Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
File: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft (raw, json)
Hash identifier: sO42+tw9kf4kZh2NqTLuQFSu8zf+Ef362LN7aXZ5CBs=
Subject key identifier: F5:2E:2D:D1:E3:B5:4A:C8:2E:B4:44:19:BE:9C:3B:0C:2D:4E:31:DD
Authority key identifier: C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
Certificate issuer: /CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Certificate serial: 019E916F85861104E4AB092D7E5022E51B34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
Manifest number: 0AE0
Signing time: Thu 04 Jun 2026 07:01:05 +0000
Manifest this update: Thu 04 Jun 2026 07:01:05 +0000
Manifest next update: Fri 05 Jun 2026 07:01:05 +0000
Files and hashes: 1: bkpFrc_6laoYbGdkqTlHlW-Qe80.roa (hash: p/3gwRkkBDXycKoUYkEzWpJbWT3T+RMybdZ5AMyzIgo=)
2: xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl (hash: Q3YsJHoLO1X0Avz8ymcxapJBx63eZd8Wsa0igUrK+zQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:91:6f:85:86:11:04:e4:ab:09:2d:7e:50:22:e5:1b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43c74022cbbf0b3cfff6031d6d2de0369c99e4e
Validity
Not Before: Jun 4 07:01:05 2026 GMT
Not After : Jun 5 07:01:05 2026 GMT
Subject: CN=f52e2dd1e3b54ac82eb44419be9c3b0c2d4e31dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:38:7b:25:b8:86:16:71:35:c9:e0:37:ad:66:
34:bd:8c:d6:f5:25:12:33:a9:d8:ab:17:2f:5a:c9:
a9:fe:83:ac:3a:0e:a9:8b:43:2c:b7:2b:15:b9:1e:
d5:4c:30:db:a1:08:a6:87:6c:2c:b1:58:34:b1:a0:
34:b1:aa:ba:34:4f:07:f8:b4:c8:14:6d:b1:75:77:
38:ed:67:14:29:18:a7:c2:65:6d:ee:34:51:c6:37:
fc:8f:36:45:2f:2f:16:82:65:9b:78:97:3b:ba:54:
0c:d0:c4:b2:b0:a2:37:cd:36:2e:c8:71:28:00:98:
22:3f:30:4d:5f:f4:32:7b:b5:f6:ab:6c:a2:46:fb:
a8:2e:94:25:c0:6d:c3:4d:c8:14:49:26:f6:7a:d7:
8d:95:9e:7d:c3:8a:99:96:1f:d8:ab:c2:8b:28:ea:
a4:fd:63:f3:47:6a:b3:c0:62:c1:aa:3b:bd:fb:fb:
65:85:c6:54:85:72:41:17:77:18:51:ca:75:e7:d2:
b5:e3:88:5a:82:47:e6:d8:57:cb:d7:c9:27:a4:31:
cc:d1:f4:40:cf:85:61:6a:f9:71:24:e1:3b:0f:3f:
ac:59:cd:24:62:83:81:4e:42:e1:84:76:9b:15:af:
28:1b:52:51:ac:77:d7:fd:0c:13:a7:b6:48:91:57:
b9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2E:2D:D1:E3:B5:4A:C8:2E:B4:44:19:BE:9C:3B:0C:2D:4E:31:DD
X509v3 Authority Key Identifier:
keyid:C4:3C:74:02:2C:BB:F0:B3:CF:FF:60:31:D6:D2:DE:03:69:C9:9E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/ed5d3a-b869-4cda-9d32-250e55b9d4a9/1/xDx0Aiy78LPP_2Ax1tLeA2nJnk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:fc:96:29:77:7f:4b:78:1a:32:ef:d7:ed:82:a9:88:9a:8f:
6e:fe:df:c0:b3:d2:64:22:24:cc:52:9f:2e:33:fe:11:19:da:
7b:54:99:62:b8:ec:cb:4f:c3:8f:d4:41:26:98:71:05:5d:77:
39:96:52:c9:b6:aa:4a:2d:58:2e:90:10:0e:ed:9f:c0:2f:52:
a6:fd:26:33:59:2d:9f:cb:6d:c3:ff:0b:fb:d4:d1:97:2b:ad:
81:ca:c7:75:52:56:ee:c8:bb:cb:91:f9:eb:32:a5:53:20:01:
e5:a5:27:04:11:2b:78:ac:82:62:a7:f4:61:91:9e:6b:17:fb:
ee:c0:c8:8e:ab:d8:0f:30:b9:5a:41:03:14:5e:85:b3:23:31:
98:02:3e:e2:f2:f1:c2:01:b7:45:2b:81:8b:57:66:15:35:e4:
a5:e2:12:17:5f:0e:a6:f2:0e:93:65:fb:4b:78:1c:ab:9c:c3:
22:38:99:70:ee:61:d4:91:ae:5a:34:94:1f:7d:bf:c5:ee:60:
52:0c:26:55:9e:53:66:f4:03:7c:3e:d9:75:0c:66:6d:73:15:
84:f1:0d:59:37:33:d7:36:b9:ab:fd:c5:80:ed:7f:78:cc:28:
06:0f:10:ea:ea:18:34:92:8d:6c:4c:04:a6:48:e8:3d:d0:64:
f8:16:05:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 16:08:21 2026 by rpki-client