
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
File: xTG2PRGmzC0c5p4TEch6waanBzM.mft (raw, json)
Hash identifier: FCuG3U9DWqAdwc+Rs5Le8BFJ+nZdCfHTxTlNbvr9CGw=
Subject key identifier: 8D:1F:B4:7B:87:E8:60:E1:3A:60:AF:52:84:DC:AD:27:6E:9D:9C:1A
Authority key identifier: C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
Certificate issuer: /CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Certificate serial: 019F645D1F23B29ED6277CE9EADC9CB5FB11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
Manifest number: 1234
Signing time: Wed 15 Jul 2026 06:00:51 +0000
Manifest this update: Wed 15 Jul 2026 06:00:51 +0000
Manifest next update: Thu 16 Jul 2026 06:00:51 +0000
Files and hashes: 1: WGUKVj-vf2RKGeE0tMRbU2IE_NQ.roa (hash: tHeLPtV3EhtYhN1tkXzaqoA9I1M0f8QKiOJp3r6uMxQ=)
2: xTG2PRGmzC0c5p4TEch6waanBzM.crl (hash: dlZMTgJVdox8ThfRVaEhOAyGSpOrBQ4e3TSmjKo+Vj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 16 Jul 2026 06:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:64:5d:1f:23:b2:9e:d6:27:7c:e9:ea:dc:9c:b5:fb:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c531b63d11a6cc2d1ce69e1311c87ac1a6a70733
Validity
Not Before: Jul 15 06:00:51 2026 GMT
Not After : Jul 16 06:00:51 2026 GMT
Subject: CN=8d1fb47b87e860e13a60af5284dcad276e9d9c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7e:3b:32:b2:bb:01:37:16:94:01:4b:1f:98:
d8:7e:85:b8:41:40:ec:78:3f:fe:58:ae:f6:a7:7e:
57:2e:38:b9:83:9b:55:80:55:38:3e:cc:1f:30:3d:
f9:7e:31:df:a4:9f:e7:59:fd:fa:2e:bf:cd:10:c9:
b6:49:8d:33:16:eb:0c:23:36:18:e9:ca:fa:7d:75:
66:92:47:7d:7c:ec:4c:38:71:1e:e4:12:41:2a:66:
14:d7:79:2c:c9:8b:db:cf:71:6c:18:b2:ed:49:ad:
8f:57:77:51:ff:11:a5:b5:83:49:ab:e0:88:c5:a4:
3a:65:11:ec:d0:08:d6:e3:f4:19:57:fd:f7:6c:a6:
2b:b5:b6:d9:21:1e:85:96:a7:02:7b:1d:3a:15:9f:
7f:da:b2:68:74:ee:e9:4d:26:d7:dc:9c:41:bf:3d:
ae:4a:d6:b3:ce:db:ec:19:24:5a:2b:29:97:ee:12:
bb:7a:5a:9d:bb:69:5f:c4:a3:31:9e:72:da:9a:16:
35:20:f5:90:1e:51:79:ec:7d:1f:a5:b7:4d:69:89:
50:36:0d:4b:ec:fb:57:f0:19:35:64:67:1d:f9:bb:
18:03:cc:0a:db:1a:3d:44:9e:71:71:e8:98:c3:b3:
5a:cf:29:27:a1:1f:a9:b9:14:be:ac:20:42:40:6f:
44:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:1F:B4:7B:87:E8:60:E1:3A:60:AF:52:84:DC:AD:27:6E:9D:9C:1A
X509v3 Authority Key Identifier:
keyid:C5:31:B6:3D:11:A6:CC:2D:1C:E6:9E:13:11:C8:7A:C1:A6:A7:07:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xTG2PRGmzC0c5p4TEch6waanBzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/86898e-e6e6-4b88-8811-db8cabcee21e/1/xTG2PRGmzC0c5p4TEch6waanBzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:f9:49:78:53:f8:44:d8:f1:69:e8:54:52:21:68:55:23:0d:
71:4a:e4:15:55:e7:de:c6:ac:ab:6b:f6:28:6c:77:eb:ac:6a:
0f:34:ec:b0:d9:ed:fd:df:87:ce:6f:85:2f:08:31:f7:7b:2c:
b2:58:d7:e4:5a:3f:7a:a9:98:3f:b5:57:73:b7:32:e4:47:2c:
ee:9e:a9:7e:c5:0c:8a:4f:8f:38:0a:df:d4:97:66:7c:6e:b1:
96:43:8a:42:2f:21:c1:06:0b:4e:c1:10:f5:57:81:50:c5:6e:
6d:29:96:29:38:93:38:06:7f:6c:78:e1:16:e9:6d:b9:eb:24:
a2:e7:21:2d:d3:d5:26:13:dd:7a:bc:97:39:e6:d5:2a:10:a3:
a8:99:78:d1:09:6c:3c:e4:e1:6a:c1:69:a0:cd:ed:31:69:28:
ad:cc:dc:2c:29:92:82:50:a0:5c:56:8f:a8:41:42:55:ec:24:
78:34:0b:f5:b0:d9:06:7d:b2:40:9d:a2:38:40:54:21:90:bb:
41:56:46:4d:87:e4:3a:ba:dc:9d:3b:49:1e:e4:2a:e5:6f:95:
d3:6e:8b:19:92:ab:91:a0:9b:e4:5e:3f:c5:c3:ed:20:98:bf:
76:91:3e:48:19:eb:40:f2:3f:80:c8:14:e1:46:f5:2d:b4:e3:
3d:4f:8f:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 14:58:47 2026 by rpki-client