Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json)
Hash identifier: 5ZA3S/nl3hn5Z5m44Pi56QBFP4Oae/twVSalIFifbOE=
Subject key identifier: D5:77:4C:87:7C:8A:54:F7:06:0C:D6:37:6F:5B:CD:73:AA:7C:BB:A1
Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Certificate serial: 019EB87C48845ECC81916BB1CC5AFCE65BCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
Manifest number: 0E93
Signing time: Thu 11 Jun 2026 21:00:13 +0000
Manifest this update: Thu 11 Jun 2026 21:00:13 +0000
Manifest next update: Fri 12 Jun 2026 21:00:13 +0000
Files and hashes: 1: 6y5zOsV9mgf7F2BHXrtRk7xzs4U.roa (hash: u0j0WMKCrPC+ARtOidkhhJpiGvpkSNz5tPW2s6UUp9I=)
2: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: XcLhaYgYz19kr593u8T6eCrbvML2kZHwTQh0Mz7a4LQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:48:84:5e:cc:81:91:6b:b1:cc:5a:fc:e6:5b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Validity
Not Before: Jun 11 21:00:13 2026 GMT
Not After : Jun 12 21:00:13 2026 GMT
Subject: CN=d5774c877c8a54f7060cd6376f5bcd73aa7cbba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ec:60:b5:10:e0:9a:c7:c7:a3:92:06:01:2e:
75:4e:08:99:4d:61:9f:e5:2e:fc:d7:54:9e:d6:b4:
07:3b:37:94:1f:6e:4a:d2:cf:a5:fa:ad:8f:03:63:
ca:3f:26:38:58:4a:a5:9e:c6:7e:af:b7:86:cd:65:
f9:a5:01:27:e6:e3:45:39:7c:ef:ef:d8:85:6f:c4:
c5:17:17:9a:ad:3a:19:1a:e1:f5:42:d2:36:54:a7:
ff:28:42:6c:a7:c3:1e:49:97:bb:a5:fa:f8:07:e9:
29:26:04:43:52:05:14:29:ef:42:a0:15:3f:62:d9:
10:89:1a:67:18:6e:d8:bf:67:5c:e3:0b:a7:00:43:
6b:b6:32:ae:1d:05:01:54:c2:84:ed:50:8d:ea:45:
73:27:9c:43:c0:b7:61:ab:bc:92:fa:73:c4:d8:c0:
50:73:71:02:93:5c:d5:09:08:ff:12:ae:1e:49:30:
f2:f8:ee:3b:5c:a6:17:98:56:16:46:0e:bb:97:77:
cd:4c:33:6e:aa:f3:1a:79:8b:ac:00:ed:5f:4b:6a:
af:41:5b:bd:ce:3c:86:18:29:f9:69:d2:51:4e:e7:
31:21:04:80:6b:e6:28:a2:89:e3:8c:88:88:dc:10:
fd:a1:83:d5:24:32:45:59:31:98:6b:25:96:73:c0:
8b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:77:4C:87:7C:8A:54:F7:06:0C:D6:37:6F:5B:CD:73:AA:7C:BB:A1
X509v3 Authority Key Identifier:
keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:a4:74:2b:7d:4c:63:5d:a5:b6:06:5d:e5:fb:13:51:1b:35:
21:57:d0:d0:d7:6d:56:79:30:56:dc:9e:24:0a:e7:8d:ac:8b:
2f:9a:3d:8b:c6:6f:6f:54:79:d9:f1:37:0c:0a:3d:49:e6:52:
15:c6:a6:87:41:c1:28:68:49:39:f3:84:85:09:76:d0:d4:df:
39:6e:95:b0:db:a3:9d:f3:d0:16:9d:1d:9c:39:d1:cd:88:1f:
e8:0a:77:25:ae:40:56:6f:c4:c7:52:2c:8c:49:b7:67:f8:89:
56:1c:3c:8b:ba:f0:62:4a:c8:06:09:c9:57:1d:6c:13:f1:02:
2f:1c:84:e5:b7:9e:3d:86:42:23:34:7c:dc:d5:c9:8b:fe:a8:
0d:de:c5:65:28:0d:40:a4:e3:bd:14:7a:3f:9c:37:82:ad:73:
70:3b:d7:3e:29:d3:47:04:4d:5f:50:07:f0:f5:24:db:45:68:
56:8e:bd:0e:e1:1e:12:b5:9e:14:73:53:87:89:c4:9c:14:15:
99:32:3f:4e:1a:be:c2:ef:80:42:fd:81:b0:e1:96:22:40:39:
f9:cf:06:c2:e0:36:56:5d:a1:43:1a:63:25:8a:ec:60:6b:38:
bb:96:d1:f1:d8:0a:f1:54:ca:33:9b:e3:1f:f5:91:bf:50:80:
ae:9e:0c:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 06:12:36 2026 by rpki-client