Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
File: xypST5sbOAHb18iaFgrsB2tX5yk.mft (raw, json)
Hash identifier: +Ob8Oww+f6D4QOXneeI5zwt7N4S0HJguJaqK+YJed7g=
Subject key identifier: 95:E8:08:DE:0F:83:84:FE:56:FF:0D:F0:D0:FD:60:C6:5D:C5:FE:A7
Authority key identifier: C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29
Certificate issuer: /CN=c72a524f9b1b3801dbd7c89a160aec076b57e729
Certificate serial: 019EB8EA9C3401913560FC284F56E59DC343
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
Manifest number: 11BE
Signing time: Thu 11 Jun 2026 23:00:43 +0000
Manifest this update: Thu 11 Jun 2026 23:00:43 +0000
Manifest next update: Fri 12 Jun 2026 23:00:43 +0000
Files and hashes: 1: 6MOGH8oGvh6IYApLtSaZowTuqtk.roa (hash: HJrHUPLTq5etSutfssfFpw4hmCz6YgNXH+NQPFP+7uM=)
2: U2uOljUf-48wSNUQgF-2wsauE-g.roa (hash: 2YVcDn6Ax9cXhQHx8fyaxNd0XJvsq3/OJmSqm70WvIg=)
3: xypST5sbOAHb18iaFgrsB2tX5yk.crl (hash: 0266zX6uZiQpP4+sR0HgQ74KtaczPL7Kb2bEW4yNQ+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:9c:34:01:91:35:60:fc:28:4f:56:e5:9d:c3:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c72a524f9b1b3801dbd7c89a160aec076b57e729
Validity
Not Before: Jun 11 23:00:43 2026 GMT
Not After : Jun 12 23:00:43 2026 GMT
Subject: CN=95e808de0f8384fe56ff0df0d0fd60c65dc5fea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:da:a2:cd:13:22:6a:e8:0a:23:79:75:d8:f7:
a9:cc:7e:a7:1e:6c:35:26:41:a9:7b:a8:d7:a2:63:
37:e5:de:62:b0:9e:b9:76:92:45:cb:59:11:f0:8c:
38:00:8c:76:18:72:60:e2:8e:48:34:94:1a:b6:c2:
0f:56:f0:4b:fc:a9:ec:47:6e:d7:f3:5f:45:4f:84:
c7:b7:48:85:62:ec:4b:c8:04:d5:aa:72:b4:22:65:
3b:26:3e:91:8f:0d:13:02:0a:eb:d2:71:7a:0b:79:
47:84:ca:ac:5e:58:c1:7d:88:36:80:ef:43:78:54:
8c:63:31:3f:5c:0b:e8:d9:0b:e9:d6:ac:ee:59:d7:
5e:02:43:81:27:64:53:71:09:32:72:f4:01:79:59:
29:31:d7:6d:a0:d6:be:1c:33:4f:f3:5f:2f:62:92:
b0:f9:ae:f5:2f:36:a9:33:5d:6b:ae:2c:2b:1d:38:
cb:50:86:c0:22:d7:e5:59:3d:32:71:a3:9a:01:48:
f8:92:ae:87:03:66:07:f8:59:ce:9b:4d:99:99:66:
f8:1d:5a:69:b4:4b:58:45:87:e2:7c:52:a4:cb:6b:
2d:e7:e4:a9:82:e5:62:c8:27:a4:82:2d:13:fb:1c:
23:60:8c:58:8c:ce:6b:08:5d:37:79:8d:65:a5:11:
71:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E8:08:DE:0F:83:84:FE:56:FF:0D:F0:D0:FD:60:C6:5D:C5:FE:A7
X509v3 Authority Key Identifier:
keyid:C7:2A:52:4F:9B:1B:38:01:DB:D7:C8:9A:16:0A:EC:07:6B:57:E7:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xypST5sbOAHb18iaFgrsB2tX5yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4e3cc2-1a33-495a-999f-d7a684a57b19/1/xypST5sbOAHb18iaFgrsB2tX5yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:fe:41:0d:7c:1c:f8:0c:15:59:bc:4d:89:c9:f9:9d:08:f1:
3e:f1:f8:92:12:71:67:92:76:3f:9f:76:8c:c4:a0:f4:8c:af:
cf:d2:92:e5:1a:b6:2b:99:5f:95:92:81:ac:c6:92:65:4c:da:
4c:38:67:a5:93:52:23:81:ad:4d:15:4d:98:87:56:dc:d0:45:
03:61:56:e7:d8:dc:45:e0:53:b7:28:1c:85:fc:c0:44:4d:e4:
49:60:6a:37:38:59:92:23:d5:b7:c8:46:24:bf:f4:0a:f5:01:
3e:f6:cc:5e:81:86:fd:b1:31:82:a5:e4:e5:b6:62:ff:c0:ad:
ba:b2:23:eb:24:77:6a:29:f1:39:8e:d1:ef:77:0c:18:64:47:
ca:8c:9e:c1:ec:b6:e6:5f:46:68:96:7e:e6:7c:10:95:1d:ec:
cf:d6:d2:30:22:29:b1:60:d9:94:96:36:a7:46:8d:2f:2e:40:
88:9d:d7:95:4b:46:32:0a:54:04:07:83:b9:ba:41:2d:50:16:
70:45:ea:04:77:3e:f1:1a:46:a3:52:73:a7:3a:e8:01:4a:09:
4e:87:13:62:70:11:1c:54:ee:06:64:f9:9a:38:61:75:6e:4d:
dc:92:aa:19:cf:c8:46:bd:c1:cf:08:37:3a:1c:c5:d4:78:3f:
95:23:87:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ646pw0AZE1YPwoT1blncNDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3MmE1MjRmOWIxYjM4MDFkYmQ3Yzg5YTE2MGFlYzA3NmI1
N2U3MjkwHhcNMjYwNjExMjMwMDQzWhcNMjYwNjEyMjMwMDQzWjAzMTEwLwYDVQQD
Eyg5NWU4MDhkZTBmODM4NGZlNTZmZjBkZjBkMGZkNjBjNjVkYzVmZWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdqizRMiaugKI3l12PepzH6nHmw1
JkGpe6jXomM35d5isJ65dpJFy1kR8Iw4AIx2GHJg4o5INJQatsIPVvBL/KnsR27X
819FT4THt0iFYuxLyATVqnK0ImU7Jj6Rjw0TAgrr0nF6C3lHhMqsXljBfYg2gO9D
eFSMYzE/XAvo2Qvp1qzuWddeAkOBJ2RTcQkycvQBeVkpMddtoNa+HDNP818vYpKw
+a71LzapM11rriwrHTjLUIbAItflWT0ycaOaAUj4kq6HA2YH+FnOm02ZmWb4HVpp
tEtYRYfifFKky2st5+SpguViyCekgi0T+xwjYIxYjM5rCF03eY1lpRFxhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJXoCN4Pg4T+Vv8N8ND9YMZdxf6nMB8GA1UdIwQY
MBaAFMcqUk+bGzgB29fImhYK7AdrV+cpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My80ZTNjYzItMWEzMy00OTVhLTk5OWYt
ZDdhNjg0YTU3YjE5LzEveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My80ZTNjYzItMWEzMy00OTVhLTk5OWYtZDdhNjg0YTU3YjE5
LzEveHlwU1Q1c2JPQUhiMThpYUZncnNCMnRYNXlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl/5BDXwc
+AwVWbxNicn5nQjxPvH4khJxZ5J2P592jMSg9Iyvz9KS5Rq2K5lflZKBrMaSZUza
TDhnpZNSI4GtTRVNmIdW3NBFA2FW59jcReBTtygchfzARE3kSWBqNzhZkiPVt8hG
JL/0CvUBPvbMXoGG/bExgqXk5bZi/8CturIj6yR3ainxOY7R73cMGGRHyoyewey2
5l9GaJZ+5nwQlR3sz9bSMCIpsWDZlJY2p0aNLy5AiJ3XlUtGMgpUBAeDubpBLVAW
cEXqBHc+8RpGo1JzpzroAUoJTocTYnARHFTuBmT5mjhhdW5N3JKqGc/IRr3Bzwg3
OhzF1Hg/lSOH/A==
-----END CERTIFICATE-----
Generated at Fri Jun 12 06:51:11 2026 by rpki-client