Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
File: XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft (raw, json)
Hash identifier: eW9mzo3ZoXY0mIJqpEG+mCQED2Bbxa8SAbZuPBYC/Jc=
Subject key identifier: EF:C5:18:95:F9:B5:6A:9A:AC:C2:0F:24:B8:C4:D0:4D:F7:AB:F4:9B
Authority key identifier: 5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
Certificate issuer: /CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Certificate serial: 019F100945379DC4D319AA7579D7A789A471
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
Manifest number: 0561
Signing time: Sun 28 Jun 2026 21:01:10 +0000
Manifest this update: Sun 28 Jun 2026 21:01:10 +0000
Manifest next update: Mon 29 Jun 2026 21:01:10 +0000
Files and hashes: 1: XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl (hash: PRyMBi4ghI1x0fvZBRMSYMCAr7gzqISjOB6I0Jiy6pY=)
2: ua_e8PovLDNf56za3RBEa7cuuaQ.roa (hash: AeMBv+klAL3WpkSagPgkjuVi+j0J2ixa7AC/uv/cJ9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Jun 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:10:09:45:37:9d:c4:d3:19:aa:75:79:d7:a7:89:a4:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5df9e856f0495c8490d5124e8cfbaf08d70dfb17
Validity
Not Before: Jun 28 21:01:10 2026 GMT
Not After : Jun 29 21:01:10 2026 GMT
Subject: CN=efc51895f9b56a9aacc20f24b8c4d04df7abf49b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7a:c8:83:65:c1:af:7c:78:6f:0d:b6:1d:8b:
90:28:2d:df:28:0c:0c:4d:f2:75:fe:ca:29:f7:f3:
16:cc:47:5e:8d:c9:14:48:59:bb:eb:0f:cd:bd:7e:
07:41:a1:2e:b1:37:15:6c:0a:88:ed:9c:a7:e8:22:
ff:d7:0d:e1:2c:f7:e6:d6:3e:ee:25:e8:74:8c:6b:
93:77:4e:51:85:0c:57:36:44:ce:9e:b6:0b:ed:c0:
83:2c:b7:32:d3:a0:bf:9b:ca:31:ff:c2:05:47:9d:
3c:13:27:62:93:56:41:27:c3:02:b7:e1:76:27:da:
81:a3:c5:17:56:82:06:2f:0c:91:d3:cd:f5:e8:fd:
04:83:d8:40:6b:bc:1f:f1:5a:27:85:54:ae:2c:bc:
20:87:35:70:c4:0c:87:37:a4:71:06:d5:a5:ca:c6:
55:9c:f9:c3:91:f7:d5:5a:83:d5:49:b3:ef:11:95:
8d:49:b4:e8:cd:48:f5:04:2d:cb:8e:43:98:78:49:
e8:b2:ac:da:e1:a3:0d:9c:0d:dc:9e:e0:4b:d6:48:
27:3b:24:35:c8:36:62:0f:dd:97:ea:3f:41:7b:bf:
92:14:34:f2:37:4a:7b:3e:4d:f1:2d:74:b1:eb:fc:
ec:26:f8:96:56:3c:71:c9:de:fc:ff:08:44:f4:66:
14:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C5:18:95:F9:B5:6A:9A:AC:C2:0F:24:B8:C4:D0:4D:F7:AB:F4:9B
X509v3 Authority Key Identifier:
keyid:5D:F9:E8:56:F0:49:5C:84:90:D5:12:4E:8C:FB:AF:08:D7:0D:FB:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfnoVvBJXISQ1RJOjPuvCNcN-xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/13dc38-2e75-4b07-bef0-e1ea453c5257/1/XfnoVvBJXISQ1RJOjPuvCNcN-xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:98:ab:7d:56:fe:01:ca:99:02:b4:ec:7a:4c:80:15:55:d7:
c1:46:31:16:62:09:ea:14:3c:d0:21:ca:fb:2f:b0:1e:ea:6e:
fc:eb:9d:46:38:5f:ab:43:1c:95:ec:a0:82:b0:c8:c8:fb:2b:
a4:46:28:90:14:2c:35:d9:4e:24:06:d0:d6:b0:b8:7f:2e:1b:
1a:3f:a6:73:22:b0:48:99:65:34:ed:9a:39:96:96:1c:c4:4c:
88:07:bd:c8:5e:f4:e3:ab:cd:17:52:29:ea:79:68:50:6d:e7:
52:43:ba:f4:38:94:72:1e:1b:51:8a:1f:06:e2:a6:87:6a:4d:
f9:3e:52:15:9f:9d:e5:97:46:27:f4:8f:eb:3d:e1:5f:82:3a:
ff:22:46:98:16:79:00:44:2d:1d:74:94:b7:33:a3:76:b4:7a:
57:99:3b:05:42:5a:ce:2f:fd:47:95:e2:4a:0c:bf:40:24:89:
2a:02:ea:e8:be:b4:d1:c5:63:c7:6e:d4:24:a1:ba:64:d2:1d:
c9:a9:e0:ff:f3:42:1d:90:7d:d9:52:d0:ee:07:d0:86:ea:d1:
25:19:9a:52:12:b9:d6:79:8e:05:65:3a:ce:74:0d:30:a5:f6:
24:4a:25:94:f7:2b:35:e0:db:f8:81:4e:4c:cf:7c:52:08:a6:
ce:78:f9:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 28 23:13:53 2026 by rpki-client