Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
File: xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json)
Hash identifier: OFkUmCzpcdw0vAyHGzJZH5BlD2GmpkwXI5lYNRGv1JI=
Subject key identifier: B7:EC:DC:FD:4B:E1:4C:5C:66:AA:B1:D5:66:ED:76:65:45:9F:43:87
Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
Certificate issuer: /CN=c5bfa71a5113fed82464776c14371514c9218ef5
Certificate serial: 019F148B0FDD06038C2BD4F1E2D0E6CCC018
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
Manifest number: 0DBE
Signing time: Mon 29 Jun 2026 18:01:25 +0000
Manifest this update: Mon 29 Jun 2026 18:01:25 +0000
Manifest next update: Tue 30 Jun 2026 18:01:25 +0000
Files and hashes: 1: jBvSHulkiAFNZq-1Sz_1NBwC4gw.roa (hash: kIr3tsaXSv0n1HwqnJcooiylPmXgSiBfGD9CqML14GU=)
2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: ZmGW4YkkP0cVCMgGt0WAua9Y0NaNkgMOHdYXN/U6sdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 14:12:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:14:8b:0f:dd:06:03:8c:2b:d4:f1:e2:d0:e6:cc:c0:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5
Validity
Not Before: Jun 29 18:01:25 2026 GMT
Not After : Jun 30 18:01:25 2026 GMT
Subject: CN=b7ecdcfd4be14c5c66aab1d566ed7665459f4387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5b:f1:c7:e8:f1:27:61:9c:63:23:f4:ad:2e:
b9:0b:ec:ad:45:dc:a8:b8:14:b8:83:05:58:f6:e6:
da:1f:ab:a4:db:7c:7f:13:0c:23:ad:5d:07:30:44:
9f:c5:d1:c4:68:69:d1:5f:ab:5d:b8:00:ca:78:42:
d5:00:a0:69:6e:b9:d8:d2:54:68:1b:ce:2c:ab:37:
12:78:88:de:6e:94:7a:a2:54:c6:3c:1b:ac:d7:fc:
07:a8:d5:5f:e9:1d:2b:95:85:8c:9b:6c:98:19:28:
cb:5b:f2:2b:83:ad:a2:ba:0d:cb:15:2a:33:20:d3:
f1:97:c3:83:da:37:72:8a:52:85:32:82:4a:cf:b3:
90:56:ef:ee:16:c7:2c:c6:d5:6b:33:e8:81:41:f8:
6e:4e:b4:ea:e9:b8:60:1a:53:56:88:76:c2:6d:9a:
fe:4a:20:92:31:97:d7:bd:62:96:50:8a:76:2f:b7:
71:98:80:75:e4:cc:d2:7c:a2:63:11:65:53:02:0f:
15:a7:73:be:03:5f:79:56:ee:20:2f:44:44:ed:35:
66:fb:af:79:aa:5c:51:5d:08:37:9c:14:75:1a:23:
d3:fb:8c:f4:62:14:0e:4c:6e:36:68:6b:52:ea:da:
f1:0f:35:36:db:be:f1:49:8b:c9:3d:05:c7:94:c6:
e3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:EC:DC:FD:4B:E1:4C:5C:66:AA:B1:D5:66:ED:76:65:45:9F:43:87
X509v3 Authority Key Identifier:
keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:a4:81:16:c2:ed:df:1d:18:3b:82:e1:f0:e9:ec:bd:46:7d:
46:c0:6f:f0:2e:3d:92:79:07:ac:79:b7:e5:28:73:e4:32:c9:
4f:a9:a9:1a:44:1e:65:2d:75:d8:8d:d4:56:46:38:f2:da:f1:
9b:28:40:e1:26:cd:a4:3b:ac:1b:cd:86:6b:a1:f2:11:9a:8c:
68:f9:b3:15:08:c5:90:7f:60:ea:67:ce:c2:d5:fb:ca:d5:48:
6e:ac:21:cd:7d:55:1c:6c:be:3c:29:6a:54:a4:13:72:ed:75:
5f:cc:ca:54:fd:7d:dd:e0:12:78:0e:20:12:ef:4c:af:a7:39:
ba:b4:69:f9:f8:d5:3d:21:88:30:25:a3:3f:32:75:09:af:ae:
2f:43:ae:40:d8:41:43:44:6b:a7:da:4b:d9:1c:02:eb:62:d7:
8f:b3:81:77:7e:55:db:a0:73:db:10:a3:83:e2:16:cf:cb:05:
40:1c:1d:33:9d:e1:2d:98:70:70:c7:cc:6b:ea:26:35:f3:d9:
40:09:ce:6f:06:58:85:f2:89:1e:df:b1:73:64:a2:43:33:fd:
a9:fe:67:45:30:cd:0c:4a:fc:a9:eb:d5:d2:05:e3:59:28:32:
b3:5a:96:c0:49:b7:1b:ca:0b:ed:5f:4d:a0:2d:69:44:5d:10:
5c:2e:29:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 19:33:05 2026 by rpki-client