Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
File: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft (raw, json)
Hash identifier: 93dqtcrKwEwek8HUwQ1nGM/QB9RukUh0N4/TKrQVwks=
Subject key identifier: B8:D4:21:E9:3F:C4:A8:F9:6C:F2:E7:57:A2:C5:8F:5D:2B:57:17:4C
Authority key identifier: 5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
Certificate issuer: /CN=5e774467e21849524943d2bd459010720f3e20e4
Certificate serial: 019C6C8C79D19604BD37F519C1B83474577B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
Manifest number: 1335
Signing time: Tue 17 Feb 2026 17:01:11 +0000
Manifest this update: Tue 17 Feb 2026 17:01:11 +0000
Manifest next update: Wed 18 Feb 2026 17:01:11 +0000
Files and hashes: 1: 46eH9Cj2ZoAvvZOdO1gLEixXty0.roa (hash: nutrSegvu5QxeGV6g/QuVOtrzFyb4Km/JeoI/dWaXRo=)
2: XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl (hash: s/1uWoCqNj2VcUYJ+/boxzT+Vo10I5vf3aX4W98kBsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Feb 2026 16:10:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:6c:8c:79:d1:96:04:bd:37:f5:19:c1:b8:34:74:57:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e774467e21849524943d2bd459010720f3e20e4
Validity
Not Before: Feb 17 17:01:11 2026 GMT
Not After : Feb 18 17:01:11 2026 GMT
Subject: CN=b8d421e93fc4a8f96cf2e757a2c58f5d2b57174c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e1:f9:33:6f:50:b6:16:7b:13:90:2c:ce:6c:
12:34:6f:bc:66:c1:83:04:ac:b1:00:fe:62:d0:d9:
5b:a0:d2:be:2c:b9:cf:25:fa:fb:b5:d9:b4:d3:b2:
89:db:29:1f:9e:99:21:02:8b:a6:3b:23:07:9f:ab:
27:ac:b8:4f:54:53:c2:48:d9:da:31:4e:79:16:db:
79:48:60:31:ea:e5:fa:9e:e9:e4:c3:3b:ec:ca:ac:
59:4c:aa:3d:ba:9f:21:90:ed:4f:e2:d8:ab:7f:4e:
26:89:7d:91:ba:a4:fc:ee:e4:43:82:a0:d1:a3:50:
fd:ff:7e:61:ec:ad:aa:91:0b:02:4e:05:d8:09:50:
c5:32:11:ea:ab:b3:5d:37:ac:72:cd:a4:33:68:60:
68:be:b2:8a:9a:31:11:b5:7d:88:a4:6b:61:86:34:
a2:24:be:81:b5:75:90:7f:b9:62:40:11:66:ed:11:
c6:eb:4e:f5:ae:09:db:cb:5d:53:61:94:1c:53:7f:
b4:2d:5a:20:89:f4:8f:f5:0c:0f:bc:4e:9b:81:1b:
c9:35:97:00:74:7c:4f:93:9e:00:4e:c8:6b:6d:a2:
20:16:67:8f:04:8a:e4:d3:08:57:94:d9:f6:4d:6b:
da:3d:53:b9:b3:c7:51:b8:a4:17:fa:f3:c3:30:ed:
05:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:D4:21:E9:3F:C4:A8:F9:6C:F2:E7:57:A2:C5:8F:5D:2B:57:17:4C
X509v3 Authority Key Identifier:
keyid:5E:77:44:67:E2:18:49:52:49:43:D2:BD:45:90:10:72:0F:3E:20:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/20a22f-20fa-4d98-8b03-aa400532daeb/1/XndEZ-IYSVJJQ9K9RZAQcg8-IOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:99:cb:ec:b9:78:64:64:39:ec:d4:71:f5:02:f1:81:9a:6d:
9a:9b:1e:0c:62:74:bf:69:58:e3:91:93:01:17:4a:35:45:73:
02:83:7b:e2:66:38:2b:e9:16:85:75:f7:64:b5:de:9d:96:04:
bb:e2:96:51:b4:9e:12:77:fe:c9:a2:e5:88:8e:f8:22:de:73:
de:9e:af:e2:18:e4:9a:c8:fd:19:f0:2e:7e:4b:7e:b8:f0:e6:
2f:54:c0:bc:95:08:73:53:38:c4:cc:72:09:06:42:3b:8e:b5:
b5:cf:85:5a:41:63:71:75:81:70:49:9d:52:3c:5d:6c:69:53:
2e:99:5e:05:d1:36:1d:02:49:e7:b5:d7:df:d3:83:28:ec:35:
37:dc:e4:aa:52:d5:b9:1d:be:b0:50:1b:25:56:85:c9:e3:f8:
9e:85:9d:00:1f:f8:7c:c5:f0:58:6a:88:2d:44:d5:4a:29:82:
ca:7d:61:e2:ce:47:b5:5a:96:c6:17:1f:a6:87:df:ce:10:a0:
7c:f1:ba:2a:6b:7b:55:b0:c1:19:1f:d4:36:61:13:41:ec:72:
08:17:dd:19:2f:5f:18:d3:d9:35:ee:3e:19:44:66:4b:19:6f:
0d:dd:16:a4:be:dc:9f:ff:64:2c:20:90:e1:ac:65:cc:6b:ae:
6f:32:19:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 17 22:39:58 2026 by rpki-client