Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
File: XL1s2RrWpyhrIfZQn92fUP7nXYc.mft (raw, json)
Hash identifier: j8ypBI4rAEuKMBpMQwj/9WvemmAPpxmkYSvznDdiALQ=
Subject key identifier: 47:48:2A:8A:33:F3:D7:4E:1F:55:56:3E:57:65:C7:BE:7B:C5:54:42
Authority key identifier: 5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
Certificate issuer: /CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Certificate serial: 019F152F7035DE24542F782A1149B5D075F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
Manifest number: 18B3
Signing time: Mon 29 Jun 2026 21:00:57 +0000
Manifest this update: Mon 29 Jun 2026 21:00:57 +0000
Manifest next update: Tue 30 Jun 2026 21:00:57 +0000
Files and hashes: 1: XL1s2RrWpyhrIfZQn92fUP7nXYc.crl (hash: P3w5V/jxbZtpY3g+Rg1Yz9y3gj4QJUGC2jscNRkSOBk=)
2: aJRCmul5cvMFEkfsWwNh6YKtWg0.roa (hash: scsks3FGlAv25a5TwoetFCR7muYAvHPLPp8bABvEfPI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 14:12:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:15:2f:70:35:de:24:54:2f:78:2a:11:49:b5:d0:75:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cbd6cd91ad6a7286b21f6509fdd9f50fee75d87
Validity
Not Before: Jun 29 21:00:57 2026 GMT
Not After : Jun 30 21:00:57 2026 GMT
Subject: CN=47482a8a33f3d74e1f55563e5765c7be7bc55442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b1:12:39:a4:37:d5:0b:5c:bd:ba:be:83:e4:
8c:37:49:45:72:33:74:05:87:91:94:50:6a:bf:67:
d4:a8:04:9d:3e:e7:2a:28:05:c8:63:c0:de:5b:c1:
2b:e6:c8:80:6b:81:95:5d:ae:68:37:59:62:45:b9:
61:20:7b:e2:25:d6:2d:9e:cc:d5:79:8b:e5:6f:55:
0c:a5:58:a0:07:84:91:f3:d6:33:ff:11:71:40:ca:
f6:a3:89:19:ab:71:c6:eb:3c:29:ac:66:83:db:e4:
bd:08:53:0a:39:de:65:89:37:59:ca:b4:41:05:a3:
e8:1d:6c:3c:5a:a7:e7:b9:cd:3a:8a:b9:5e:16:a2:
c5:61:35:84:72:78:a3:d2:4f:57:a1:c4:61:76:de:
dc:10:0a:2e:5a:ec:78:a4:40:30:ab:c5:26:d3:ca:
f1:90:ca:cd:aa:8d:7c:ca:ce:30:3d:e3:7f:62:44:
d1:df:8f:44:78:d9:8d:fa:b3:20:69:be:21:72:c8:
c2:6e:c0:6f:a8:a0:77:0a:41:c4:f3:8d:2d:e1:51:
85:d4:f1:c4:99:68:1b:1b:6e:51:87:6a:a8:1e:47:
e2:02:a0:1f:36:64:0f:d3:24:f4:d5:8b:c0:fe:ca:
85:e5:fa:9f:52:0b:90:40:9c:96:89:b4:a5:b3:46:
75:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:48:2A:8A:33:F3:D7:4E:1F:55:56:3E:57:65:C7:BE:7B:C5:54:42
X509v3 Authority Key Identifier:
keyid:5C:BD:6C:D9:1A:D6:A7:28:6B:21:F6:50:9F:DD:9F:50:FE:E7:5D:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XL1s2RrWpyhrIfZQn92fUP7nXYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e0223a-31fd-4cac-8164-fba074ba1b90/1/XL1s2RrWpyhrIfZQn92fUP7nXYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:26:5e:e4:f4:60:85:a6:8c:ff:8e:ab:32:2a:b9:1b:bb:9f:
eb:bb:da:93:73:b7:5a:96:1b:d1:65:a7:ab:d3:99:24:ff:d4:
54:78:0b:c1:14:1f:56:61:c4:7d:47:52:b0:e9:cb:0f:87:30:
47:0d:1c:d7:39:ac:b9:4b:1f:ec:d6:40:85:d7:fc:db:b2:93:
9b:f1:a3:2e:90:04:29:af:85:7a:61:98:73:0e:bc:7a:8c:18:
4a:47:76:c8:58:50:05:cd:3e:fc:f5:c2:8e:9f:5e:62:07:f3:
77:56:3d:f6:16:f7:06:0d:00:d1:d6:f4:37:14:12:47:7c:f9:
89:57:7c:9b:ca:5a:23:bf:d5:a6:44:c3:40:ca:1c:5d:8e:5d:
ff:b4:03:3c:ee:9c:20:56:c0:d0:72:a8:89:ec:c5:6c:05:35:
98:1e:ed:fe:92:88:7b:2c:df:a0:e1:06:1f:4d:10:18:d0:18:
98:bd:df:ae:11:53:6c:5e:a8:96:b1:ef:6a:36:bb:b0:64:2a:
bd:73:b5:17:2f:b9:21:29:01:30:6b:31:52:2f:e1:e8:6e:ca:
23:6a:59:15:cb:c8:d5:2a:9e:64:d2:5b:2d:c0:37:b8:32:40:
df:b2:e4:42:b2:93:da:ea:16:54:e2:48:ea:a1:89:d5:71:f4:
57:c9:e4:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 00:03:50 2026 by rpki-client