Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
File: XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft (raw, json)
Hash identifier: phVGnq9oByIYUL87FwCdRm0YoqHWbhlsfdyHVxAexiY=
Subject key identifier: 94:E5:42:16:54:F3:4B:DB:FA:0C:70:1B:97:4A:BF:50:3B:68:79:E1
Authority key identifier: 5D:D6:C1:38:4B:4A:4C:A5:01:DD:33:C5:F0:D8:58:0D:44:16:EB:3A
Certificate issuer: /CN=5dd6c1384b4a4ca501dd33c5f0d8580d4416eb3a
Certificate serial: 019E30A9062A1F440DB72708378294C28FDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
Manifest number: 060A
Signing time: Sat 16 May 2026 12:00:43 +0000
Manifest this update: Sat 16 May 2026 12:00:43 +0000
Manifest next update: Sun 17 May 2026 12:00:43 +0000
Files and hashes: 1: XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl (hash: NEcDPNO95bjJQg0xm8V0dnn6X9Pqf67QHOxH982cCzg=)
2: x90dPkWW8REhzconoQULUI7Rl80.roa (hash: IZPztQukbhq4U8uDrkKMf9ofAgLjzhebtlSwoKIMZXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:06:2a:1f:44:0d:b7:27:08:37:82:94:c2:8f:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6c1384b4a4ca501dd33c5f0d8580d4416eb3a
Validity
Not Before: May 16 12:00:43 2026 GMT
Not After : May 17 12:00:43 2026 GMT
Subject: CN=94e5421654f34bdbfa0c701b974abf503b6879e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1d:81:e4:1a:e8:a9:fe:24:3f:d5:1a:24:02:
77:6e:5f:27:0b:77:77:39:03:53:0d:cd:8c:26:ee:
33:f3:5f:d4:b4:f4:a0:74:9b:e8:1b:7b:d7:90:ee:
d9:f1:21:44:ae:e1:d5:5d:ad:e2:77:68:1b:84:70:
7f:b6:99:69:d4:e0:4f:4f:18:25:6f:4e:3f:f1:5e:
ec:72:99:bf:50:72:61:14:ea:08:9b:3c:d8:48:fe:
8d:d1:ed:22:7f:75:80:d1:59:e6:cf:3e:89:92:56:
d6:68:fb:34:74:34:43:3d:2c:51:23:e4:25:d8:8e:
9d:88:d5:35:73:7e:eb:79:2b:5e:a1:7e:73:91:4c:
b3:a0:5b:06:08:d0:e9:6a:63:95:98:19:bf:fd:f4:
9f:05:a4:3e:8c:8f:ca:bd:14:eb:9c:40:a3:f8:9e:
08:48:a0:07:1f:7d:c3:2b:a4:c5:b0:70:3c:b4:51:
89:b1:a6:06:bf:2b:12:ec:33:10:ca:bf:2d:ba:ec:
b6:82:90:1b:a0:70:50:7e:0b:73:89:43:de:02:88:
92:b5:a2:6a:a7:81:5e:9c:4c:7a:1c:2f:08:9b:7e:
7c:32:94:4d:aa:9a:a2:de:8e:8c:e4:c2:c4:df:41:
f4:6b:45:73:d5:33:21:a6:21:81:de:4b:85:d5:39:
61:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:E5:42:16:54:F3:4B:DB:FA:0C:70:1B:97:4A:BF:50:3B:68:79:E1
X509v3 Authority Key Identifier:
keyid:5D:D6:C1:38:4B:4A:4C:A5:01:DD:33:C5:F0:D8:58:0D:44:16:EB:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XdbBOEtKTKUB3TPF8NhYDUQW6zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/9157a9-04b0-41be-9c24-d82d06a87bfe/1/XdbBOEtKTKUB3TPF8NhYDUQW6zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:d8:fd:c1:f7:71:cd:7c:2d:2b:c7:3f:b1:ad:54:36:38:7c:
38:19:46:fc:87:5e:99:a8:aa:08:d6:60:45:2c:a1:e8:9f:18:
24:cf:22:b1:11:6f:44:c7:ac:90:01:c8:59:5b:1a:c7:31:23:
0c:66:9a:33:89:41:ae:5a:a0:04:c9:97:e3:d0:3f:61:35:94:
53:06:9e:cc:23:3f:47:04:ff:61:67:01:4f:15:77:8a:6f:4b:
06:ce:38:3e:d8:6a:19:1f:0c:10:44:d0:67:0f:c4:5b:1b:db:
e0:35:72:47:a6:7b:19:fd:ae:4b:32:99:28:a5:b3:e2:74:1f:
9b:1d:02:31:a6:13:8c:52:d1:39:5a:79:8a:cc:e6:6c:48:d4:
af:28:80:47:b6:97:be:ef:cb:df:7a:d0:90:f0:c5:09:02:cd:
4b:38:02:d2:80:d3:f2:c6:36:28:af:f9:e8:e5:49:cc:4d:ee:
da:79:61:e5:a1:f7:6b:d2:ae:4b:7c:fe:21:90:85:fa:e3:9c:
d1:d5:c5:ba:73:fa:a9:3d:2a:91:49:55:20:2d:dd:73:03:56:
fb:af:ad:d5:b1:9e:6c:92:f1:28:02:ec:e2:37:1b:21:b0:46:
8a:40:76:b0:65:b8:81:a8:da:9d:cd:8a:ae:15:af:ba:c0:76:
bf:a2:d5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:19:44 2026 by rpki-client