Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
File: XFe2FhFxnsfI4AErGv9-gfx2ib0.mft (raw, json)
Hash identifier: AiHqB5MJPkcZ7/Z1dJ+Z7t4o9jRWRciAcw60DPnG5xQ=
Subject key identifier: F4:71:67:42:FF:2C:E3:61:30:B6:5D:3A:F5:CC:FA:F6:37:68:AB:AF
Authority key identifier: 5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD
Certificate issuer: /CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd
Certificate serial: 019D37F73B93470D1805448E5E61CDA77A10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
Manifest number: 128A
Signing time: Sun 29 Mar 2026 05:00:42 +0000
Manifest this update: Sun 29 Mar 2026 05:00:42 +0000
Manifest next update: Mon 30 Mar 2026 05:00:42 +0000
Files and hashes: 1: XFe2FhFxnsfI4AErGv9-gfx2ib0.crl (hash: Mh9BkmGv2HsM6DLwHETulumbyadRSsFt3jJ2a667KU0=)
2: gyaoxZQ9pcA6k1D-cPBeZilXomE.roa (hash: EbmIg7/Lcotp9RQcNaPrOgD1blVN8hxve+ufr918Fkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:3b:93:47:0d:18:05:44:8e:5e:61:cd:a7:7a:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c57b61611719ec7c8e0012b1aff7e81fc7689bd
Validity
Not Before: Mar 29 05:00:42 2026 GMT
Not After : Mar 30 05:00:42 2026 GMT
Subject: CN=f4716742ff2ce36130b65d3af5ccfaf63768abaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c8:a6:3f:af:b3:78:41:bf:89:92:53:45:00:
ad:09:e0:db:e1:9b:c4:97:a8:a0:1e:7e:ec:7d:8b:
c4:3d:87:7d:5b:9f:df:cb:11:50:3d:d0:33:a5:e5:
51:2d:92:e5:cd:11:3b:93:3a:a8:e4:77:be:c6:ce:
04:0e:10:b5:63:d1:4b:61:b5:51:76:26:5b:87:dd:
a6:f3:71:e0:37:74:ef:8a:9b:e7:e4:ca:b6:28:c5:
2e:de:5e:0d:87:8e:c9:76:12:f4:25:f6:b3:e9:0f:
0b:bb:39:7a:73:08:38:4d:e2:f0:1e:ab:29:07:18:
6d:1d:b7:f8:b0:d1:0e:bb:12:be:a6:be:bd:61:a3:
0c:71:24:81:45:de:12:5c:31:81:1c:bb:95:cf:d3:
37:6c:44:03:12:95:56:48:bd:b5:53:5c:91:b3:47:
ae:85:78:cb:ef:10:e6:b3:c1:d1:d3:eb:5e:69:5a:
a9:a6:ed:a8:90:1d:ec:8b:39:f3:30:5b:c9:db:ac:
29:39:47:4b:14:42:1c:9a:69:a6:6a:2a:60:2b:e1:
da:ee:9a:69:f8:f9:34:24:85:eb:a8:d5:a8:1e:00:
77:e1:1d:94:48:08:bf:d0:07:9d:a8:e0:9a:b1:63:
18:08:e6:5f:3a:57:0d:cb:f5:96:7e:b7:b6:62:81:
50:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:71:67:42:FF:2C:E3:61:30:B6:5D:3A:F5:CC:FA:F6:37:68:AB:AF
X509v3 Authority Key Identifier:
keyid:5C:57:B6:16:11:71:9E:C7:C8:E0:01:2B:1A:FF:7E:81:FC:76:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XFe2FhFxnsfI4AErGv9-gfx2ib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/b7fe75-30ee-4a6f-b528-fa3071c435f1/1/XFe2FhFxnsfI4AErGv9-gfx2ib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:4c:41:ea:6e:85:e4:66:f2:d1:ea:ce:2a:34:38:a0:f9:d5:
d0:2d:b5:e2:29:30:df:79:60:c9:53:1a:4d:04:06:d9:c5:ad:
23:9d:fa:eb:b3:53:0d:4d:24:80:b3:4c:9f:60:f0:86:b0:25:
73:90:5d:49:bc:b9:29:d2:35:ee:30:fc:b6:bf:22:92:f6:7b:
ca:7c:12:74:d0:b9:40:fa:5a:99:ef:c2:75:7b:16:4b:4c:4b:
f3:dc:dc:ee:82:87:d8:81:0b:5c:02:34:0f:62:b5:5a:8c:75:
fb:6a:96:95:fb:f6:b9:b3:ce:97:17:fb:29:3e:2f:14:e0:f2:
02:21:41:e8:62:96:e5:30:33:14:cf:24:24:a5:17:c1:e4:2b:
a8:2b:ae:99:b1:b3:82:74:2d:ec:b6:c0:ae:7f:8e:63:46:15:
2c:cf:24:cf:43:05:ea:dc:f6:62:06:11:3f:56:55:94:49:58:
66:4e:85:d5:bd:22:8d:da:7c:52:cc:80:4e:bc:2a:7d:b4:8c:
25:80:69:47:8a:6f:6e:19:17:7e:a5:0d:6a:24:ba:c3:ab:1c:
a9:7d:6a:d5:e1:20:61:67:8b:17:56:eb:70:63:b1:47:6d:a6:
d2:6a:ef:ef:cf:0a:54:2d:bd:6d:7e:7c:90:4f:47:c1:40:7b:
82:67:74:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ039zuTRw0YBUSOXmHNp3oQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNTdiNjE2MTE3MTllYzdjOGUwMDEyYjFhZmY3ZTgxZmM3
Njg5YmQwHhcNMjYwMzI5MDUwMDQyWhcNMjYwMzMwMDUwMDQyWjAzMTEwLwYDVQQD
EyhmNDcxNjc0MmZmMmNlMzYxMzBiNjVkM2FmNWNjZmFmNjM3NjhhYmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8imP6+zeEG/iZJTRQCtCeDb4ZvE
l6igHn7sfYvEPYd9W5/fyxFQPdAzpeVRLZLlzRE7kzqo5He+xs4EDhC1Y9FLYbVR
diZbh92m83HgN3Tvipvn5Mq2KMUu3l4Nh47JdhL0Jfaz6Q8Luzl6cwg4TeLwHqsp
BxhtHbf4sNEOuxK+pr69YaMMcSSBRd4SXDGBHLuVz9M3bEQDEpVWSL21U1yRs0eu
hXjL7xDms8HR0+teaVqppu2okB3siznzMFvJ26wpOUdLFEIcmmmmaipgK+Ha7ppp
+Pk0JIXrqNWoHgB34R2USAi/0AedqOCasWMYCOZfOlcNy/WWfre2YoFQvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPRxZ0L/LONhMLZdOvXM+vY3aKuvMB8GA1UdIwQY
MBaAFFxXthYRcZ7HyOABKxr/foH8dom9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9iN2ZlNzUtMzBlZS00YTZmLWI1Mjgt
ZmEzMDcxYzQzNWYxLzEvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NC9iN2ZlNzUtMzBlZS00YTZmLWI1MjgtZmEzMDcxYzQzNWYx
LzEvWEZlMkZoRnhuc2ZJNEFFckd2OS1nZngyaWIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASkxB6m6F
5Gby0erOKjQ4oPnV0C214ikw33lgyVMaTQQG2cWtI53667NTDU0kgLNMn2DwhrAl
c5BdSby5KdI17jD8tr8ikvZ7ynwSdNC5QPpame/CdXsWS0xL89zc7oKH2IELXAI0
D2K1Wox1+2qWlfv2ubPOlxf7KT4vFODyAiFB6GKW5TAzFM8kJKUXweQrqCuumbGz
gnQt7LbArn+OY0YVLM8kz0MF6tz2YgYRP1ZVlElYZk6F1b0ijdp8UsyATrwqfbSM
JYBpR4pvbhkXfqUNaiS6w6scqX1q1eEgYWeLF1brcGOxR22m0mrv788KVC29bX58
kE9HwUB7gmd07g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:17 2026 by rpki-client