Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
File: xb-nGlET_tgkZHdsFDcVFMkhjvU.mft (raw, json)
Hash identifier: mBZa71P/CV2yOrGKDQs8uPdi1qY5Vf2/NXGhuUaGDMU=
Subject key identifier: 3F:47:E5:45:82:94:F2:23:CD:E2:0F:23:B1:4D:96:66:77:17:84:94
Authority key identifier: C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
Certificate issuer: /CN=c5bfa71a5113fed82464776c14371514c9218ef5
Certificate serial: 019F129CACC5F6DD5E3F19FB0957D6420F35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
Manifest number: 0DBD
Signing time: Mon 29 Jun 2026 09:01:25 +0000
Manifest this update: Mon 29 Jun 2026 09:01:25 +0000
Manifest next update: Tue 30 Jun 2026 09:01:25 +0000
Files and hashes: 1: jBvSHulkiAFNZq-1Sz_1NBwC4gw.roa (hash: kIr3tsaXSv0n1HwqnJcooiylPmXgSiBfGD9CqML14GU=)
2: xb-nGlET_tgkZHdsFDcVFMkhjvU.crl (hash: HbhF66tijKM1t2iJHR3TKidBBvxNb5Jgd9g74mw5P94=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 09:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:9c:ac:c5:f6:dd:5e:3f:19:fb:09:57:d6:42:0f:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5bfa71a5113fed82464776c14371514c9218ef5
Validity
Not Before: Jun 29 09:01:25 2026 GMT
Not After : Jun 30 09:01:25 2026 GMT
Subject: CN=3f47e5458294f223cde20f23b14d966677178494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e5:34:b3:49:5e:6c:f2:2c:f1:06:f5:81:10:
4e:25:84:a2:0c:ce:06:0a:a4:8f:b2:d8:6f:2e:bb:
87:9b:a8:16:67:25:bd:50:50:cd:5e:75:71:c4:60:
2c:ec:e7:60:b9:3c:cd:08:b9:51:52:93:b7:22:38:
59:91:e9:cd:a2:9f:09:2e:f6:9e:9d:32:9c:df:05:
2b:40:7e:dd:3c:47:fa:f3:a5:2d:60:4f:d8:ed:b8:
c7:21:e8:f3:6c:95:ae:73:26:9d:1e:42:8e:28:6f:
d0:3a:b7:aa:db:2e:51:70:01:19:40:ca:5c:23:66:
80:16:b6:95:3a:ab:ec:9b:5a:c7:7a:5e:04:ed:32:
1d:6e:cf:b5:eb:1a:a9:6c:43:4c:34:50:f1:88:10:
f4:75:11:92:f4:0b:bb:dc:1f:6f:12:92:f5:30:dc:
72:0d:23:5a:cd:52:9b:53:0d:b2:59:19:2d:87:c4:
f0:d4:cc:93:0d:96:b7:5e:61:46:1b:32:05:28:ce:
f4:9a:0f:10:8e:5e:6d:9b:39:ac:c6:cf:6f:ce:6f:
b6:c9:3f:6c:ad:54:f6:8a:de:9d:72:7e:90:df:84:
99:84:e0:ba:04:d1:60:e6:cd:09:a7:8b:23:82:f2:
b4:79:d9:25:b1:58:8e:25:8d:a0:00:46:b9:df:e8:
ce:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:47:E5:45:82:94:F2:23:CD:E2:0F:23:B1:4D:96:66:77:17:84:94
X509v3 Authority Key Identifier:
keyid:C5:BF:A7:1A:51:13:FE:D8:24:64:77:6C:14:37:15:14:C9:21:8E:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xb-nGlET_tgkZHdsFDcVFMkhjvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/67c8fb-0257-4d60-a0df-6fce03325b3f/1/xb-nGlET_tgkZHdsFDcVFMkhjvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:ed:ad:5a:72:c6:12:dd:d7:a3:92:95:0b:99:dc:22:cc:75:
7e:3a:b6:22:30:5d:f9:60:69:ac:29:16:28:a4:3b:7e:b4:7f:
f6:36:fe:52:74:d0:55:f9:70:27:09:59:76:cc:0a:20:3c:8b:
67:37:66:5e:8d:e0:68:49:aa:ca:e8:bf:68:63:19:94:d6:af:
66:52:e5:1f:ea:3d:cd:09:50:83:70:df:6b:14:4c:7a:19:a5:
ee:54:f5:fc:f5:92:4d:04:f4:50:e4:b8:29:93:51:57:3b:af:
58:49:f2:5c:c2:51:3f:18:fa:11:8c:d0:13:aa:f3:05:55:ad:
77:4b:66:2d:87:ca:be:69:9a:e3:88:dd:75:64:af:69:bf:d0:
f2:0e:e9:30:ff:0b:ee:21:ec:83:b3:cb:bc:05:7d:80:d8:24:
0c:b6:39:52:51:2d:b9:eb:08:24:68:0b:db:49:8c:d2:f2:e9:
59:08:ba:75:d4:dc:d9:8d:d7:dc:89:b5:43:a2:fb:54:43:e0:
58:ec:13:f2:c7:fc:1a:d2:bc:4a:1d:a8:e9:df:99:fb:c7:ac:
ad:a5:b5:4f:9e:09:e6:0d:de:c2:70:b9:36:e3:df:95:ef:c9:
42:d5:19:c5:1c:71:4f:48:71:6e:7e:5e:02:c4:94:3f:54:35:
f4:77:19:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 18:47:26 2026 by rpki-client