Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
File: xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json)
Hash identifier: 6cEc00Ai7xNeXTtZpCnyrngMD3JRzoQ4mKYa2EVqYpc=
Subject key identifier: F3:0E:0D:5C:E0:3D:7E:F1:CA:DC:A6:A0:66:5F:34:0B:99:89:4A:5C
Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
Certificate issuer: /CN=c5bfa71a5113fed82464776c14371514c9218ef5
Certificate serial: 019E2ADE913B5B1CB67FD181E3C7F28D1F52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
Manifest number: 0D45
Signing time: Fri 15 May 2026 09:01:29 +0000
Manifest this update: Fri 15 May 2026 09:01:29 +0000
Manifest next update: Sat 16 May 2026 09:01:29 +0000
Files and hashes: 1: jBvSHulkiAFNZq-1Sz_1NBwC4gw.roa (hash: kIr3tsaXSv0n1HwqnJcooiylPmXgSiBfGD9CqML14GU=)
2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: xS0AybtLmObMK49BeD6abhXPNC+Xu9eJqxnOcdPBavE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 09:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:de:91:3b:5b:1c:b6:7f:d1:81:e3:c7:f2:8d:1f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5
Validity
Not Before: May 15 09:01:29 2026 GMT
Not After : May 16 09:01:29 2026 GMT
Subject: CN=f30e0d5ce03d7ef1cadca6a0665f340b99894a5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e4:31:87:a0:9d:0f:60:2c:a2:b0:82:ad:2b:
0f:54:62:39:b4:bb:cb:d1:26:13:86:c8:f3:46:f2:
b4:91:75:47:9b:97:df:de:e4:df:7c:bf:d1:ba:6e:
9d:2d:c2:09:44:27:0a:8e:6c:65:b6:24:be:6f:76:
dc:ef:6e:5e:cf:36:43:11:40:2b:4a:4a:40:82:a7:
e2:bd:36:e5:62:b8:1a:a1:db:ff:58:58:d9:c7:12:
8a:96:0f:57:00:80:c4:d1:6c:20:6d:3c:2a:db:13:
80:50:61:ca:7e:0e:fc:8a:5c:e6:f6:60:07:b3:c1:
a5:f1:7a:21:8e:af:4e:d3:b2:1a:7e:14:fb:02:b2:
35:b4:50:1b:0f:00:42:26:fe:80:f3:e1:6d:86:09:
ea:2b:82:a0:a6:4c:7c:15:71:06:b8:30:3a:bb:3c:
3e:0d:1c:70:61:e8:aa:8c:ac:77:ab:f4:1f:40:64:
2b:b1:46:c7:27:a2:d4:36:0e:3f:2d:54:76:fe:07:
ea:ca:13:15:70:05:3c:19:e0:4f:ce:8a:82:46:b1:
b1:e8:89:c8:50:47:fb:b3:e3:1a:13:39:d3:44:1d:
3a:9b:68:1e:cc:9a:d7:e1:2b:ba:49:97:0c:c4:7e:
7f:2f:94:2a:d0:bb:8c:41:52:fa:b4:e7:99:d6:ff:
dd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:0E:0D:5C:E0:3D:7E:F1:CA:DC:A6:A0:66:5F:34:0B:99:89:4A:5C
X509v3 Authority Key Identifier:
keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:ce:4f:82:3b:32:8d:86:e2:66:99:53:be:14:a1:ec:e7:b0:
b0:b2:58:de:67:c8:f9:81:e7:0b:78:d3:50:ff:3f:89:cb:9b:
0f:cf:bd:d8:f9:1e:42:93:10:da:e4:e7:96:03:59:fe:0e:22:
f5:aa:15:39:61:a7:87:f9:89:60:ae:a8:7f:4d:2b:c0:b6:fe:
90:ec:cc:e6:4c:44:6c:2d:a6:34:58:e5:e0:6c:4c:e7:6a:45:
3c:39:25:6c:3c:51:e4:8c:20:a9:d9:d1:ce:d4:c7:a3:e2:1d:
31:25:9b:67:f8:c9:6d:42:5b:90:cc:c6:cb:f4:aa:86:c8:af:
54:b0:63:dc:80:89:47:a7:6b:86:e3:b7:80:ed:df:2b:4d:f2:
d3:b2:b1:b2:6e:c5:e1:ea:50:e2:08:c8:33:f8:97:a2:4e:78:
f6:29:3a:b9:17:ff:77:ca:d1:12:f5:73:c3:3c:6d:ad:72:38:
81:4b:ad:7d:48:6b:41:2c:f8:f5:43:ce:40:de:1b:b2:6c:81:
28:c6:9a:76:f7:7c:de:dc:5e:a7:ec:e8:03:23:20:ff:11:1c:
c3:9d:d1:c4:aa:34:a4:5b:43:54:5a:9f:fc:6b:cf:16:6d:79:
ad:9a:14:b6:07:c2:76:b6:31:81:17:a6:37:34:8d:80:c5:cf:
f8:40:ea:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 15:19:30 2026 by rpki-client