Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
File: 1XfOFDQjLYCBldDKcKs5HfsHry0.mft (raw, json)
Hash identifier: cxdqjzhTAxZb8O8qdQHm8oG+lBmZErne88wzOyFR93s=
Subject key identifier: 01:02:03:03:5F:2F:9A:92:8E:38:1D:9D:2D:F3:A1:77:50:73:E9:45
Authority key identifier: D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D
Certificate issuer: /CN=d577ce1434232d808195d0ca70ab391dfb07af2d
Certificate serial: 019E303BB8D31839F8B038A37E9F94B6DB0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 10:01:20 +0000
Manifest this update: Sat 16 May 2026 10:01:20 +0000
Manifest next update: Sun 17 May 2026 10:01:20 +0000
Files and hashes: 1: 1XfOFDQjLYCBldDKcKs5HfsHry0.crl (hash: tlwilROzHQLKzj7BkHyamblA5oXydqy51kFeiIypQJw=)
2: OeILc9n1u8YEH2AOBIE0o0dgpEE.roa (hash: /7A8rLMm0YbWTOXfPXut3LLp0Fa9Ut9MxlMvs+Wsm1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 10:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:3b:b8:d3:18:39:f8:b0:38:a3:7e:9f:94:b6:db:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d577ce1434232d808195d0ca70ab391dfb07af2d
Validity
Not Before: May 16 10:01:20 2026 GMT
Not After : May 17 10:01:20 2026 GMT
Subject: CN=010203035f2f9a928e381d9d2df3a1775073e945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:cf:f8:07:b5:67:e9:69:c9:65:1c:51:99:a2:
3d:b9:ae:c4:fb:a0:e6:2e:28:9a:b1:27:23:25:42:
ab:02:d2:1c:ac:ae:76:0a:7c:89:27:73:32:a0:0c:
6e:ac:4d:92:c4:cd:10:e2:ad:f8:5c:3b:87:63:a9:
a0:44:d8:4c:8c:b4:c6:f7:c7:ad:d9:79:d8:ea:16:
44:7f:ad:5d:cb:d9:13:70:f2:42:8f:5f:cc:5a:91:
65:af:1a:d6:2e:cb:49:30:b1:94:d2:da:7e:fb:76:
4d:ab:30:62:c6:5a:12:6e:4f:f8:0b:52:ef:68:11:
c7:4f:35:05:2a:fa:9a:4a:bd:c2:12:f3:20:9d:61:
8f:06:b5:be:71:47:17:ac:f1:f1:04:59:8c:b4:e1:
2b:1d:ca:df:eb:dd:14:a5:01:03:b4:1b:e2:6b:56:
cd:98:b3:19:6b:c5:66:6f:20:47:c0:7e:ff:43:7a:
63:30:34:97:94:45:69:8e:93:46:ef:c2:34:af:d2:
95:4b:ed:42:8e:43:68:14:b5:32:01:9c:15:21:f2:
d2:25:f1:5d:80:60:5d:26:a9:4e:c4:26:0a:7c:fc:
5e:37:f3:31:c6:5b:b0:6c:46:15:43:38:cc:9f:98:
98:0f:76:4a:b5:37:5b:15:c0:5a:00:1f:29:33:f4:
c0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:02:03:03:5F:2F:9A:92:8E:38:1D:9D:2D:F3:A1:77:50:73:E9:45
X509v3 Authority Key Identifier:
keyid:D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:f1:26:b0:38:c3:c8:58:a1:33:eb:5c:b9:83:b2:06:b7:c3:
19:39:ff:26:6f:08:86:0d:9e:52:f9:2a:aa:3a:62:53:3e:4b:
07:21:75:eb:2f:22:de:17:8b:3e:66:9c:43:6f:a9:cb:19:27:
32:96:92:53:fe:38:7a:00:75:93:0d:67:f9:72:90:b8:ed:22:
f1:2a:e9:55:ab:b2:64:68:46:10:7c:c3:11:d0:08:0c:64:b9:
87:48:30:c5:14:a2:df:1a:97:65:69:23:25:56:eb:01:60:fd:
fe:c6:47:84:7c:0b:8b:35:06:be:aa:32:f7:b8:82:ac:ec:8a:
6f:a8:5f:07:2c:f4:97:85:6e:3d:ce:23:19:ea:d2:88:e5:6d:
fa:ce:83:59:29:2f:08:e7:a9:08:d7:3e:35:76:a2:a0:63:f6:
0f:f3:e2:49:b7:06:35:ee:62:85:c0:f2:2a:79:5d:2b:a3:f8:
7e:12:fa:37:e9:db:26:8b:8e:35:71:49:9f:ab:01:9f:b5:55:
2d:da:ab:ca:71:b5:d5:3b:bb:50:68:ae:6c:6d:c9:d6:5d:bb:
33:d1:8c:a5:3d:98:9b:6c:e5:dd:7c:94:e1:5b:a6:b5:f5:40:
9f:2d:b3:3e:e8:a4:19:cb:85:51:2c:5a:a2:92:23:61:ff:9a:
34:e4:e9:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:06 2026 by rpki-client