Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
File: XNhYOyEXQQSea7GalG2DGqvxGtM.mft (raw, json)
Hash identifier: +tsmOgbpqBIknwAjYpP92i9z2MNeRSW+0vThaM2M1gc=
Subject key identifier: 60:8A:8D:46:42:2A:01:A9:8C:BC:88:60:D0:04:90:33:8D:C6:0B:FA
Authority key identifier: 5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
Certificate issuer: /CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Certificate serial: 019EC0DB6438B45996E0E1D616A8E213D421
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
Manifest number: 189C
Signing time: Sat 13 Jun 2026 12:01:03 +0000
Manifest this update: Sat 13 Jun 2026 12:01:03 +0000
Manifest next update: Sun 14 Jun 2026 12:01:03 +0000
Files and hashes: 1: S2GzX7bjyNfk8zuc_J7yDO8r8_A.roa (hash: 9cgwTQAZVGZH9VKGn5dJT7UJ2jaArnzhzVtmHDdrHjU=)
2: XNhYOyEXQQSea7GalG2DGqvxGtM.crl (hash: 6hLQmXkmic+KDhDyeTf+qBA/VD+Wew1wrjhugCxd6fU=)
3: rSchH_WpkAQtklBw4R5ArVw7Etg.roa (hash: FQrYCtK1inx5vQ38kiI4C/z5+zK3xo4th9Fjypdt9nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:64:38:b4:59:96:e0:e1:d6:16:a8:e2:13:d4:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Validity
Not Before: Jun 13 12:01:03 2026 GMT
Not After : Jun 14 12:01:03 2026 GMT
Subject: CN=608a8d46422a01a98cbc8860d00490338dc60bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:c8:5a:7a:77:ca:34:db:0e:f2:29:07:ee:63:
35:f4:a7:2d:c0:18:78:c6:e2:0d:31:c3:c6:72:08:
4c:02:6c:88:cb:dd:dc:e1:70:6a:53:e3:be:1d:33:
5f:c1:f4:5b:14:c9:e9:57:44:19:92:6c:8f:41:6a:
6e:e6:3b:54:21:f2:ea:ad:96:72:ba:7d:0a:0a:d1:
e1:21:06:6d:7b:e5:da:ce:bc:9a:6e:e8:04:17:3e:
1f:c0:1b:98:f2:5a:d0:64:3f:d1:b7:59:cc:be:ca:
28:d9:fb:fd:cc:c3:e8:dd:3d:0e:ba:22:43:6a:c5:
fb:f3:ba:66:54:65:fb:37:53:15:e8:ef:15:7e:c3:
9d:09:a4:a8:d8:8c:90:cb:b3:ae:9e:c1:0c:d9:f5:
18:6d:26:d2:bf:12:64:7f:39:36:97:ec:47:f6:ab:
e5:57:e3:e3:3a:f8:2d:91:8f:e3:a1:74:26:3c:15:
0d:a2:7e:09:f9:83:f1:40:2e:b7:ad:74:50:2d:1d:
c8:3c:84:be:3a:94:dc:69:d2:32:be:b1:f0:fa:84:
3c:4f:c9:68:d5:45:6f:18:c5:2c:e0:fd:36:e1:c6:
3c:14:ad:47:a6:17:69:80:90:f9:2d:7c:b5:2b:56:
eb:9a:22:87:24:e2:8f:02:96:68:2f:e0:4a:51:9d:
cb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:8A:8D:46:42:2A:01:A9:8C:BC:88:60:D0:04:90:33:8D:C6:0B:FA
X509v3 Authority Key Identifier:
keyid:5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:cd:8e:54:45:56:b6:02:a2:e9:42:73:6c:67:ce:39:84:d2:
bb:a0:b1:c2:03:ae:9d:29:5b:bb:ca:af:d5:7d:48:72:52:b5:
8c:f7:aa:a0:a7:82:94:ed:1d:4b:bc:56:39:7e:ae:81:13:6f:
ce:b6:30:44:f9:53:bb:7a:0b:1b:43:f7:32:db:60:8d:9d:96:
88:4c:9b:c9:ab:36:e6:82:f0:f8:85:47:39:b3:39:89:47:1f:
88:5d:0b:18:43:88:4e:48:5e:4b:ae:8e:f4:e0:95:bc:83:a6:
87:72:e4:10:d6:71:5c:57:42:54:dd:13:4d:a8:86:40:1d:0a:
54:ef:1d:74:03:f3:9d:45:c0:75:fa:cb:91:e9:7f:b7:4e:44:
a4:19:31:fd:56:a6:8a:fd:f6:2a:2c:a8:e9:fc:4c:91:f5:35:
26:9a:b6:a4:09:7e:14:f4:0a:9c:25:08:17:7d:f3:39:25:51:
79:88:70:74:96:c9:3e:b9:51:f0:62:6e:e2:4d:40:7e:f5:38:
97:8a:f1:c3:10:23:8f:4f:d1:70:05:00:12:4b:bd:2d:ef:b3:
88:03:95:b0:2e:bc:d8:5d:fe:0a:8e:f0:c7:4d:61:de:c8:0e:
c7:41:79:4b:ad:f4:21:a6:e9:f2:70:de:c7:54:72:31:40:dd:
c2:cf:bf:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:41:14 2026 by rpki-client