Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
File: XYJmcuaPPaXbUO2ButuNM73M0ro.mft (raw, json)
Hash identifier: yBw5EsDYhB/GvtcZEwXPhQbebnbYxYATeBW0p15jeAQ=
Subject key identifier: A2:BB:3A:E2:1B:CF:09:53:F9:45:6A:32:94:EB:15:60:6F:07:E3:5A
Authority key identifier: 5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
Certificate issuer: /CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Certificate serial: 019CE5C912C69D33D5AF5D29B8219B68A70B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
Manifest number: 14A0
Signing time: Fri 13 Mar 2026 06:01:25 +0000
Manifest this update: Fri 13 Mar 2026 06:01:25 +0000
Manifest next update: Sat 14 Mar 2026 06:01:25 +0000
Files and hashes: 1: XYJmcuaPPaXbUO2ButuNM73M0ro.crl (hash: RZQNwIdV+n3fbBg2QPCUIzfmGyz1tHs/wLG3RCzLaCg=)
2: fDzIkCC4HQZF8d8gvy277WuuRYM.roa (hash: TzMFdxwnyUIL4oJ9MUVrNEjKX81ekLEZoq92hFxo3V4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:c9:12:c6:9d:33:d5:af:5d:29:b8:21:9b:68:a7:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d826672e68f3da5db50ed81badb8d33bdccd2ba
Validity
Not Before: Mar 13 06:01:25 2026 GMT
Not After : Mar 14 06:01:25 2026 GMT
Subject: CN=a2bb3ae21bcf0953f9456a3294eb15606f07e35a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:20:1e:82:52:39:d1:c9:23:2d:b3:01:90:2f:
ad:b8:25:a9:5b:d2:86:c2:5f:a0:0a:5e:0d:0e:fa:
b0:3b:0c:bf:4b:ba:c1:bf:16:ee:cf:cc:52:4d:48:
5c:ed:79:18:d9:42:58:5e:a1:4c:f7:d2:97:62:94:
90:48:a5:4d:52:4a:27:6e:10:79:72:5b:94:08:e7:
17:ec:af:c3:a3:4f:5e:30:b0:47:ae:b3:08:e5:7f:
5b:8a:38:02:ef:12:e1:11:ae:41:46:7b:1f:f5:1a:
13:d7:ff:35:08:34:95:aa:91:31:fe:64:61:c4:14:
8e:50:eb:c9:a8:b6:15:13:e7:8c:eb:67:99:4e:86:
fd:81:80:5e:e0:c7:2e:ff:85:a5:ad:f3:5b:e7:eb:
1b:51:17:56:66:11:07:f2:09:15:95:24:6a:33:ae:
e1:4b:c5:48:4d:b9:5a:71:65:51:d0:bb:3c:86:ed:
2c:14:21:0e:4a:ed:97:92:69:63:71:b3:8a:a0:8e:
cd:14:2c:6e:ff:b4:e0:51:c6:b7:7c:6d:0e:89:84:
9d:c2:34:7c:ea:b2:d4:56:d5:06:6d:29:97:79:59:
8d:f1:fd:e7:4e:62:6c:0d:38:5b:24:c7:1e:8d:5c:
46:03:87:43:30:3f:70:95:cf:5b:da:30:36:07:d9:
1d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:BB:3A:E2:1B:CF:09:53:F9:45:6A:32:94:EB:15:60:6F:07:E3:5A
X509v3 Authority Key Identifier:
keyid:5D:82:66:72:E6:8F:3D:A5:DB:50:ED:81:BA:DB:8D:33:BD:CC:D2:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYJmcuaPPaXbUO2ButuNM73M0ro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c79d13-9ea2-4eed-8dd2-cedab463ee5b/1/XYJmcuaPPaXbUO2ButuNM73M0ro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:e7:6b:95:43:d9:62:b0:aa:c3:90:09:f7:55:44:73:c8:0c:
60:01:53:9a:a1:ff:a1:ad:4e:b3:8c:da:c7:f6:5f:f8:08:55:
bd:0d:b8:7d:39:e6:91:db:75:22:dc:ab:82:23:5d:fa:73:c3:
ea:bd:08:be:fd:c8:bc:b9:26:57:22:c2:21:ce:9c:28:fc:11:
8e:73:92:0b:ab:33:11:66:87:87:91:05:5e:15:78:30:65:61:
79:8c:78:67:ff:f1:86:a9:63:5b:87:b0:c9:4e:ed:be:c3:c0:
69:4e:6f:7b:50:92:9d:39:7d:85:94:a1:51:1b:50:5b:60:f4:
7c:61:65:bf:6a:c1:a8:b4:6c:3c:a6:bc:cd:b0:47:71:a3:10:
7a:89:f0:ae:0b:da:a9:b9:fc:17:1d:36:28:9a:f1:4f:bb:b3:
89:11:da:39:10:49:6a:14:12:f3:f6:20:0f:0b:87:f0:e7:ed:
38:af:e4:93:f5:23:f1:8c:9f:13:e0:5b:4c:cd:ae:21:e2:8a:
45:ad:7b:25:d3:7e:86:17:ad:33:95:5c:ed:da:d5:9c:e8:12:
a0:2f:0d:15:eb:96:7f:a7:02:03:08:4a:ff:18:e9:34:e8:2f:
e1:d8:08:f2:62:9a:0a:c1:92:63:9d:8f:c7:6f:a5:15:02:41:
a7:89:e2:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzlyRLGnTPVr10puCGbaKcLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkODI2NjcyZTY4ZjNkYTVkYjUwZWQ4MWJhZGI4ZDMzYmRj
Y2QyYmEwHhcNMjYwMzEzMDYwMTI1WhcNMjYwMzE0MDYwMTI1WjAzMTEwLwYDVQQD
EyhhMmJiM2FlMjFiY2YwOTUzZjk0NTZhMzI5NGViMTU2MDZmMDdlMzVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1iAeglI50ckjLbMBkC+tuCWpW9KG
wl+gCl4NDvqwOwy/S7rBvxbuz8xSTUhc7XkY2UJYXqFM99KXYpSQSKVNUkonbhB5
cluUCOcX7K/Do09eMLBHrrMI5X9bijgC7xLhEa5BRnsf9RoT1/81CDSVqpEx/mRh
xBSOUOvJqLYVE+eM62eZTob9gYBe4Mcu/4WlrfNb5+sbURdWZhEH8gkVlSRqM67h
S8VITblacWVR0Ls8hu0sFCEOSu2XkmljcbOKoI7NFCxu/7TgUca3fG0OiYSdwjR8
6rLUVtUGbSmXeVmN8f3nTmJsDThbJMcejVxGA4dDMD9wlc9b2jA2B9kdmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKK7OuIbzwlT+UVqMpTrFWBvB+NaMB8GA1UdIwQY
MBaAFF2CZnLmjz2l21DtgbrbjTO9zNK6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFlKbWN1YVBQYVhiVU8yQnV0dU5NNzNNMHJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9jNzlkMTMtOWVhMi00ZWVkLThkZDIt
Y2VkYWI0NjNlZTViLzEvWFlKbWN1YVBQYVhiVU8yQnV0dU5NNzNNMHJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9jNzlkMTMtOWVhMi00ZWVkLThkZDItY2VkYWI0NjNlZTVi
LzEvWFlKbWN1YVBQYVhiVU8yQnV0dU5NNzNNMHJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA+drlUPZ
YrCqw5AJ91VEc8gMYAFTmqH/oa1Os4zax/Zf+AhVvQ24fTnmkdt1ItyrgiNd+nPD
6r0Ivv3IvLkmVyLCIc6cKPwRjnOSC6szEWaHh5EFXhV4MGVheYx4Z//xhqljW4ew
yU7tvsPAaU5ve1CSnTl9hZShURtQW2D0fGFlv2rBqLRsPKa8zbBHcaMQeonwrgva
qbn8Fx02KJrxT7uziRHaORBJahQS8/YgDwuH8OftOK/kk/Uj8YyfE+BbTM2uIeKK
Ra17JdN+hhetM5Vc7drVnOgSoC8NFeuWf6cCAwhK/xjpNOgv4dgI8mKaCsGSY52P
x2+lFQJBp4ni/A==
-----END CERTIFICATE-----
Generated at Fri Mar 13 10:01:08 2026 by rpki-client