Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
File: XYHR_0WxVHwAqEtG75nsot-9Rbw.mft (raw, json)
Hash identifier: eXogiaR4/iOgCIBICeYGSgPT2QKr7NE8q2A9H1kqIug=
Subject key identifier: E9:30:03:5E:9A:DD:44:E2:9D:8E:76:E9:07:0C:C0:DE:E2:40:E0:D0
Authority key identifier: 5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
Certificate issuer: /CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Certificate serial: 019EC36E2AD9D84015C01F26BDE9922AEA0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
Manifest number: 1962
Signing time: Sun 14 Jun 2026 00:00:37 +0000
Manifest this update: Sun 14 Jun 2026 00:00:37 +0000
Manifest next update: Mon 15 Jun 2026 00:00:37 +0000
Files and hashes: 1: In_xgreKFfWQTYFlnjjmLhiHwyI.roa (hash: gsiqXm6RUxLr8tboWvbsB1DhI1DS1FN/O6oO/pFKm00=)
2: OCZr5kjA-CfYpumVERqkCUluKf4.roa (hash: fP+6DEGSKabb9AgXcHTeX7zIerrqedNJGpjW4I4cF8I=)
3: XYHR_0WxVHwAqEtG75nsot-9Rbw.crl (hash: GJ36CaWJBEJDK7tf+AZm5/2VejAQurtD+OaadMKTJTE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 00:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:6e:2a:d9:d8:40:15:c0:1f:26:bd:e9:92:2a:ea:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d81d1ff45b1547c00a84b46ef99eca2dfbd45bc
Validity
Not Before: Jun 14 00:00:37 2026 GMT
Not After : Jun 15 00:00:37 2026 GMT
Subject: CN=e930035e9add44e29d8e76e9070cc0dee240e0d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0e:d3:dc:ee:b7:d0:ba:d6:3a:cb:cf:92:79:
25:55:c6:35:9b:8f:82:54:30:49:c2:a2:21:86:cb:
22:2a:4f:45:12:be:8d:17:e2:9c:d0:1a:72:1f:20:
f3:5c:2a:5b:72:71:29:8e:fa:f1:4b:12:f6:4f:a2:
6b:e4:8e:5e:ad:1d:5b:9f:51:0f:09:4a:4f:cc:15:
ca:55:1c:00:83:f3:97:e9:cd:9c:45:3c:8b:ad:d9:
07:48:e6:23:fc:1b:99:63:8b:5a:00:8c:68:52:18:
29:34:5a:c0:37:f6:e7:97:de:c8:d3:0f:95:ba:24:
ff:cf:fb:1a:11:fe:cc:0a:49:38:fa:71:ce:6e:cd:
16:90:63:99:67:97:54:a7:22:57:c2:8c:e3:3d:4a:
14:9a:19:ee:d8:9a:d2:07:5b:0b:81:7e:f1:d5:0e:
b8:78:1c:ff:aa:64:ac:ab:4e:a7:b7:5f:82:5f:cb:
89:e8:81:a6:47:65:5f:d9:a6:2f:ec:3a:86:20:54:
91:bd:29:7a:a2:16:cd:a7:c8:54:e0:64:19:e5:e0:
ea:89:a2:4a:e0:95:d2:05:d6:c2:d5:c4:24:0b:92:
20:35:11:f0:93:3c:9c:a1:d0:e4:24:c9:1c:fb:96:
84:1e:07:7c:d9:19:2c:a2:9a:9f:59:25:f5:b2:93:
c1:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:30:03:5E:9A:DD:44:E2:9D:8E:76:E9:07:0C:C0:DE:E2:40:E0:D0
X509v3 Authority Key Identifier:
keyid:5D:81:D1:FF:45:B1:54:7C:00:A8:4B:46:EF:99:EC:A2:DF:BD:45:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYHR_0WxVHwAqEtG75nsot-9Rbw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/acd7e3-9c76-4ff6-b5ae-ee80a2d2952d/1/XYHR_0WxVHwAqEtG75nsot-9Rbw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:3c:71:b1:51:43:2e:e9:71:22:7c:3b:ec:bf:0f:4e:15:39:
43:43:33:63:78:05:d8:90:b3:9a:7f:e2:6b:f0:da:16:de:34:
ec:ec:66:2f:f3:ad:83:60:ba:b5:6d:fd:8c:89:19:d9:ea:67:
57:8a:fc:47:0c:b3:9b:5b:7d:65:d9:be:9c:5a:68:28:17:2a:
50:c6:d7:01:b4:18:5f:12:30:a1:9b:59:2b:55:8d:21:54:31:
3f:d1:4b:3a:9d:3f:73:98:fe:b8:97:6f:bb:4d:5c:2e:e5:f5:
6a:b8:42:da:48:17:61:80:da:33:29:78:d7:d5:0b:e6:97:b4:
c0:2a:93:89:f9:3c:6e:29:5f:41:11:f6:f9:f6:ed:c0:e9:06:
9b:1f:97:1d:b6:01:67:e2:56:ee:d9:1c:37:12:37:e4:f5:a5:
83:94:d9:47:3a:bb:71:0d:d6:0a:e8:0f:b7:eb:41:90:6e:9d:
16:f7:9e:3b:52:e0:c4:37:5e:b9:31:ab:9e:c3:ca:de:aa:54:
8a:96:8d:d4:e0:ed:68:8b:b7:51:7a:86:9a:87:ca:4b:60:d5:
07:79:3d:e0:ce:70:cd:a4:1c:97:39:81:12:dd:3f:85:7d:3a:
71:e3:91:8c:f0:95:80:0c:33:ae:77:dd:ab:5c:ba:a0:62:af:
e7:e9:72:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 08:18:59 2026 by rpki-client