Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
File: xTG2PRGmzC0c5p4TEch6waanBzM.mft (raw, json)
Hash identifier: IZ6kgxBpBK0pv+S4VR5prtd/3JTR4Qlc49qx7imyrAw=
Subject key identifier: 15:AF:04:F3:AE:A4:11:E3:C9:C7:ED:4E:2A:2A:7A:6A:EE:79:73:C7
Authority key identifier: C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
Certificate issuer: /CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Certificate serial: 019E7C9F4D8CBA4438AC71753402F74EB1FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
Manifest number: 11BC
Signing time: Sun 31 May 2026 06:01:15 +0000
Manifest this update: Sun 31 May 2026 06:01:15 +0000
Manifest next update: Mon 01 Jun 2026 06:01:15 +0000
Files and hashes: 1: WGUKVj-vf2RKGeE0tMRbU2IE_NQ.roa (hash: tHeLPtV3EhtYhN1tkXzaqoA9I1M0f8QKiOJp3r6uMxQ=)
2: xTG2PRGmzC0c5p4TEch6waanBzM.crl (hash: HWYibJ6sS+RXdLRocc79Ihls2mWT3RsS6UVwwvxAoiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 01 Jun 2026 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:7c:9f:4d:8c:ba:44:38:ac:71:75:34:02:f7:4e:b1:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Validity
Not Before: May 31 06:01:15 2026 GMT
Not After : Jun 1 06:01:15 2026 GMT
Subject: CN=15af04f3aea411e3c9c7ed4e2a2a7a6aee7973c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e7:b1:d0:39:dd:70:8a:2f:81:6e:71:b4:83:
c2:a2:77:c5:57:fc:57:dd:2a:ef:85:73:f3:b1:36:
de:44:35:f9:2e:1e:7f:ea:b5:0b:a7:49:3b:a3:e1:
5e:dc:77:84:bf:56:38:7d:91:a7:c8:89:31:69:23:
18:fa:9c:17:ed:be:14:3d:95:40:73:17:1e:4d:50:
43:31:52:30:e1:a0:b2:72:12:12:ba:4e:f4:6e:6c:
6b:94:b7:2f:95:7b:5c:a0:1c:08:62:9b:69:05:f7:
62:0f:dc:41:20:b6:f2:37:b6:33:4b:44:58:56:fb:
d8:35:4a:11:c5:b2:85:03:37:7c:6a:3b:1f:72:de:
87:51:7e:b1:a7:a1:1c:c3:38:6a:c0:f6:b8:fb:c1:
db:df:8c:48:13:08:d7:7f:8b:ed:91:f3:d5:bd:80:
b9:09:21:c7:17:e3:6d:ed:6f:a7:d4:2d:12:5f:46:
7d:1a:dd:1d:b7:14:a4:b5:25:88:a2:bc:6c:9d:6e:
7f:f6:54:44:b4:c2:f7:d0:37:df:5d:64:e0:59:25:
f0:1b:44:0f:44:76:44:bc:28:95:5b:be:79:ea:98:
35:1c:c9:2f:87:9b:e8:4c:b1:5d:d0:48:92:d1:05:
86:de:19:e8:cb:b8:c8:37:f2:14:a4:73:77:9a:9a:
ed:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:AF:04:F3:AE:A4:11:E3:C9:C7:ED:4E:2A:2A:7A:6A:EE:79:73:C7
X509v3 Authority Key Identifier:
keyid:C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:32:80:b0:83:37:7d:b2:e9:de:ab:26:48:ac:4b:69:61:1b:
3f:a7:a2:c0:56:1b:f9:5e:61:83:88:67:66:71:e6:6f:72:82:
81:b3:83:90:84:c3:88:08:95:40:f5:f3:1a:7e:a6:61:e8:a2:
7f:28:75:2d:8b:84:e1:01:17:d8:b9:69:4c:da:df:10:9e:d9:
59:6e:8e:41:49:54:89:a8:03:75:9b:fa:66:7b:17:2c:40:39:
ad:74:77:a3:9b:52:16:6b:7c:34:ab:e5:49:ce:63:c3:0d:9f:
8a:c4:69:37:36:a5:71:4a:8d:ab:d9:ec:ae:4c:35:88:24:f1:
e8:c1:05:e8:b0:a5:d2:19:9b:5d:06:eb:0b:be:d6:4f:8b:16:
6d:6a:42:95:21:98:b1:b9:d1:3b:4d:fa:1b:0c:4d:c4:ce:b4:
0e:63:03:42:f1:05:1b:64:8f:45:8c:3d:2c:a6:c9:a2:70:2c:
ab:d8:db:c3:13:5e:02:b1:5d:df:4e:1b:90:5b:a0:81:ba:a1:
0f:a0:5c:46:01:fa:5c:93:a6:9f:8d:0e:57:fb:b9:55:01:31:
06:86:4d:16:94:3f:aa:03:c7:7d:6b:e2:5a:2b:f1:5e:37:71:
50:1b:ae:c0:3e:d7:5f:eb:4a:b4:af:c2:d8:ff:a7:e3:43:32:
e9:ef:9b:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ58n02MukQ4rHF1NAL3TrH+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1MzFiNjNkMTFhNmNjMmQxY2U2OWUxMzExYzg3YWMxYTZh
NzA3MzMwHhcNMjYwNTMxMDYwMTE1WhcNMjYwNjAxMDYwMTE1WjAzMTEwLwYDVQQD
EygxNWFmMDRmM2FlYTQxMWUzYzljN2VkNGUyYTJhN2E2YWVlNzk3M2M3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOex0DndcIovgW5xtIPConfFV/xX
3SrvhXPzsTbeRDX5Lh5/6rULp0k7o+Fe3HeEv1Y4fZGnyIkxaSMY+pwX7b4UPZVA
cxceTVBDMVIw4aCychISuk70bmxrlLcvlXtcoBwIYptpBfdiD9xBILbyN7YzS0RY
VvvYNUoRxbKFAzd8ajsfct6HUX6xp6EcwzhqwPa4+8Hb34xIEwjXf4vtkfPVvYC5
CSHHF+Nt7W+n1C0SX0Z9Gt0dtxSktSWIorxsnW5/9lREtML30DffXWTgWSXwG0QP
RHZEvCiVW7556pg1HMkvh5voTLFd0EiS0QWG3hnoy7jIN/IUpHN3mprteQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBWvBPOupBHjycftTioqemrueXPHMB8GA1UdIwQY
MBaAFMUxtj0RpswtHOaeExHIesGmpwczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84Njg5OGUtZTZlNi00Yjg4LTg4MTEt
ZGI4Y2FiY2VlMjFlLzEveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC84Njg5OGUtZTZlNi00Yjg4LTg4MTEtZGI4Y2FiY2VlMjFl
LzEveFRHMlBSR216QzBjNXA0VEVjaDZ3YWFuQnpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABjKAsIM3
fbLp3qsmSKxLaWEbP6eiwFYb+V5hg4hnZnHmb3KCgbODkITDiAiVQPXzGn6mYeii
fyh1LYuE4QEX2LlpTNrfEJ7ZWW6OQUlUiagDdZv6ZnsXLEA5rXR3o5tSFmt8NKvl
Sc5jww2fisRpNzalcUqNq9nsrkw1iCTx6MEF6LCl0hmbXQbrC77WT4sWbWpClSGY
sbnRO036GwxNxM60DmMDQvEFG2SPRYw9LKbJonAsq9jbwxNeArFd304bkFuggbqh
D6BcRgH6XJOmn40OV/u5VQExBoZNFpQ/qgPHfWviWivxXjdxUBuuwD7XX+tKtK/C
2P+n40My6e+bnQ==
-----END CERTIFICATE-----
Generated at Sun May 31 10:47:53 2026 by rpki-client