Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
File: XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft (raw, json)
Hash identifier: cbcPoudbUZZ9sBrtx3Ni6LPU/if3yjCrM1acFayU9kg=
Subject key identifier: D2:95:82:04:07:22:9C:C3:14:04:22:8D:5B:99:3C:4C:96:D2:9C:67
Authority key identifier: 5D:D6:C1:38:4B:4A:4C:A5:01:DD:33:C5:F0:D8:58:0D:44:16:EB:3A
Certificate issuer: /CN=5dd6c1384b4a4ca501dd33c5f0d8580d4416eb3a
Certificate serial: 019F1A56A1F7900A4EA38347A6DBC7A4C190
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
Manifest number: 0683
Signing time: Tue 30 Jun 2026 21:01:52 +0000
Manifest this update: Tue 30 Jun 2026 21:01:52 +0000
Manifest next update: Wed 01 Jul 2026 21:01:52 +0000
Files and hashes: 1: XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl (hash: 7qBJViFxpuf165/XNgKjTPjo1DT4mi1iacP90Y1knPk=)
2: x90dPkWW8REhzconoQULUI7Rl80.roa (hash: IZPztQukbhq4U8uDrkKMf9ofAgLjzhebtlSwoKIMZXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:56:a1:f7:90:0a:4e:a3:83:47:a6:db:c7:a4:c1:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6c1384b4a4ca501dd33c5f0d8580d4416eb3a
Validity
Not Before: Jun 30 21:01:52 2026 GMT
Not After : Jul 1 21:01:52 2026 GMT
Subject: CN=d295820407229cc31404228d5b993c4c96d29c67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fd:df:d9:b0:16:2b:ea:56:4e:12:bb:74:fd:
52:12:31:4c:b0:40:e2:70:4e:bd:60:d6:62:05:d5:
8f:eb:6e:7e:64:8d:08:5b:d5:3f:79:a8:02:3d:6f:
cc:69:ae:a5:52:15:39:3b:75:99:cd:2d:1b:75:c0:
43:0d:a9:2b:f9:21:b2:96:65:2c:fd:3c:41:91:16:
15:d6:9c:5d:60:d0:2b:40:99:4b:13:a2:55:43:95:
a0:23:8d:14:cf:3d:74:dc:af:d0:a3:38:cd:cb:9e:
99:5a:83:36:62:bf:0b:ed:4c:22:21:99:a8:67:3f:
9c:c8:22:ce:9c:56:2d:0e:dd:be:ce:27:42:04:00:
c9:83:54:74:b1:ff:75:9d:65:49:83:a1:ed:8b:c7:
bd:4d:04:d6:fa:93:e8:e6:0f:4e:7c:a0:17:1c:fa:
ed:1f:ca:17:9b:32:9b:d9:38:ca:48:1b:e8:82:96:
de:39:97:d9:7b:4a:17:e2:21:b4:65:f2:a9:16:25:
aa:33:f7:c7:92:40:75:44:10:96:f6:25:0e:f9:21:
b9:b2:48:d9:65:c7:04:ea:a7:52:c0:0b:20:d4:f1:
35:8a:55:30:1f:ee:c2:ce:30:5c:17:39:0f:74:3e:
fd:be:fe:43:6e:c7:ff:b6:9d:2c:61:28:50:c6:4f:
8e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:95:82:04:07:22:9C:C3:14:04:22:8D:5B:99:3C:4C:96:D2:9C:67
X509v3 Authority Key Identifier:
keyid:5D:D6:C1:38:4B:4A:4C:A5:01:DD:33:C5:F0:D8:58:0D:44:16:EB:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:c6:32:9c:da:a0:01:20:ff:ef:d6:3c:69:f8:ef:43:e7:e8:
95:97:a4:6c:0a:ee:60:a2:ae:ef:9c:ee:d2:5b:28:35:5b:48:
4d:75:b9:e3:74:3a:25:c6:9c:42:b4:cb:52:0b:45:5a:ed:79:
17:98:d0:50:8d:f5:17:f0:5b:2c:e1:56:f6:9a:d6:c9:87:14:
87:b9:76:4b:b8:db:33:a5:89:56:e6:ac:fb:35:78:4e:5b:fc:
60:eb:2c:b7:f8:92:29:2c:1c:66:8e:66:38:fe:50:fc:76:ba:
48:bd:78:a1:e5:1e:93:04:e9:c3:91:07:28:3b:7f:c5:d5:01:
33:44:3f:81:51:46:a1:71:fa:f5:a9:a9:46:9b:e2:6f:79:4c:
48:c6:be:49:13:ee:14:47:b3:b6:58:21:ba:1a:bd:71:d9:9e:
44:1d:fa:13:6e:30:17:c6:51:da:1b:c4:44:e5:f3:43:25:e9:
eb:af:01:35:b5:75:d6:2a:44:3b:be:f4:5f:3b:e2:04:e9:3f:
0a:b4:4d:af:14:7c:07:9c:4a:f6:9a:eb:f6:40:0c:8d:c3:48:
c5:15:c7:fc:ba:1b:ab:d1:95:ae:82:75:c0:c8:f5:79:bd:ee:
5d:f7:74:10:54:fc:8b:97:50:f6:43:e4:3f:70:f7:2d:b4:35:
bf:f7:b5:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8aVqH3kApOo4NHptvHpMGQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZDZjMTM4NGI0YTRjYTUwMWRkMzNjNWYwZDg1ODBkNDQx
NmViM2EwHhcNMjYwNjMwMjEwMTUyWhcNMjYwNzAxMjEwMTUyWjAzMTEwLwYDVQQD
EyhkMjk1ODIwNDA3MjI5Y2MzMTQwNDIyOGQ1Yjk5M2M0Yzk2ZDI5YzY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/3f2bAWK+pWThK7dP1SEjFMsEDi
cE69YNZiBdWP625+ZI0IW9U/eagCPW/Maa6lUhU5O3WZzS0bdcBDDakr+SGylmUs
/TxBkRYV1pxdYNArQJlLE6JVQ5WgI40Uzz103K/QozjNy56ZWoM2Yr8L7UwiIZmo
Zz+cyCLOnFYtDt2+zidCBADJg1R0sf91nWVJg6Hti8e9TQTW+pPo5g9OfKAXHPrt
H8oXmzKb2TjKSBvogpbeOZfZe0oX4iG0ZfKpFiWqM/fHkkB1RBCW9iUO+SG5skjZ
ZccE6qdSwAsg1PE1ilUwH+7CzjBcFzkPdD79vv5Dbsf/tp0sYShQxk+OVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNKVggQHIpzDFAQijVuZPEyW0pxnMB8GA1UdIwQY
MBaAFF3WwThLSkylAd0zxfDYWA1EFus6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGRiQk9FdEtUS1VCM1RQRjhOaFlEVVFXNnpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi85MTU3YTktMDRiMC00MWJlLTljMjQt
ZDgyZDA2YTg3YmZlLzEvWGRiQk9FdEtUS1VCM1RQRjhOaFlEVVFXNnpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi85MTU3YTktMDRiMC00MWJlLTljMjQtZDgyZDA2YTg3YmZl
LzEvWGRiQk9FdEtUS1VCM1RQRjhOaFlEVVFXNnpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM8YynNqg
ASD/79Y8afjvQ+folZekbAruYKKu75zu0lsoNVtITXW543Q6JcacQrTLUgtFWu15
F5jQUI31F/BbLOFW9prWyYcUh7l2S7jbM6WJVuas+zV4Tlv8YOsst/iSKSwcZo5m
OP5Q/Ha6SL14oeUekwTpw5EHKDt/xdUBM0Q/gVFGoXH69ampRpvib3lMSMa+SRPu
FEeztlghuhq9cdmeRB36E24wF8ZR2hvEROXzQyXp668BNbV11ipEO770XzviBOk/
CrRNrxR8B5xK9prr9kAMjcNIxRXH/Lobq9GVroJ1wMj1eb3uXfd0EFT8i5dQ9kPk
P3D3LbQ1v/e1Vw==
-----END CERTIFICATE-----
Generated at Tue Jun 30 23:35:00 2026 by rpki-client