Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
File: XNhYOyEXQQSea7GalG2DGqvxGtM.mft (raw, json)
Hash identifier: 26ws0HpNmy3ltD3hlx7MVY0Mt58aNium9dAjgqP3v6o=
Subject key identifier: CF:7E:74:E7:04:AC:02:95:45:53:E8:9B:C3:02:8B:CD:42:20:CC:C8
Authority key identifier: 5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
Certificate issuer: /CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Certificate serial: 019E909319B8F2B0C470F875AC45F5B69085
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
Manifest number: 1883
Signing time: Thu 04 Jun 2026 03:00:19 +0000
Manifest this update: Thu 04 Jun 2026 03:00:19 +0000
Manifest next update: Fri 05 Jun 2026 03:00:19 +0000
Files and hashes: 1: S2GzX7bjyNfk8zuc_J7yDO8r8_A.roa (hash: 9cgwTQAZVGZH9VKGn5dJT7UJ2jaArnzhzVtmHDdrHjU=)
2: XNhYOyEXQQSea7GalG2DGqvxGtM.crl (hash: I+gexJmXNnLepsOmh+ZdwX8NYSl4lwlzHJlWmcfCTZA=)
3: rSchH_WpkAQtklBw4R5ArVw7Etg.roa (hash: FQrYCtK1inx5vQ38kiI4C/z5+zK3xo4th9Fjypdt9nc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 03:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:90:93:19:b8:f2:b0:c4:70:f8:75:ac:45:f5:b6:90:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cd8583b211741049e6bb19a946d831aabf11ad3
Validity
Not Before: Jun 4 03:00:19 2026 GMT
Not After : Jun 5 03:00:19 2026 GMT
Subject: CN=cf7e74e704ac02954553e89bc3028bcd4220ccc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ce:f6:c4:37:6c:cf:e8:7b:22:5e:4b:f6:ba:
4e:88:30:a3:f3:d3:00:8b:4f:1a:21:ee:9e:57:aa:
82:20:d3:6f:d9:87:dc:50:1d:7f:66:61:49:a8:cc:
e9:56:7d:23:97:10:59:f6:54:1b:69:16:57:b9:09:
65:48:65:1b:55:00:f8:5d:f1:f7:d3:38:2a:10:e1:
72:af:0d:0d:41:93:10:ba:39:c5:a3:b9:82:7e:e8:
d1:40:95:59:b0:a7:0d:4e:fc:d8:44:18:43:ea:52:
f7:6d:92:79:c6:8c:58:4a:c6:f9:15:3a:e2:25:54:
08:6d:34:77:32:42:33:55:b2:e1:ec:bd:f0:e8:e1:
2b:4e:b9:27:0e:3d:5e:be:88:4e:d0:61:78:ec:45:
ab:f7:3c:55:a7:8f:c7:12:f0:36:b4:2e:54:bf:ba:
44:8a:a7:78:1e:36:d4:4c:4d:9c:99:66:21:c9:a0:
be:41:71:28:4b:bd:fb:ba:1a:c7:dd:27:29:26:62:
e1:22:98:a0:0c:8c:79:92:5c:d4:19:6a:2a:9c:a7:
dc:02:37:4d:32:d1:ce:fe:a1:4f:16:83:38:f5:17:
ff:24:bd:cb:a3:d0:ca:2a:7e:46:2d:0c:2d:32:ca:
a5:95:00:5a:21:70:6d:89:3f:47:b0:3a:cb:28:15:
08:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7E:74:E7:04:AC:02:95:45:53:E8:9B:C3:02:8B:CD:42:20:CC:C8
X509v3 Authority Key Identifier:
keyid:5C:D8:58:3B:21:17:41:04:9E:6B:B1:9A:94:6D:83:1A:AB:F1:1A:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XNhYOyEXQQSea7GalG2DGqvxGtM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/7298ab-7b9c-47ad-9085-50974bcdc248/1/XNhYOyEXQQSea7GalG2DGqvxGtM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:fc:6c:24:3a:6f:29:9e:29:e3:71:44:d0:a5:6d:da:f2:93:
f1:2a:ae:6c:5f:c6:68:47:db:31:70:1e:0e:d1:7c:18:1c:d5:
ff:bd:17:35:a6:30:f1:3c:a6:95:47:74:a4:64:1b:96:7e:95:
94:6e:0b:a7:10:68:fd:13:8c:7d:9f:a4:fd:01:64:9b:32:ce:
03:3c:89:31:f1:3e:9f:95:9f:7d:5a:1b:09:d8:34:cc:82:41:
dd:72:5e:a6:07:8d:df:15:68:94:9e:c2:74:37:02:2d:9d:20:
1b:e0:f4:ec:27:c3:73:e7:9d:20:b3:e0:5d:e9:5a:2d:b8:21:
d1:88:c9:40:1c:09:9a:ad:bf:36:ec:a4:7f:43:65:b4:9f:ba:
24:03:70:e5:e1:03:ed:3f:45:60:e9:35:8b:31:36:b0:1e:5b:
d2:dd:c1:90:17:24:de:b5:47:51:b3:f8:69:53:79:ae:72:68:
39:f8:77:6e:4a:41:bc:d6:1e:b5:e9:56:c7:f0:92:dd:35:0d:
f8:e4:01:fb:65:af:6e:9d:d4:a9:8a:9c:0b:7b:5b:ed:09:49:
03:3a:05:04:6c:62:c0:91:81:e4:f3:e5:92:a0:dd:17:d5:8a:
31:07:a9:1e:07:a6:01:76:4d:00:e5:f7:a1:ae:9d:33:2a:b4:
f0:da:90:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6Qkxm48rDEcPh1rEX1tpCFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZDg1ODNiMjExNzQxMDQ5ZTZiYjE5YTk0NmQ4MzFhYWJm
MTFhZDMwHhcNMjYwNjA0MDMwMDE5WhcNMjYwNjA1MDMwMDE5WjAzMTEwLwYDVQQD
EyhjZjdlNzRlNzA0YWMwMjk1NDU1M2U4OWJjMzAyOGJjZDQyMjBjY2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAus72xDdsz+h7Il5L9rpOiDCj89MA
i08aIe6eV6qCINNv2YfcUB1/ZmFJqMzpVn0jlxBZ9lQbaRZXuQllSGUbVQD4XfH3
0zgqEOFyrw0NQZMQujnFo7mCfujRQJVZsKcNTvzYRBhD6lL3bZJ5xoxYSsb5FTri
JVQIbTR3MkIzVbLh7L3w6OErTrknDj1evohO0GF47EWr9zxVp4/HEvA2tC5Uv7pE
iqd4HjbUTE2cmWYhyaC+QXEoS737uhrH3ScpJmLhIpigDIx5klzUGWoqnKfcAjdN
MtHO/qFPFoM49Rf/JL3Lo9DKKn5GLQwtMsqllQBaIXBtiT9HsDrLKBUITwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM9+dOcErAKVRVPom8MCi81CIMzIMB8GA1UdIwQY
MBaAFFzYWDshF0EEnmuxmpRtgxqr8RrTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE5oWU95RVhRUVNlYTdHYWxHMkRHcXZ4R3RNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC83Mjk4YWItN2I5Yy00N2FkLTkwODUt
NTA5NzRiY2RjMjQ4LzEvWE5oWU95RVhRUVNlYTdHYWxHMkRHcXZ4R3RNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC83Mjk4YWItN2I5Yy00N2FkLTkwODUtNTA5NzRiY2RjMjQ4
LzEvWE5oWU95RVhRUVNlYTdHYWxHMkRHcXZ4R3RNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALPxsJDpv
KZ4p43FE0KVt2vKT8SqubF/GaEfbMXAeDtF8GBzV/70XNaYw8TymlUd0pGQbln6V
lG4LpxBo/ROMfZ+k/QFkmzLOAzyJMfE+n5WffVobCdg0zIJB3XJepgeN3xVolJ7C
dDcCLZ0gG+D07CfDc+edILPgXelaLbgh0YjJQBwJmq2/Nuykf0NltJ+6JANw5eED
7T9FYOk1izE2sB5b0t3BkBck3rVHUbP4aVN5rnJoOfh3bkpBvNYetelWx/CS3TUN
+OQB+2Wvbp3UqYqcC3tb7QlJAzoFBGxiwJGB5PPlkqDdF9WKMQepHgemAXZNAOX3
oa6dMyq08NqQnw==
-----END CERTIFICATE-----
Generated at Thu Jun 4 13:24:06 2026 by rpki-client