:98:67:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaWsO7omBTjDM-bIYPI2ASyYZ10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/dafef8-e227-42d3-807f-be810a050944/1/XaWsO7omBTjDM-bIYPI2ASyYZ10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:54:a5:1c:38:0e:5e:83:23:0b:6c:b2:6b:33:fa:72:b3:e6:
81:22:26:df:fa:11:2d:5d:12:01:e9:5c:8c:35:c0:56:3d:7c:
f3:51:3f:d6:26:0e:ea:84:6b:89:c1:84:d7:ca:71:77:64:fc:
3e:f4:96:c2:e4:e2:b7:c2:6f:68:fc:fc:3f:a7:18:1f:2b:2c:
3f:b9:3f:95:10:57:45:09:6d:05:31:e3:f9:8c:4f:9a:cb:91:
7e:02:03:ab:17:b5:bc:9e:d6:99:dd:4b:48:12:85:b0:f1:62:
f9:6a:e8:6a:94:ac:e4:83:b8:1e:21:8a:8c:ea:b7:2e:8c:a3:
bf:16:e1:cd:30:b7:9f:de:41:43:6a:48:d0:1e:c4:90:4c:8a:
56:53:e5:65:c1:ac:ca:ef:11:51:3c:05:96:1e:83:19:b3:13:
2e:3e:7c:92:3c:fb:1c:a9:cf:3e:51:2a:ae:41:71:83:84:23:
f8:db:c6:63:46:f9:7f:aa:97:8f:21:f8:ac:18:75:51:c6:d9:
a0:97:95:10:78:85:49:32:18:af:e6:75:ed:91:46:d5:fe:b3:
da:82:60:b5:02:6e:d6:7e:c5:6b:c6:06:be:3f:c2:f2:3b:eb:
1e:8a:cf:59:28:c7:eb:bd:77:bb:47:46:da:d1:d4:0e:b8:42:
dc:c0:8e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 18:04:59 2026 by rpki-client