Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
File: XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft (raw, json)
Hash identifier: c180HSg9c+Ka9u7TN4UUa7MXRqQZKSlCnNRjZIV3Fbw=
Subject key identifier: DB:59:5C:64:4C:4B:88:74:4B:50:9A:F6:E8:54:4F:43:99:32:69:BF
Authority key identifier: 5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
Certificate issuer: /CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Certificate serial: 019D390A3F1E87A4D11701634F6AE60F2EC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
Manifest number: 0AA0
Signing time: Sun 29 Mar 2026 10:01:05 +0000
Manifest this update: Sun 29 Mar 2026 10:01:05 +0000
Manifest next update: Mon 30 Mar 2026 10:01:05 +0000
Files and hashes: 1: 3LpmzTys_0t26Z_NyTjqsfRDEuU.roa (hash: 22GdpmbhuppIRtDMcKbTPGerqLb1bcYGTYOsCbxzp6k=)
2: XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl (hash: bdCRsfG+gQHlWR1jHcuTH9OOAt1jqk6i9//HA/oeXj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:3f:1e:87:a4:d1:17:01:63:4f:6a:e6:0f:2e:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f2a133ec2fe6067b56496e819d5bfb4e4471f94
Validity
Not Before: Mar 29 10:01:05 2026 GMT
Not After : Mar 30 10:01:05 2026 GMT
Subject: CN=db595c644c4b88744b509af6e8544f43993269bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:90:0c:43:97:ac:9b:6e:68:da:82:f9:76:73:
cf:3c:a6:35:b3:3d:ad:79:2d:bb:5e:e1:fa:97:7c:
c9:96:bd:b8:af:d5:ca:dc:3b:dc:59:3d:d0:0a:bf:
2b:fc:6e:4b:d5:86:08:33:6f:46:8f:77:43:18:95:
2f:c7:03:91:c6:43:f0:6d:42:6f:7b:b0:88:a9:fa:
64:6f:62:ae:ff:eb:fb:aa:a1:51:f6:ce:da:11:6a:
bc:12:ca:b4:c6:38:88:64:8f:c4:45:2f:2b:82:b6:
2e:99:c6:4b:8d:ee:79:67:a4:1c:33:90:39:ce:fa:
ec:c7:a1:f3:2b:3b:26:41:df:dd:9d:51:f5:98:dc:
e8:0c:13:a0:a9:59:1e:4b:4e:b7:e1:00:f9:f2:d5:
72:f6:f3:c7:c1:a6:ff:26:56:9b:d2:bb:1d:43:a9:
c3:4e:d1:78:7f:d7:df:f2:ef:ef:4e:ac:de:f8:d5:
73:d3:88:75:1b:24:39:8b:55:44:b2:66:d3:12:ed:
cd:b5:11:1d:a1:0f:96:94:0e:eb:f1:85:4b:51:e4:
63:c2:f0:bc:0e:df:f8:33:4b:01:db:bc:89:e1:d0:
15:f7:85:36:28:56:38:a3:41:65:82:ce:c3:0d:5a:
3d:47:0b:18:35:e3:02:78:97:92:7b:98:a6:d7:10:
70:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:59:5C:64:4C:4B:88:74:4B:50:9A:F6:E8:54:4F:43:99:32:69:BF
X509v3 Authority Key Identifier:
keyid:5F:2A:13:3E:C2:FE:60:67:B5:64:96:E8:19:D5:BF:B4:E4:47:1F:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XyoTPsL-YGe1ZJboGdW_tORHH5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/161d2f-ec87-4718-9364-fa2c15371726/1/XyoTPsL-YGe1ZJboGdW_tORHH5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:7c:77:0f:b8:31:f9:da:59:5d:71:25:40:40:c9:e2:59:5c:
91:e1:c8:66:82:a8:be:2d:20:05:94:51:85:86:f4:77:cd:73:
f8:c8:71:a2:fa:b6:0d:7d:c9:26:dc:6c:85:e5:fd:10:c6:bb:
7c:ed:9a:8e:df:4c:43:9d:c0:80:2c:00:9f:98:29:4d:eb:15:
8a:0e:a2:79:03:52:b5:de:a8:3a:44:1d:c8:42:2c:c9:8a:65:
cd:39:82:73:f4:6e:ac:19:e7:78:29:5e:35:06:b8:89:f3:71:
4b:80:0d:77:4b:04:28:de:39:3e:3f:27:98:a4:87:5a:15:73:
4d:12:e5:01:3f:a4:93:4e:28:b6:18:72:27:e0:be:7e:a1:32:
26:1b:c6:9e:91:4d:62:e7:8a:d4:2e:b7:23:53:73:c8:4b:41:
f2:ce:54:2b:40:14:f5:e9:80:92:6d:c9:fb:1d:60:57:3d:54:
f2:48:cb:33:c3:f5:d7:48:f5:00:76:cc:7f:38:4e:1c:ea:09:
4d:03:40:f4:ee:2c:ea:d4:7b:c6:93:c6:ef:87:3e:92:82:2e:
0f:7c:f2:e9:82:99:d1:b3:ef:4b:25:57:28:0e:b9:a6:33:d2:
8e:7c:d4:80:95:b4:5f:3a:9e:2c:52:e6:f2:04:5e:34:92:bd:
2e:3d:6f:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05Cj8eh6TRFwFjT2rmDy7EMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmMmExMzNlYzJmZTYwNjdiNTY0OTZlODE5ZDViZmI0ZTQ0
NzFmOTQwHhcNMjYwMzI5MTAwMTA1WhcNMjYwMzMwMTAwMTA1WjAzMTEwLwYDVQQD
EyhkYjU5NWM2NDRjNGI4ODc0NGI1MDlhZjZlODU0NGY0Mzk5MzI2OWJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpAMQ5esm25o2oL5dnPPPKY1sz2t
eS27XuH6l3zJlr24r9XK3DvcWT3QCr8r/G5L1YYIM29Gj3dDGJUvxwORxkPwbUJv
e7CIqfpkb2Ku/+v7qqFR9s7aEWq8Esq0xjiIZI/ERS8rgrYumcZLje55Z6QcM5A5
zvrsx6HzKzsmQd/dnVH1mNzoDBOgqVkeS0634QD58tVy9vPHwab/Jlab0rsdQ6nD
TtF4f9ff8u/vTqze+NVz04h1GyQ5i1VEsmbTEu3NtREdoQ+WlA7r8YVLUeRjwvC8
Dt/4M0sB27yJ4dAV94U2KFY4o0Flgs7DDVo9RwsYNeMCeJeSe5im1xBwiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNtZXGRMS4h0S1Ca9uhUT0OZMmm/MB8GA1UdIwQY
MBaAFF8qEz7C/mBntWSW6BnVv7TkRx+UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHlvVFBzTC1ZR2UxWkpib0dkV190T1JISDVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8xNjFkMmYtZWM4Ny00NzE4LTkzNjQt
ZmEyYzE1MzcxNzI2LzEvWHlvVFBzTC1ZR2UxWkpib0dkV190T1JISDVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni8xNjFkMmYtZWM4Ny00NzE4LTkzNjQtZmEyYzE1MzcxNzI2
LzEvWHlvVFBzTC1ZR2UxWkpib0dkV190T1JISDVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwHx3D7gx
+dpZXXElQEDJ4llckeHIZoKovi0gBZRRhYb0d81z+Mhxovq2DX3JJtxsheX9EMa7
fO2ajt9MQ53AgCwAn5gpTesVig6ieQNStd6oOkQdyEIsyYplzTmCc/RurBnneCle
NQa4ifNxS4ANd0sEKN45Pj8nmKSHWhVzTRLlAT+kk04othhyJ+C+fqEyJhvGnpFN
YueK1C63I1NzyEtB8s5UK0AU9emAkm3J+x1gVz1U8kjLM8P110j1AHbMfzhOHOoJ
TQNA9O4s6tR7xpPG74c+koIuD3zy6YKZ0bPvSyVXKA65pjPSjnzUgJW0XzqeLFLm
8gReNJK9Lj1vbA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 17:49:46 2026 by rpki-client