Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
File: XL1s2RrWpyhrIfZQn92fUP7nXYc.mft (raw, json)
Hash identifier: 48WkvU+ETMNG/0R4zBGNAAryNp9UFjRkYEhE4D+f/1Y=
Subject key identifier: 4F:88:20:3D:3F:0E:69:E6:6C:82:C7:B8:B3:B9:2F:01:06:90:9B:CE
Authority key identifier: 5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
Certificate issuer: /CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Certificate serial: 019E2B82DB04E3F64927E48979AC08777037
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
Manifest number: 183A
Signing time: Fri 15 May 2026 12:00:56 +0000
Manifest this update: Fri 15 May 2026 12:00:56 +0000
Manifest next update: Sat 16 May 2026 12:00:56 +0000
Files and hashes: 1: XL1s2RrWpyhrIfZQn92fUP7nXYc.crl (hash: SEymNjOWEYO3m7L5sWzGxIyfbiD2oJh/HcpI7NaY92Q=)
2: aJRCmul5cvMFEkfsWwNh6YKtWg0.roa (hash: scsks3FGlAv25a5TwoetFCR7muYAvHPLPp8bABvEfPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2b:82:db:04:e3:f6:49:27:e4:89:79:ac:08:77:70:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Validity
Not Before: May 15 12:00:56 2026 GMT
Not After : May 16 12:00:56 2026 GMT
Subject: CN=4f88203d3f0e69e66c82c7b8b3b92f0106909bce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bd:59:c1:4f:37:cc:77:6c:ec:6b:80:99:1c:
bb:6d:f0:91:3e:80:16:b6:e3:9c:ad:45:53:52:86:
5b:41:93:a9:b9:32:71:fc:45:31:b5:6e:0b:a4:67:
fd:03:f3:78:2d:e6:57:dc:67:47:0e:ce:a3:b1:6a:
bb:c0:1d:55:7c:39:95:35:72:50:f4:f2:da:62:6c:
c6:87:e4:cc:73:df:c6:18:9c:54:a8:48:44:6e:42:
4c:98:4f:df:8f:57:f7:56:72:5a:8d:c4:4f:3a:9b:
34:7e:53:71:33:14:97:8c:e5:29:27:ab:6f:fd:ff:
c8:9a:9b:19:1c:33:d4:7c:5f:7f:8e:57:f0:71:e0:
f8:9e:fd:df:31:b6:ad:6c:de:a6:c5:57:65:44:18:
3b:61:c4:c3:fd:e2:55:c0:e0:7d:1a:82:74:a4:52:
e8:71:8e:6d:ef:e9:64:1f:2d:09:a0:99:cf:37:93:
c9:4a:2a:fe:5d:c5:6b:8d:ef:f1:5c:dd:37:62:40:
42:c4:c6:84:40:4e:84:9e:40:97:8c:6e:1e:8d:70:
94:9a:15:03:9b:5b:99:e7:2d:56:c1:82:64:0c:5d:
ee:e4:06:e2:00:0b:1e:ef:c9:31:ca:87:f8:57:9d:
51:e1:c9:9a:61:ff:24:c3:c5:62:d7:de:aa:d8:97:
8e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:88:20:3D:3F:0E:69:E6:6C:82:C7:B8:B3:B9:2F:01:06:90:9B:CE
X509v3 Authority Key Identifier:
keyid:5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:e3:a0:c2:d7:90:10:c0:99:4f:78:6d:32:45:4a:3b:5f:73:
8e:fc:79:3f:4a:68:db:8a:c2:30:40:c1:20:44:ed:91:1e:41:
2f:5a:58:09:44:d2:48:d5:a2:ea:23:b0:9e:20:22:76:8e:42:
c0:2f:8e:21:f3:2b:2f:1f:db:23:01:91:fb:0c:f4:21:cf:14:
64:ba:72:bb:af:8a:d1:4f:7e:d9:f5:8c:c9:6c:c6:60:86:4b:
2a:23:8e:52:d9:6a:0b:c1:67:21:87:65:b3:e0:95:96:2a:a4:
45:bf:38:f4:8e:55:bb:ff:80:82:68:90:90:b9:f6:30:6b:0d:
0d:44:39:2a:d0:df:3a:c7:71:3e:4c:a4:c4:cd:5f:b0:3a:46:
98:7b:28:c0:26:e5:b0:0e:d4:1e:39:35:ca:6d:45:8e:81:79:
34:db:31:b7:e3:3b:48:58:e1:bc:b8:ea:5c:1f:73:52:5c:78:
f7:65:53:61:47:04:63:cc:86:a1:e8:14:28:8f:69:e3:f8:e8:
7e:0a:b6:d7:ee:e3:36:e5:02:c7:f7:6d:c4:27:65:04:12:a1:
19:c2:ea:56:c5:44:42:47:dc:5b:11:1c:44:8d:00:78:e1:27:
08:0f:9f:fa:0b:9a:7b:45:ce:ad:0f:29:d2:44:84:48:7b:2e:
ca:f5:27:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 16:10:53 2026 by rpki-client