Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
File: XBEKKwrrN_DJMqlr279-82whGXw.mft (raw, json)
Hash identifier: ctnP/dyLL61K7/WGTqdqqIpGvgVmieZL8VIqlR1YLnM=
Subject key identifier: B8:BC:78:36:71:E5:4C:0D:43:8C:4E:12:10:88:34:47:65:4B:DD:9C
Authority key identifier: 5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
Certificate issuer: /CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Certificate serial: 019EB5B3276467D711A506FC28669C27EF11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
Manifest number: 14C1
Signing time: Thu 11 Jun 2026 08:01:17 +0000
Manifest this update: Thu 11 Jun 2026 08:01:17 +0000
Manifest next update: Fri 12 Jun 2026 08:01:17 +0000
Files and hashes: 1: NrZRCuerFzj4EhFGKoh_NKbZNxM.roa (hash: 5QAUpIfqv2CVCHxJDOL189fybpsclOVK/PxPIJsB8Xs=)
2: XBEKKwrrN_DJMqlr279-82whGXw.crl (hash: 6T/7f8FYNmx18O+RlarNV1qN9lHYuLQxmClF/AQ/xks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 08:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:b3:27:64:67:d7:11:a5:06:fc:28:66:9c:27:ef:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c110a2b0aeb37f0c932a96bdbbf7ef36c21197c
Validity
Not Before: Jun 11 08:01:17 2026 GMT
Not After : Jun 12 08:01:17 2026 GMT
Subject: CN=b8bc783671e54c0d438c4e1210883447654bdd9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:83:13:91:64:44:59:0a:a9:41:8d:51:eb:0e:
87:14:02:ac:34:ed:56:87:7d:7c:bf:11:d8:da:e2:
80:05:1c:ff:74:70:4d:8b:84:1c:e0:d0:1b:bd:18:
fc:3a:40:40:6e:ac:67:5a:80:0f:42:ff:26:2a:7b:
f4:e6:82:a4:c8:47:da:60:56:cb:34:76:00:04:a0:
34:25:8e:64:0a:f7:7b:12:c6:ff:b4:66:6e:a2:e7:
ac:92:bf:10:1b:da:fd:6d:92:70:0d:ae:c2:19:e1:
55:59:c4:82:9f:67:c2:22:65:91:12:69:de:49:e1:
02:86:21:fb:19:52:24:d7:fa:1e:d8:02:2a:90:fe:
97:0d:ad:8e:79:d1:4f:7f:c8:be:9e:69:10:81:95:
72:de:3e:ae:4a:c9:b2:ec:13:ba:80:6e:ef:21:0e:
dd:a2:1c:bc:cb:85:c5:53:18:fb:f1:ad:5c:5d:0f:
12:a4:54:3d:71:f0:1d:37:4f:95:d5:d6:9d:ed:3d:
99:73:40:b6:d8:73:c1:24:3e:0f:99:dd:c6:32:b6:
38:45:8b:71:05:68:c2:fd:9b:eb:26:e1:34:b1:b5:
6a:5b:98:bd:42:29:94:08:fa:2f:e0:5c:77:d6:99:
0a:13:e5:ef:29:36:59:12:fa:e9:fb:97:07:cd:93:
d5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:BC:78:36:71:E5:4C:0D:43:8C:4E:12:10:88:34:47:65:4B:DD:9C
X509v3 Authority Key Identifier:
keyid:5C:11:0A:2B:0A:EB:37:F0:C9:32:A9:6B:DB:BF:7E:F3:6C:21:19:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XBEKKwrrN_DJMqlr279-82whGXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/e4c435-e6cd-4da0-9e32-a44224fac3ff/1/XBEKKwrrN_DJMqlr279-82whGXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:8a:78:d6:6b:70:4d:49:38:d0:ba:59:fe:36:5c:28:6d:4e:
18:e6:fd:ae:a7:c4:95:d5:34:12:a6:a0:b6:6e:08:57:47:19:
49:17:58:37:d0:2f:9b:9c:e1:fb:64:d3:c1:4a:2d:50:0e:eb:
f3:83:17:52:60:8f:54:01:e5:38:5c:0a:94:dd:54:c5:30:c8:
04:a2:96:e3:1c:70:0e:ec:d9:14:2b:90:d0:01:f2:4c:39:21:
39:9c:3e:8c:a1:12:be:dc:70:f2:0c:c6:4c:e4:7a:a6:7f:78:
cf:f9:4d:a4:dd:16:f9:e0:3c:82:32:74:f7:5e:20:e9:ff:e7:
2e:62:48:af:53:48:ff:ae:65:c1:d6:f0:c1:31:11:01:75:6f:
b4:52:40:b3:ff:ac:42:bd:a1:93:17:20:99:f6:18:ab:71:f4:
02:fe:43:22:41:bf:b0:bf:ea:54:c5:17:89:29:3b:fc:54:94:
5e:60:19:fd:f6:eb:a3:44:b8:d6:c8:8e:72:bf:97:09:ee:14:
a0:de:12:4b:c8:34:17:ce:cf:7d:90:11:e1:53:11:90:fd:d4:
b2:09:3f:c8:d7:b0:91:f0:d3:4b:42:db:0f:74:54:85:64:9a:
48:9a:71:27:af:fb:0b:f2:42:c4:2f:35:6b:02:99:a6:bb:04:
e6:ad:be:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 17:42:12 2026 by rpki-client