Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
File: XM97P9h86bzpn5ALZBmdYGvxYGk.mft (raw, json)
Hash identifier: FRAsn8KyrufZI9QkmHBcxWcxfTKmtR0epDZXwXKiCcs=
Subject key identifier: 8B:B7:0B:7A:42:20:99:A9:6B:1E:17:6D:CE:A1:06:D2:4D:A6:34:07
Authority key identifier: 5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
Certificate issuer: /CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Certificate serial: 019D38D2B3C277FE3FC612FA8DD8E6689602
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
Manifest number: 1822
Signing time: Sun 29 Mar 2026 09:00:25 +0000
Manifest this update: Sun 29 Mar 2026 09:00:25 +0000
Manifest next update: Mon 30 Mar 2026 09:00:25 +0000
Files and hashes: 1: KhLnM9UHZFCOQul_YnhOlrlNWQg.roa (hash: F9XQk4xPu6hZHYNZKH9uTFT9zpakfltc+2j9WkGLNVk=)
2: XM97P9h86bzpn5ALZBmdYGvxYGk.crl (hash: a9lMiLev+4cE3wdqCHAmgk32+9/Tq6QRgzraqxBiMus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:b3:c2:77:fe:3f:c6:12:fa:8d:d8:e6:68:96:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ccf7b3fd87ce9bce99f900b64199d606bf16069
Validity
Not Before: Mar 29 09:00:25 2026 GMT
Not After : Mar 30 09:00:25 2026 GMT
Subject: CN=8bb70b7a422099a96b1e176dcea106d24da63407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ce:65:3f:30:d2:f3:3a:73:3d:00:92:54:85:
54:38:dd:f5:e9:81:85:c5:07:58:49:d3:03:ff:83:
6f:98:4c:d1:d3:3f:67:19:a6:77:ed:6d:ea:9a:41:
c7:51:c7:1f:c6:d0:1d:00:df:2f:eb:ab:d9:b6:a8:
db:2c:09:1c:81:3d:f8:eb:d5:cb:33:94:c7:f7:64:
9b:34:12:83:66:3f:80:88:67:99:9f:5d:d4:62:94:
f5:61:57:50:38:9e:12:40:c8:8a:b3:0b:bb:7a:81:
c0:84:69:4a:eb:72:05:8a:57:52:04:fe:81:1c:2c:
55:7c:5d:13:94:07:22:7d:28:de:ac:67:3a:e6:ca:
70:7f:26:fc:5c:72:b0:98:8a:c5:38:f4:0f:8c:cd:
45:af:ad:c6:17:09:a0:77:bf:e7:4c:61:58:4a:a2:
fa:5a:6a:e1:8f:cb:80:55:8e:5d:05:d1:24:39:a6:
fe:06:55:00:8f:e5:b7:1d:05:46:97:41:41:58:d1:
e2:30:e7:8e:cf:74:b9:14:20:c8:ac:65:0e:0b:01:
6f:b7:45:8f:5a:85:8a:18:83:16:8d:c1:ee:c5:da:
fc:f0:84:e6:9d:cb:16:66:0f:a7:91:f5:46:3e:cb:
2f:45:b1:43:e7:ff:fd:80:ba:25:83:45:fe:a0:55:
5c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:B7:0B:7A:42:20:99:A9:6B:1E:17:6D:CE:A1:06:D2:4D:A6:34:07
X509v3 Authority Key Identifier:
keyid:5C:CF:7B:3F:D8:7C:E9:BC:E9:9F:90:0B:64:19:9D:60:6B:F1:60:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XM97P9h86bzpn5ALZBmdYGvxYGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54debb-d0b6-44d1-8e58-8cf9e6f8ab45/1/XM97P9h86bzpn5ALZBmdYGvxYGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:40:66:36:45:f0:d6:ef:2a:90:4f:4b:20:3d:be:70:c1:40:
bf:33:57:44:1d:2a:b4:e3:5a:05:da:3a:6f:f0:05:40:ee:98:
4a:50:c3:5d:f4:9f:30:92:b9:ac:07:9a:0c:65:1f:bb:2c:f2:
11:86:21:e1:92:3b:d4:c1:3f:40:e3:c6:31:5c:6d:68:b1:d7:
9a:c1:eb:f2:be:97:b2:7f:aa:e3:01:29:0b:8d:53:f5:0f:8e:
88:27:09:97:02:ef:95:8c:95:92:ce:79:46:d7:b4:c1:2f:f9:
86:53:f5:43:c5:40:f1:16:81:25:b3:0f:c8:e6:12:44:35:d5:
04:59:da:c9:c3:f5:a0:34:09:94:44:b3:ae:ec:9e:e1:91:fa:
f5:2b:ca:64:3b:8a:0d:89:42:89:63:46:44:c6:3b:ff:8c:5e:
94:14:c4:62:65:6a:b8:e5:f9:89:08:4e:b2:aa:c3:be:18:c7:
40:21:ef:2f:6e:0b:e1:0e:53:4b:5c:b6:91:06:2e:62:df:2c:
46:f8:e4:bd:72:07:9c:32:c7:e6:9d:07:21:36:c6:30:b4:b5:
73:00:da:50:83:34:c3:3c:90:f7:84:01:3e:e9:c1:a3:07:0c:
a6:71:2f:cd:27:30:36:aa:f5:cd:c1:20:41:f1:27:e5:5c:52:
36:01:98:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040rPCd/4/xhL6jdjmaJYCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjY2Y3YjNmZDg3Y2U5YmNlOTlmOTAwYjY0MTk5ZDYwNmJm
MTYwNjkwHhcNMjYwMzI5MDkwMDI1WhcNMjYwMzMwMDkwMDI1WjAzMTEwLwYDVQQD
Eyg4YmI3MGI3YTQyMjA5OWE5NmIxZTE3NmRjZWExMDZkMjRkYTYzNDA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvc5lPzDS8zpzPQCSVIVUON316YGF
xQdYSdMD/4NvmEzR0z9nGaZ37W3qmkHHUccfxtAdAN8v66vZtqjbLAkcgT3469XL
M5TH92SbNBKDZj+AiGeZn13UYpT1YVdQOJ4SQMiKswu7eoHAhGlK63IFildSBP6B
HCxVfF0TlAcifSjerGc65spwfyb8XHKwmIrFOPQPjM1Fr63GFwmgd7/nTGFYSqL6
Wmrhj8uAVY5dBdEkOab+BlUAj+W3HQVGl0FBWNHiMOeOz3S5FCDIrGUOCwFvt0WP
WoWKGIMWjcHuxdr88ITmncsWZg+nkfVGPssvRbFD5//9gLolg0X+oFVcuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIu3C3pCIJmpax4Xbc6hBtJNpjQHMB8GA1UdIwQY
MBaAFFzPez/YfOm86Z+QC2QZnWBr8WBpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC81NGRlYmItZDBiNi00NGQxLThlNTgt
OGNmOWU2ZjhhYjQ1LzEvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC81NGRlYmItZDBiNi00NGQxLThlNTgtOGNmOWU2ZjhhYjQ1
LzEvWE05N1A5aDg2YnpwbjVBTFpCbWRZR3Z4WUdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASkBmNkXw
1u8qkE9LID2+cMFAvzNXRB0qtONaBdo6b/AFQO6YSlDDXfSfMJK5rAeaDGUfuyzy
EYYh4ZI71ME/QOPGMVxtaLHXmsHr8r6Xsn+q4wEpC41T9Q+OiCcJlwLvlYyVks55
Rte0wS/5hlP1Q8VA8RaBJbMPyOYSRDXVBFnaycP1oDQJlESzruye4ZH69SvKZDuK
DYlCiWNGRMY7/4xelBTEYmVquOX5iQhOsqrDvhjHQCHvL24L4Q5TS1y2kQYuYt8s
RvjkvXIHnDLH5p0HITbGMLS1cwDaUIM0wzyQ94QBPunBowcMpnEvzScwNqr1zcEg
QfEn5VxSNgGYUw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:02 2026 by rpki-client