Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
File: XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft (raw, json)
Hash identifier: 5aKoCHg+3ygmWwzH7RPBkjbBKIm/MHa7+vAOvVaZBog=
Subject key identifier: 41:41:A0:E4:0E:21:F4:03:29:E1:32:83:F0:C4:67:97:87:8E:68:8C
Authority key identifier: 5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
Certificate issuer: /CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Certificate serial: 019D37C09E43FBC52F15787BB98634B1FECC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
Manifest number: 06BF
Signing time: Sun 29 Mar 2026 04:01:03 +0000
Manifest this update: Sun 29 Mar 2026 04:01:03 +0000
Manifest next update: Mon 30 Mar 2026 04:01:03 +0000
Files and hashes: 1: IrwpzwNbD7ixeqg3vbCTik-T_Lc.roa (hash: HyILMqlsRAkiSlovY1KbO4nirms1nXEWPqExv/4Zspw=)
2: XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl (hash: pwdzwZkmAjOb84NV+gVoDBhGyHRUyhpcMlsQx9tOnk0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:9e:43:fb:c5:2f:15:78:7b:b9:86:34:b1:fe:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c68a279769d193df3f9781d2ba4c1d9277b4fd6
Validity
Not Before: Mar 29 04:01:03 2026 GMT
Not After : Mar 30 04:01:03 2026 GMT
Subject: CN=4141a0e40e21f40329e13283f0c46797878e688c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:94:c8:f2:87:a9:e2:2f:f4:f3:17:14:6f:15:
b5:65:22:1f:b5:16:24:e8:19:8c:fb:7b:5e:9c:cb:
44:11:c9:74:05:50:4e:2e:d0:86:24:ef:d2:74:29:
ca:8f:15:9a:e7:f1:6d:86:89:ac:7e:df:d7:9e:8e:
37:3b:b1:57:7c:fd:3a:06:e1:9b:c4:5a:17:78:9b:
e3:aa:3c:7c:e9:37:97:fb:4a:95:c1:0a:9d:16:05:
19:68:b6:05:69:27:09:c1:8c:57:16:a5:37:f9:56:
a5:96:78:6a:55:6e:f7:e7:e4:d9:6f:6b:a5:b5:ae:
2e:a7:ad:2d:e5:3f:5c:72:8a:cf:15:f4:a7:8d:39:
f6:a7:82:8a:26:c3:42:b7:e8:4e:a2:63:3e:73:93:
a3:db:84:b6:66:bf:4e:87:ba:8a:93:ce:73:c4:5c:
24:02:8a:9f:92:7a:72:36:9d:0f:82:80:88:64:0b:
83:6e:79:21:6f:01:0c:32:99:bf:d0:03:3b:ac:50:
0c:86:d0:ee:cb:0e:8a:da:26:e5:cb:fe:bf:56:5e:
34:dd:df:40:13:8a:8f:e3:b9:32:23:ec:f4:b8:59:
7e:8b:d7:f4:f8:b2:74:f0:75:18:bd:6e:46:4c:7c:
6e:73:36:da:05:35:d9:e6:06:a5:7a:70:1d:68:7c:
54:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:41:A0:E4:0E:21:F4:03:29:E1:32:83:F0:C4:67:97:87:8E:68:8C
X509v3 Authority Key Identifier:
keyid:5C:68:A2:79:76:9D:19:3D:F3:F9:78:1D:2B:A4:C1:D9:27:7B:4F:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGiieXadGT3z-XgdK6TB2Sd7T9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f5c96a-b70f-419e-826f-15398ba5b0e7/1/XGiieXadGT3z-XgdK6TB2Sd7T9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:04:d0:3c:58:37:f6:a1:d0:6a:ec:29:9f:41:38:a3:68:39:
af:f3:be:8e:63:c6:0c:74:68:68:2c:79:fe:cf:83:e9:a1:2b:
6a:77:0a:10:5f:76:35:a2:68:d0:15:2b:09:fa:3d:7f:de:c2:
cc:6a:f6:5a:65:c1:85:f2:cb:0f:46:d1:ef:15:9d:8f:03:e7:
62:e9:43:9b:c7:03:ed:64:55:f2:1c:63:c3:83:b8:8c:9b:9e:
0c:a6:f4:2f:30:4c:be:4a:60:68:6c:c6:df:1f:81:51:4f:58:
74:c8:5b:0a:b1:dd:66:1e:d6:b4:09:d1:31:00:e3:c2:7f:4e:
40:a5:73:17:02:cc:ef:2e:01:4a:7e:8e:90:92:6b:90:56:e0:
a9:3c:d3:90:42:8a:d9:c5:77:37:bb:b5:a6:eb:c1:ba:1c:d5:
d3:54:bf:d4:30:29:af:13:f4:d2:34:0b:e2:4b:36:ed:e1:34:
e4:ee:07:80:1a:21:60:59:b9:d5:dc:ef:f0:da:b2:d6:5a:42:
6e:b6:e7:d2:b9:7a:55:5b:83:ca:07:c8:fa:52:5b:0f:28:92:
0c:7b:88:9d:a3:61:65:0e:a9:ee:6d:41:a4:82:81:f0:26:c5:
80:b3:f2:6d:85:8a:62:6e:97:6f:62:a8:1c:1b:1d:d2:82:10:
0b:68:d7:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wJ5D+8UvFXh7uYY0sf7MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNjhhMjc5NzY5ZDE5M2RmM2Y5NzgxZDJiYTRjMWQ5Mjc3
YjRmZDYwHhcNMjYwMzI5MDQwMTAzWhcNMjYwMzMwMDQwMTAzWjAzMTEwLwYDVQQD
Eyg0MTQxYTBlNDBlMjFmNDAzMjllMTMyODNmMGM0Njc5Nzg3OGU2ODhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2JTI8oep4i/08xcUbxW1ZSIftRYk
6BmM+3tenMtEEcl0BVBOLtCGJO/SdCnKjxWa5/Fthomsft/Xno43O7FXfP06BuGb
xFoXeJvjqjx86TeX+0qVwQqdFgUZaLYFaScJwYxXFqU3+VallnhqVW735+TZb2ul
ta4up60t5T9ccorPFfSnjTn2p4KKJsNCt+hOomM+c5Oj24S2Zr9Oh7qKk85zxFwk
AoqfknpyNp0PgoCIZAuDbnkhbwEMMpm/0AM7rFAMhtDuyw6K2ibly/6/Vl403d9A
E4qP47kyI+z0uFl+i9f0+LJ08HUYvW5GTHxuczbaBTXZ5galenAdaHxULQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEFBoOQOIfQDKeEyg/DEZ5eHjmiMMB8GA1UdIwQY
MBaAFFxoonl2nRk98/l4HSukwdkne0/WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mNWM5NmEtYjcwZi00MTllLTgyNmYt
MTUzOThiYTViMGU3LzEvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Mi9mNWM5NmEtYjcwZi00MTllLTgyNmYtMTUzOThiYTViMGU3
LzEvWEdpaWVYYWRHVDN6LVhnZEs2VEIyU2Q3VDlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADATQPFg3
9qHQauwpn0E4o2g5r/O+jmPGDHRoaCx5/s+D6aErancKEF92NaJo0BUrCfo9f97C
zGr2WmXBhfLLD0bR7xWdjwPnYulDm8cD7WRV8hxjw4O4jJueDKb0LzBMvkpgaGzG
3x+BUU9YdMhbCrHdZh7WtAnRMQDjwn9OQKVzFwLM7y4BSn6OkJJrkFbgqTzTkEKK
2cV3N7u1puvBuhzV01S/1DAprxP00jQL4ks27eE05O4HgBohYFm51dzv8Nqy1lpC
brbn0rl6VVuDygfI+lJbDyiSDHuInaNhZQ6p7m1BpIKB8CbFgLPybYWKYm6Xb2Ko
HBsd0oIQC2jXbg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:57:00 2026 by rpki-client