Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
File: _XjxP_qS8HTr5VfSotKa0Noz5dg.mft (raw, json)
Hash identifier: 6xoa4tsSv2fSE4pDH/5/RdP6v9r7VxVGJY2wmJ53PdA=
Subject key identifier: BD:0A:17:6A:72:D6:C9:FA:53:72:65:A9:0E:3F:70:5C:B5:5B:98:F4
Authority key identifier: FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
Certificate issuer: /CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Certificate serial: 019EB6C59695978F78484A20695F4678B460
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
Manifest number: 0EAE
Signing time: Thu 11 Jun 2026 13:01:02 +0000
Manifest this update: Thu 11 Jun 2026 13:01:02 +0000
Manifest next update: Fri 12 Jun 2026 13:01:02 +0000
Files and hashes: 1: H7yvjO1PteMvFud2cVf980xvhOM.roa (hash: RhQsj0SDsU/JKqzjG9Bf/mkgnMQmL8vD/s9sreGOu30=)
2: _XjxP_qS8HTr5VfSotKa0Noz5dg.crl (hash: JycbHBOzwE/NQcpd1QmWjcAq/5IgBUSoylrmVK2mlZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:c5:96:95:97:8f:78:48:4a:20:69:5f:46:78:b4:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd78f13ffa92f074ebe557d2a2d29ad0da33e5d8
Validity
Not Before: Jun 11 13:01:02 2026 GMT
Not After : Jun 12 13:01:02 2026 GMT
Subject: CN=bd0a176a72d6c9fa537265a90e3f705cb55b98f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d7:38:20:b3:8a:46:25:2f:c1:5d:77:26:39:
aa:2f:15:96:48:48:72:95:45:91:c7:7a:34:0e:30:
ef:0c:4d:be:ff:9f:12:e1:6f:03:dd:4b:ed:29:e1:
f6:3c:e0:fd:62:8e:46:43:71:f7:d3:40:a9:85:be:
79:21:0d:01:15:7c:40:bc:69:17:b5:48:7c:89:c5:
c7:fc:0e:e2:a7:53:a5:9d:ae:dd:29:95:1e:0d:f8:
d5:d9:e4:c3:02:0a:9a:81:f0:2b:82:19:2f:a7:84:
32:e0:d6:57:cc:60:48:6b:d9:a0:dc:f2:7a:a9:71:
10:4a:77:b4:4b:4d:75:2d:78:d2:23:ef:f4:71:3c:
f1:e3:88:74:89:b8:99:4b:c7:19:d0:ca:32:7c:c1:
cc:be:db:18:fa:67:2b:0b:6d:30:fe:07:7c:60:49:
60:f8:69:f1:2b:f7:5a:c0:de:13:57:b7:db:f4:7d:
f6:ca:b2:6a:f4:ba:25:ae:cd:5c:30:89:a8:6b:05:
56:2c:60:d2:20:2b:80:fe:f1:3e:0e:89:d2:24:ba:
59:f1:c3:d1:f9:40:93:af:66:7a:a9:74:62:ff:c7:
9d:e7:30:21:a6:64:cf:38:d4:64:28:f3:1d:28:6c:
e4:65:d9:4a:46:eb:52:71:8b:e0:f2:e1:1e:a0:32:
a7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0A:17:6A:72:D6:C9:FA:53:72:65:A9:0E:3F:70:5C:B5:5B:98:F4
X509v3 Authority Key Identifier:
keyid:FD:78:F1:3F:FA:92:F0:74:EB:E5:57:D2:A2:D2:9A:D0:DA:33:E5:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XjxP_qS8HTr5VfSotKa0Noz5dg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/e41c34-0252-4718-9f3d-fdf0118cc016/1/_XjxP_qS8HTr5VfSotKa0Noz5dg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:86:3e:1e:1a:30:dc:4e:74:e6:27:ea:6d:7e:c3:8b:3d:cf:
7f:f1:56:d1:54:96:50:f6:a6:f0:39:54:fa:1f:12:3b:28:59:
0d:28:a7:25:e2:9c:b3:82:6b:fa:8a:ab:7d:4c:b5:66:ee:eb:
96:bd:56:20:7b:e4:95:28:5e:e2:73:cf:54:96:17:44:64:d4:
73:91:9c:11:a2:3a:8a:4c:d7:4a:7e:3f:88:88:19:41:3f:1f:
11:ea:4d:6d:05:b3:90:3a:9f:0a:ef:30:6a:df:af:51:3e:a2:
8f:db:61:8a:f2:0c:5c:06:46:22:35:69:14:21:dc:0f:1f:05:
2d:1f:15:66:2e:c4:0d:ce:71:1b:a3:c8:d8:ef:f7:fd:72:d8:
ba:db:3b:06:f9:fd:4e:b5:56:3a:29:25:a3:c4:df:e4:ac:fc:
42:8e:73:8e:73:d6:db:e9:1e:ba:c9:af:d8:2a:63:fd:11:db:
28:fd:6a:7d:04:d7:d9:86:d5:ca:ab:d4:77:f0:69:33:71:8c:
b1:bf:24:c6:a9:86:9c:bc:87:f8:77:31:a8:1a:67:bf:78:65:
05:9e:64:71:ea:e8:57:82:4b:8a:8b:42:3d:38:cf:ae:d9:93:
a8:1b:24:f4:87:1c:c2:c2:8e:57:91:90:0b:3c:95:a3:c9:be:
91:4a:b5:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 20:51:09 2026 by rpki-client