Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
File: XO56utwc1TZH4rILdg1aXHqxp8w.mft (raw, json)
Hash identifier: Wbqm+J2Q3jBgOCrwT9nLge4CbBVinTlq5RvH5j/sB8c=
Subject key identifier: A9:96:CB:78:1F:47:08:CA:53:24:E8:8A:56:EC:83:FB:D6:42:33:DB
Authority key identifier: 5C:EE:7A:BA:DC:1C:D5:36:47:E2:B2:0B:76:0D:5A:5C:7A:B1:A7:CC
Certificate issuer: /CN=5cee7abadc1cd53647e2b20b760d5a5c7ab1a7cc
Certificate serial: 019D3752D65811C73F3C62D9ADB2FE366585
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
Manifest number: 037B
Signing time: Sun 29 Mar 2026 02:01:08 +0000
Manifest this update: Sun 29 Mar 2026 02:01:08 +0000
Manifest next update: Mon 30 Mar 2026 02:01:08 +0000
Files and hashes: 1: XO56utwc1TZH4rILdg1aXHqxp8w.crl (hash: dbx7SmZN+9QUUVQ4GQTkLPl2unbKBBNQ7LFIPzUzsdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:d6:58:11:c7:3f:3c:62:d9:ad:b2:fe:36:65:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cee7abadc1cd53647e2b20b760d5a5c7ab1a7cc
Validity
Not Before: Mar 29 02:01:08 2026 GMT
Not After : Mar 30 02:01:08 2026 GMT
Subject: CN=a996cb781f4708ca5324e88a56ec83fbd64233db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1e:75:b0:31:de:6e:dc:02:3f:d4:54:22:7e:
9f:94:4c:3b:09:e8:c9:a3:d3:c5:e4:ba:06:78:bd:
7f:ab:b8:41:22:2b:7e:b4:a3:d1:62:3e:79:7e:1e:
7d:c8:37:53:09:7c:a4:9d:8f:cc:45:e2:3a:b3:55:
c1:1a:3c:25:0b:14:3f:24:71:ac:09:bf:fb:0b:0c:
bc:99:6b:f6:12:7c:4d:07:96:c2:ee:fd:5b:af:b2:
47:f3:75:2f:39:be:3b:0e:6d:3e:7b:67:c5:50:4e:
3c:68:b5:b9:69:f7:84:de:66:40:c3:f0:51:fc:a2:
3b:a5:c8:04:fb:56:c1:04:d8:dc:46:1d:32:eb:ea:
35:93:bc:8d:9c:5e:e5:78:88:2b:d4:de:23:aa:5e:
81:e3:5c:83:70:cb:93:5a:74:85:fa:1c:23:11:3a:
ad:4d:12:d1:e4:a1:1f:bc:49:f3:c5:66:dc:e0:e7:
77:7d:05:89:1f:05:01:37:a9:49:0d:1f:25:52:f4:
ed:f1:86:1a:46:5b:5e:50:16:47:b7:ae:d0:03:9f:
18:7c:7e:e7:92:c1:c2:3e:17:58:21:0e:dd:c3:91:
07:26:e4:97:a6:f2:18:b3:67:65:06:15:c5:26:d5:
cf:ba:3d:59:43:57:f7:03:3b:fa:8f:8d:c2:1d:43:
04:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:96:CB:78:1F:47:08:CA:53:24:E8:8A:56:EC:83:FB:D6:42:33:DB
X509v3 Authority Key Identifier:
keyid:5C:EE:7A:BA:DC:1C:D5:36:47:E2:B2:0B:76:0D:5A:5C:7A:B1:A7:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XO56utwc1TZH4rILdg1aXHqxp8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/50c205-2189-4734-9648-486a8cdddbe8/1/XO56utwc1TZH4rILdg1aXHqxp8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:08:49:fb:3c:7c:5e:ca:c0:10:ad:b6:b2:b5:4f:48:ac:d2:
b3:f6:a5:57:ee:8e:58:fd:90:3f:06:e8:c9:05:35:78:20:9b:
a8:02:a8:a6:9a:4a:1c:09:91:33:a3:52:9f:8c:1f:0d:7d:4c:
41:13:73:a1:d2:f7:73:24:3b:13:f6:3b:6d:42:12:75:79:2e:
ed:c9:20:c3:d7:60:e3:2c:59:73:c4:bb:53:8a:ac:90:81:54:
30:97:db:20:46:52:85:82:11:46:84:40:dc:74:cc:23:11:19:
b9:cc:35:2e:57:f3:e6:42:02:e3:bd:e9:14:6b:1f:1a:63:40:
b3:ae:8f:28:9a:a4:08:ab:5e:79:d8:36:f1:90:b0:3a:5b:98:
64:d8:2d:72:d1:63:16:3d:9c:92:b2:77:88:8e:1e:e9:ba:6e:
78:6b:5e:b6:d4:95:35:72:56:f1:e8:e5:e1:c2:db:69:09:95:
a9:b3:e7:8c:3f:d1:d4:c0:66:4b:a5:7f:20:86:03:af:01:25:
be:33:f6:5b:a3:4a:5c:e3:27:a5:89:f1:58:b6:59:f2:bc:54:
87:aa:0b:df:1e:32:d7:7b:2b:87:67:98:cd:e6:7f:10:ae:06:
f1:8d:84:a7:1c:67:bb:8d:21:65:d6:80:63:5a:ba:15:ba:06:
dd:1a:d9:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03UtZYEcc/PGLZrbL+NmWFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZWU3YWJhZGMxY2Q1MzY0N2UyYjIwYjc2MGQ1YTVjN2Fi
MWE3Y2MwHhcNMjYwMzI5MDIwMTA4WhcNMjYwMzMwMDIwMTA4WjAzMTEwLwYDVQQD
EyhhOTk2Y2I3ODFmNDcwOGNhNTMyNGU4OGE1NmVjODNmYmQ2NDIzM2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqh51sDHebtwCP9RUIn6flEw7CejJ
o9PF5LoGeL1/q7hBIit+tKPRYj55fh59yDdTCXyknY/MReI6s1XBGjwlCxQ/JHGs
Cb/7Cwy8mWv2EnxNB5bC7v1br7JH83UvOb47Dm0+e2fFUE48aLW5afeE3mZAw/BR
/KI7pcgE+1bBBNjcRh0y6+o1k7yNnF7leIgr1N4jql6B41yDcMuTWnSF+hwjETqt
TRLR5KEfvEnzxWbc4Od3fQWJHwUBN6lJDR8lUvTt8YYaRlteUBZHt67QA58YfH7n
ksHCPhdYIQ7dw5EHJuSXpvIYs2dlBhXFJtXPuj1ZQ1f3Azv6j43CHUME3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKmWy3gfRwjKUyToilbsg/vWQjPbMB8GA1UdIwQY
MBaAFFzuerrcHNU2R+KyC3YNWlx6safMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWE81NnV0d2MxVFpINHJJTGRnMWFYSHF4cDh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi81MGMyMDUtMjE4OS00NzM0LTk2NDgt
NDg2YThjZGRkYmU4LzEvWE81NnV0d2MxVFpINHJJTGRnMWFYSHF4cDh3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi81MGMyMDUtMjE4OS00NzM0LTk2NDgtNDg2YThjZGRkYmU4
LzEvWE81NnV0d2MxVFpINHJJTGRnMWFYSHF4cDh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjQhJ+zx8
XsrAEK22srVPSKzSs/alV+6OWP2QPwboyQU1eCCbqAKopppKHAmRM6NSn4wfDX1M
QRNzodL3cyQ7E/Y7bUISdXku7ckgw9dg4yxZc8S7U4qskIFUMJfbIEZShYIRRoRA
3HTMIxEZucw1Llfz5kIC473pFGsfGmNAs66PKJqkCKteedg28ZCwOluYZNgtctFj
Fj2ckrJ3iI4e6bpueGtettSVNXJW8ejl4cLbaQmVqbPnjD/R1MBmS6V/IIYDrwEl
vjP2W6NKXOMnpYnxWLZZ8rxUh6oL3x4y13srh2eYzeZ/EK4G8Y2Epxxnu40hZdaA
Y1q6FboG3RrZaQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:50:57 2026 by rpki-client