Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
File: XiZI8SkNRHG821C4K-TtkyADCU0.mft (raw, json)
Hash identifier: sl4H8wqPUn/wYSzKTQ2S1amk6ckN0H/I6EdWsxBLziE=
Subject key identifier: 35:12:DB:81:AA:04:C3:F7:C1:32:02:18:21:36:D3:DC:5E:65:42:72
Authority key identifier: 5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
Certificate issuer: /CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Certificate serial: 019DCCE268AE6518BDEB27FE243BD2C9B0E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
Manifest number: 186E
Signing time: Mon 27 Apr 2026 03:01:23 +0000
Manifest this update: Mon 27 Apr 2026 03:01:23 +0000
Manifest next update: Tue 28 Apr 2026 03:01:23 +0000
Files and hashes: 1: XiZI8SkNRHG821C4K-TtkyADCU0.crl (hash: A9H9hVSIbxb6R1QtKAtFLFBOlDTvMVFt9FFt4UFw7a0=)
2: sq8rzyi0UVog1iS5Ju1CZc-6dl0.roa (hash: hTNSZci/jvQbgI5g6zcbraZud5VHWLa8WEC2pVISMYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:e2:68:ae:65:18:bd:eb:27:fe:24:3b:d2:c9:b0:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e2648f1290d4471bcdb50b82be4ed932003094d
Validity
Not Before: Apr 27 03:01:23 2026 GMT
Not After : Apr 28 03:01:23 2026 GMT
Subject: CN=3512db81aa04c3f7c13202182136d3dc5e654272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:dd:69:b7:08:3a:44:51:70:e9:51:d0:d3:46:
ed:1b:3c:18:fd:c9:f7:24:1d:d5:6c:8d:07:87:35:
e3:ea:6a:27:46:36:30:9f:81:da:f9:2c:1d:07:a2:
ec:d4:90:5c:99:ad:f5:3e:44:ac:56:c6:45:e1:4f:
d3:69:7e:19:01:c5:89:73:18:4b:0e:ad:36:ff:86:
12:e4:86:ef:71:cc:90:64:f3:76:c3:c6:9a:a7:df:
d8:e8:b0:6d:92:27:39:a9:6c:2b:c0:b8:57:3a:1d:
9c:73:3a:9a:a6:39:64:77:a8:c3:7c:db:3b:a2:56:
a2:bc:6e:1b:61:21:b1:7c:45:95:49:c7:14:c9:e4:
0e:68:44:40:91:3d:e9:d8:5c:ab:c1:61:d8:34:60:
2a:98:8d:91:0b:02:4c:39:bb:53:3b:75:94:97:92:
e7:c2:fb:97:ff:29:c3:61:ba:fb:4a:2f:20:8d:16:
0c:4d:7d:b1:e9:ab:84:c4:b7:10:0e:c6:0c:12:c9:
cb:8d:f7:83:1f:69:34:c5:d3:4a:de:5e:93:95:08:
f6:bb:65:d5:eb:ed:97:2b:01:7f:d5:a9:44:74:31:
fd:25:f9:11:2c:e1:94:43:e5:5e:75:b3:46:9d:e4:
37:f9:17:60:a1:db:b2:2d:59:90:03:14:48:71:5e:
b5:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:12:DB:81:AA:04:C3:F7:C1:32:02:18:21:36:D3:DC:5E:65:42:72
X509v3 Authority Key Identifier:
keyid:5E:26:48:F1:29:0D:44:71:BC:DB:50:B8:2B:E4:ED:93:20:03:09:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiZI8SkNRHG821C4K-TtkyADCU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/bc4c53-0db5-4f11-84f6-f55fcdf97846/1/XiZI8SkNRHG821C4K-TtkyADCU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:63:cb:1b:4e:25:6d:97:a8:86:e7:9b:9d:15:23:c5:a3:75:
1f:3e:1b:0b:6e:36:38:f8:cc:0a:11:2f:c7:f6:4f:55:86:6e:
e4:30:68:27:92:1b:f3:e1:08:87:13:82:0e:13:86:23:41:b3:
5d:1c:fe:db:e6:0b:02:b3:cb:f2:f7:35:39:10:69:b7:0e:bd:
a5:0e:ea:2c:ba:0a:03:ff:b9:fd:16:41:8a:c0:ba:db:b3:2d:
c0:50:33:14:bd:1b:a1:19:d3:f8:fa:3d:7e:23:d4:24:0d:8c:
ba:e4:a6:43:82:ed:6e:ff:6f:1d:c8:4a:d0:6b:9a:00:e3:07:
b9:96:74:23:1a:c0:7f:bc:e6:09:a3:0c:bb:01:2a:c4:b9:46:
c4:4b:c9:10:af:0a:88:25:17:6a:09:0e:8a:c2:8b:a6:93:8d:
a9:2c:03:90:96:1e:0c:5f:55:dd:2e:59:02:13:44:4a:09:5c:
a3:e1:8c:cd:c9:ec:5c:c1:e9:94:c0:2c:06:08:35:89:b9:76:
21:be:11:d3:f8:75:12:c3:15:38:e9:96:2b:38:c5:ac:2f:80:
4c:68:7b:5d:17:86:c3:15:44:36:b6:41:ce:d8:51:31:49:20:
26:29:44:24:78:e2:e1:1a:cd:ad:ab:aa:ff:03:2f:22:71:95:
90:4e:ee:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3M4miuZRi96yf+JDvSybDgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlMjY0OGYxMjkwZDQ0NzFiY2RiNTBiODJiZTRlZDkzMjAw
MzA5NGQwHhcNMjYwNDI3MDMwMTIzWhcNMjYwNDI4MDMwMTIzWjAzMTEwLwYDVQQD
EygzNTEyZGI4MWFhMDRjM2Y3YzEzMjAyMTgyMTM2ZDNkYzVlNjU0MjcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoN1ptwg6RFFw6VHQ00btGzwY/cn3
JB3VbI0HhzXj6monRjYwn4Ha+SwdB6Ls1JBcma31PkSsVsZF4U/TaX4ZAcWJcxhL
Dq02/4YS5IbvccyQZPN2w8aap9/Y6LBtkic5qWwrwLhXOh2cczqapjlkd6jDfNs7
olaivG4bYSGxfEWVSccUyeQOaERAkT3p2FyrwWHYNGAqmI2RCwJMObtTO3WUl5Ln
wvuX/ynDYbr7Si8gjRYMTX2x6auExLcQDsYMEsnLjfeDH2k0xdNK3l6TlQj2u2XV
6+2XKwF/1alEdDH9JfkRLOGUQ+VedbNGneQ3+RdgoduyLVmQAxRIcV61mwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDUS24GqBMP3wTICGCE209xeZUJyMB8GA1UdIwQY
MBaAFF4mSPEpDURxvNtQuCvk7ZMgAwlNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iYzRjNTMtMGRiNS00ZjExLTg0ZjYt
ZjU1ZmNkZjk3ODQ2LzEvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iYzRjNTMtMGRiNS00ZjExLTg0ZjYtZjU1ZmNkZjk3ODQ2
LzEvWGlaSThTa05SSEc4MjFDNEstVHRreUFEQ1UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgWPLG04l
bZeohuebnRUjxaN1Hz4bC242OPjMChEvx/ZPVYZu5DBoJ5Ib8+EIhxOCDhOGI0Gz
XRz+2+YLArPL8vc1ORBptw69pQ7qLLoKA/+5/RZBisC627MtwFAzFL0boRnT+Po9
fiPUJA2MuuSmQ4Ltbv9vHchK0GuaAOMHuZZ0IxrAf7zmCaMMuwEqxLlGxEvJEK8K
iCUXagkOisKLppONqSwDkJYeDF9V3S5ZAhNESglco+GMzcnsXMHplMAsBgg1ibl2
Ib4R0/h1EsMVOOmWKzjFrC+ATGh7XReGwxVENrZBzthRMUkgJilEJHji4RrNrauq
/wMvInGVkE7uQA==
-----END CERTIFICATE-----
Generated at Mon Apr 27 09:16:24 2026 by rpki-client