Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
File: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft (raw, json)
Hash identifier: dsT2AXUPd+Vhf52HNAhps0cas0Xnl4rMi81Q9EV/OC0=
Subject key identifier: 10:79:94:4A:FB:01:53:C4:43:2A:3C:B7:04:99:B2:3A:5B:1F:9D:80
Authority key identifier: C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
Certificate issuer: /CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Certificate serial: 019EEDB490A20E5C525F206A8B11F85FB00E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
Manifest number: 17C7
Signing time: Mon 22 Jun 2026 05:01:34 +0000
Manifest this update: Mon 22 Jun 2026 05:01:34 +0000
Manifest next update: Tue 23 Jun 2026 05:01:34 +0000
Files and hashes: 1: RA_P8M2CbE3vpnTaUf4TR1pQq4c.roa (hash: sqZi/SBA/dg8k8Qf9vK6EYY7YFO+mp6oMfC87nRDLEY=)
2: xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl (hash: ptQAKbgmvglATOIzhHDsw9O783A3Sn+IVFVo7KynnuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 05:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ed:b4:90:a2:0e:5c:52:5f:20:6a:8b:11:f8:5f:b0:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c719cad9922115bcfa7452ba0a6e43a6af4e4c24
Validity
Not Before: Jun 22 05:01:34 2026 GMT
Not After : Jun 23 05:01:34 2026 GMT
Subject: CN=1079944afb0153c4432a3cb70499b23a5b1f9d80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5a:97:0e:a8:c8:63:4b:7b:e6:da:f1:b0:fa:
20:04:66:76:d3:04:8e:df:bc:5c:64:ec:29:fe:98:
21:63:20:b4:f6:e8:1f:5f:e9:aa:96:80:10:8a:37:
8e:f0:9a:96:3c:0e:35:31:5e:0b:37:41:66:33:9f:
53:4d:f5:67:49:3b:16:a0:04:78:8c:2a:42:89:d5:
e6:e1:bd:88:f7:d0:20:1e:bb:b6:67:ac:fc:e7:bf:
9a:d9:80:f4:41:a6:a0:83:11:c3:30:e2:a5:b6:01:
58:c0:ea:f9:97:3e:85:a8:69:d3:8c:49:cc:c3:d2:
f3:87:1a:aa:28:05:06:30:ca:91:2c:36:45:99:b6:
79:18:13:44:9e:10:9f:aa:b4:bc:47:f9:86:bb:e6:
35:5c:86:e9:24:c1:16:6f:c7:d5:ea:d6:ff:4b:54:
bf:54:3e:be:f9:35:59:7b:31:27:de:92:88:f2:44:
69:45:cb:3b:57:1b:d8:8f:cf:0b:89:ed:26:59:df:
10:1a:a2:a1:6f:87:16:10:42:d4:d4:ce:cb:eb:19:
d7:39:9c:71:f6:f6:37:ba:2a:b3:2f:ac:69:f9:b0:
a8:5e:fc:ef:3c:c9:db:bc:c8:9d:28:f8:e4:b9:72:
a1:00:c7:f6:3b:8e:83:d6:36:fc:30:32:09:82:f4:
1f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:79:94:4A:FB:01:53:C4:43:2A:3C:B7:04:99:B2:3A:5B:1F:9D:80
X509v3 Authority Key Identifier:
keyid:C7:19:CA:D9:92:21:15:BC:FA:74:52:BA:0A:6E:43:A6:AF:4E:4C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/149332-6969-4c4b-b591-7c2c08b5ee49/1/xxnK2ZIhFbz6dFK6Cm5Dpq9OTCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:22:e8:c2:a4:fb:35:12:35:c0:37:77:0e:d3:2e:11:4c:c1:
02:41:79:75:bf:0e:ec:7e:88:9e:71:3b:6d:29:6a:ef:cf:82:
bf:25:e7:13:69:47:a4:e4:a0:eb:07:37:1e:40:46:cd:02:1f:
18:1c:a3:f9:e0:59:73:7a:03:f3:12:82:7c:88:0a:96:2b:c7:
18:76:b0:73:33:d8:09:2e:e9:0d:c7:6d:fb:e0:5c:aa:38:03:
2b:49:4e:c0:6d:50:cf:9d:af:9c:9f:e6:bc:ef:f8:b7:ef:49:
ae:08:62:44:31:32:bc:0c:20:51:8b:b8:f0:3a:74:4d:02:ef:
81:2a:2a:31:f0:1d:01:6b:73:4d:2d:29:d4:1c:02:58:26:ef:
b7:34:00:ac:35:21:d8:6c:96:75:10:66:0f:2a:0c:d6:fc:8a:
01:5b:68:5b:ab:88:25:5e:45:1c:d6:e7:e2:e8:22:e4:bf:10:
91:56:a4:18:34:43:a5:69:2d:60:52:e2:6b:5c:a7:02:e8:87:
22:c8:3f:1e:66:58:9e:86:a6:e9:56:05:42:20:27:c4:6f:97:
8d:e5:2e:a8:b1:50:dd:3e:88:90:84:5e:f6:04:1b:dc:fa:a9:
f6:89:cc:d2:c4:96:23:9e:72:3f:a1:94:e8:a5:c1:6c:66:e8:
82:3f:d2:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7ttJCiDlxSXyBqixH4X7AOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3MTljYWQ5OTIyMTE1YmNmYTc0NTJiYTBhNmU0M2E2YWY0
ZTRjMjQwHhcNMjYwNjIyMDUwMTM0WhcNMjYwNjIzMDUwMTM0WjAzMTEwLwYDVQQD
EygxMDc5OTQ0YWZiMDE1M2M0NDMyYTNjYjcwNDk5YjIzYTViMWY5ZDgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzFqXDqjIY0t75trxsPogBGZ20wSO
37xcZOwp/pghYyC09ugfX+mqloAQijeO8JqWPA41MV4LN0FmM59TTfVnSTsWoAR4
jCpCidXm4b2I99AgHru2Z6z857+a2YD0QaaggxHDMOKltgFYwOr5lz6FqGnTjEnM
w9LzhxqqKAUGMMqRLDZFmbZ5GBNEnhCfqrS8R/mGu+Y1XIbpJMEWb8fV6tb/S1S/
VD6++TVZezEn3pKI8kRpRcs7VxvYj88Lie0mWd8QGqKhb4cWEELU1M7L6xnXOZxx
9vY3uiqzL6xp+bCoXvzvPMnbvMidKPjkuXKhAMf2O46D1jb8MDIJgvQfowIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBB5lEr7AVPEQyo8twSZsjpbH52AMB8GA1UdIwQY
MBaAFMcZytmSIRW8+nRSugpuQ6avTkwkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHhuSzJaSWhGYno2ZEZLNkNtNURwcTlPVENRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8xNDkzMzItNjk2OS00YzRiLWI1OTEt
N2MyYzA4YjVlZTQ5LzEveHhuSzJaSWhGYno2ZEZLNkNtNURwcTlPVENRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8xNDkzMzItNjk2OS00YzRiLWI1OTEtN2MyYzA4YjVlZTQ5
LzEveHhuSzJaSWhGYno2ZEZLNkNtNURwcTlPVENRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlyLowqT7
NRI1wDd3DtMuEUzBAkF5db8O7H6InnE7bSlq78+CvyXnE2lHpOSg6wc3HkBGzQIf
GByj+eBZc3oD8xKCfIgKlivHGHawczPYCS7pDcdt++BcqjgDK0lOwG1Qz52vnJ/m
vO/4t+9JrghiRDEyvAwgUYu48Dp0TQLvgSoqMfAdAWtzTS0p1BwCWCbvtzQArDUh
2GyWdRBmDyoM1vyKAVtoW6uIJV5FHNbn4ugi5L8QkVakGDRDpWktYFLia1ynAuiH
Isg/HmZYnoam6VYFQiAnxG+XjeUuqLFQ3T6IkIRe9gQb3Pqp9onM0sSWI55yP6GU
6KXBbGbogj/Smw==
-----END CERTIFICATE-----
Generated at Mon Jun 22 15:25:23 2026 by rpki-client