
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft
File: xqJJoOrNiry-oNgu9xAW04bo75Q.mft (raw, json)
Hash identifier: HzRKlhu00U7/N+OB8BR/JK8lHll9sLAYzxLoPGCzcG4=
Subject key identifier: FE:9C:DD:E1:CE:0D:6B:9A:8E:BA:63:4C:65:0A:47:88:74:B0:7B:CC
Authority key identifier: C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
Certificate issuer: /CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Certificate serial: 019F382A69776E5E8B24FD10E13D1AF7D292
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft
Manifest number: 1A2A
Signing time: Mon 06 Jul 2026 16:02:11 +0000
Manifest this update: Mon 06 Jul 2026 16:02:11 +0000
Manifest next update: Tue 07 Jul 2026 16:02:11 +0000
Files and hashes: 1: 1jfZW_D7UOXSu39RlXiUyL_tLjk.roa (hash: Wm52sVxYb4B7EnFd3mHTcBpVOHveBj16ZYTfOT8EX/A=)
2: 2c-E5BZdiwqZ2Q-DnytRU90rLWI.roa (hash: +KiT1wYNU4xT/dbPCwls8LNvm2nJx4GyHtaKqzRjkQI=)
3: 2g3YqagtveoXivlimUOijGK4Sw4.roa (hash: ygC6oN+dOsYHf4Cjh6O/E1qqcFKMCRFPzFyAC5l12yw=)
4: 3DoTaNKP9DXg2EXbrrSz95vvqow.roa (hash: 5EzHlmRsOh42vC+7cQ4USrqwxdSUXMIwztbgpIFyZjE=)
5: 5B28Ei4KPuBfMPCYz_CdjunmzfA.roa (hash: Fh0fY9vBoWA1h/GgmdDXwKoDcv0YIku/VzyUipmtScY=)
6: 65v9LHi_MDiJFfxsRpTQKZGQtKQ.roa (hash: AD4zC7meiWbh1Y7ei46GISC0uTS4fKqWlAroEgp7qMg=)
7: 7qbWrERi-ZB_UDqyNvqfTaD1ZSU.roa (hash: goE2128mhw477UYFVBxjZxeafdneEUnERrdg7dgvL9A=)
8: D-wN2Cho3G-R7OigNQ7WXddJiSQ.roa (hash: elIU6H6cKWopjbQ/YhoI51hjuDqclSXEHw33HVdNsi0=)
9: DeLLhmnL8UGopy5KKmx7aJEcegM.roa (hash: MiHnbQkuo0f/Ih4buFqhTcosJDlqA6PQQ++HZPqmd5w=)
10: ElfbXSGIDiSMTPPlbo6V-o0SRuY.roa (hash: lKK5rdzCjZE0+7rICMxRWAfKpw9HWxpCs96nQPbHzso=)
11: F3V6NHBiFLHYH9kCeJ_cphI6VuI.roa (hash: S7WFcWfal2pVRy/GM+kUJ9lEuF9xQr0ct0tz3YBvyhU=)
12: GzFILLIkAaT9aB9CvnWDZTFwbdY.roa (hash: Wm6rCP0d9sgkyPeTHrd7psMD7wjPvGW5jHpasqKACzk=)
13: PS9MTZzdBifx0im1Vrq3VgjsS5s.roa (hash: 0ux5UJNrhxWM198AZ/GNCpoKgSg8gWm9eiQUOhAki7I=)
14: TpP8go9gxjsA4n1kC2kuJQbokBE.roa (hash: 7lExTFrNOgtfm66T9jsBGx9Cjl+c6H6zYjBrnH5qrXg=)
15: Vrmk2bULiTNAA5JeOQZ33ec3wXc.roa (hash: l2T4AkC8bheD2TY5DDvz9/5pBIbrm/A780nuw41Lr6Y=)
16: W9AeGn_4EYTr-z8IbzJJXYoLOc0.roa (hash: r/0RiCOSE+WrdRBD5qqcgjI3IcYBeed6dA+B48z6B+E=)
17: dANCF-_ELvUXZe_N9iPSiuIBUYs.roa (hash: L7tV/7qxxRlCHwy6Cmc9dl/HlJ9PPDTVkduSLInAUZ0=)
18: gMYRXePhXBj5QEchP90fA4n6PTI.roa (hash: n3t3ay/80ZRLXPkmrmKkNg7PYGv+vXmzByKb6p1QvZ8=)
19: hbdbuaRvg2tTLKp10GziAeSgyRU.roa (hash: H+cM7/5ALMd58f/dYxV/Q5+dv/fO2eB8PR2xGdT8ZXc=)
20: iE31HcpgdKKrdPMldO0jIS93Go4.roa (hash: q2vi84j7Hjeqqy/+pd9xsj/QdQIOk9oRPO1utxPcNqU=)
21: jpMS12QCO2gdD3cuexYC2wQ8Qeo.roa (hash: nMFW9BQneK7T1fgc0t6oA8jRIcD7rZtWnJMbSrXrhdQ=)
22: llmpvsJp6iJllq8aPzCHiXy7pDI.roa (hash: DANl4OSIWpehyMk+CpY4YG/h/rDOrMDg4VQVT2cFg7g=)
23: ms0wuT7v6-h1UgnL6n_jgWkOkVU.roa (hash: QBEq8rCcXKzWf4ULJs+y+Nad4kF1AXFNATRKBuEGesA=)
24: nm-KZislIGz6wosxLU6C90OgEBY.roa (hash: eiBhQ/2d82wkJoJ8lwkynR/qT2+hnESyOr9AACLRf+E=)
25: ugtI-QyWNOjJ59RgJ8WbbnFfW4U.roa (hash: aT3mMJhpwKfI0RkCBtFq/BKu85xA6+3aVTdjvSvqPZQ=)
26: w6gmNc7f_bvjPNIJjuhS3RSIpZQ.roa (hash: GdBjwBkJ4iGW3k1Xd7AiPym4634yoaPZu5TSA3ZGyx8=)
27: xqJJoOrNiry-oNgu9xAW04bo75Q.crl (hash: 19qsQe8BRnuQZfzopcyZSOr7I1uvVLsGI9fPir7+xuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 Jul 2026 14:46:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:38:2a:69:77:6e:5e:8b:24:fd:10:e1:3d:1a:f7:d2:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Validity
Not Before: Jul 6 16:02:11 2026 GMT
Not After : Jul 7 16:02:11 2026 GMT
Subject: CN=fe9cdde1ce0d6b9a8eba634c650a478874b07bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b9:ea:49:e8:85:64:af:9a:ab:3f:0b:79:b6:
16:36:57:a1:6c:b1:3d:19:37:b3:dd:1e:0e:b4:53:
f1:ab:72:84:29:7a:6c:92:78:5c:ff:90:3e:5b:ae:
4c:9e:29:d8:6a:51:be:17:95:68:b3:06:2b:58:52:
62:08:0a:9c:0d:a0:8c:98:6d:8e:f3:b4:6f:2c:0d:
c8:11:47:f4:03:92:60:00:63:e6:d3:b7:e9:12:03:
7d:19:2c:70:26:98:61:90:da:e1:09:92:0b:b9:1d:
f3:95:e2:ef:6b:b6:30:67:ad:3e:bd:43:9b:48:af:
20:ad:dc:48:08:34:14:61:48:3a:e7:97:f7:c8:37:
48:5a:cd:10:4a:38:50:85:fd:2c:c4:10:a7:bf:f2:
1d:b1:d7:ef:d2:10:5d:33:51:48:ee:1d:59:78:3a:
8e:0e:83:4b:fb:82:94:0f:04:41:78:e3:40:9e:88:
69:1e:21:78:4f:fb:bb:9e:41:3e:e7:02:1f:a7:d3:
25:12:4c:18:4e:c6:84:8a:77:48:51:31:6b:95:30:
37:40:d3:bb:08:a4:3f:cb:11:1f:ce:ec:e5:26:5d:
93:1a:c7:50:79:79:dd:be:e7:08:d0:c2:0b:18:b7:
54:64:a6:1e:74:9f:0e:a0:c0:5e:79:f5:77:4b:3b:
de:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:9C:DD:E1:CE:0D:6B:9A:8E:BA:63:4C:65:0A:47:88:74:B0:7B:CC
X509v3 Authority Key Identifier:
keyid:C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:d7:7c:33:9a:b7:3f:c4:f9:22:89:14:10:06:b6:34:dd:ba:
74:84:20:2f:de:5c:15:1f:c2:14:c6:39:93:03:ce:93:99:92:
72:84:20:39:b8:d7:76:a3:17:f1:29:2a:0f:73:28:a2:b0:f0:
3c:15:e4:ef:8e:3e:4b:a3:c1:5b:7f:d0:23:0c:05:2d:35:4f:
af:db:5b:d7:69:99:f8:94:8a:40:ea:e4:6d:33:ca:d4:51:42:
67:3d:57:a5:24:be:d4:ad:a7:b2:4c:d8:23:4d:a8:7f:10:cd:
02:2d:4c:e6:b8:b8:54:18:d1:85:07:44:5c:13:0a:6f:68:54:
70:42:0f:ed:dc:18:cc:02:a1:8b:6e:15:b8:67:da:0a:65:27:
09:ff:49:33:c6:77:39:05:ca:00:02:c9:ac:fa:3b:f0:b6:17:
fa:5c:a8:41:59:0f:5b:19:a4:c1:39:e6:f5:37:7c:95:4c:bc:
be:5f:d4:0f:bd:c2:1c:0d:9f:f1:77:84:72:38:14:5d:6d:36:
07:d1:eb:78:67:05:74:c8:9a:f8:13:f2:d0:37:be:27:aa:84:
cc:d4:0f:d6:af:37:7e:c5:a9:cd:02:6f:c0:ef:70:7f:97:d7:
52:bf:a1:4e:af:af:05:e8:65:78:ae:e9:fb:f2:de:f9:93:54:
02:8d:af:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 6 19:20:38 2026 by rpki-client