Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
File: XLOiFF-bTUZgWCrca3NUlp4InKk.mft (raw, json)
Hash identifier: DvkSdg9fKFCpmOoBIoJmBGsVx53/bmSLg1sNBLg/Apg=
Subject key identifier: 8C:60:23:C8:6B:43:17:26:8C:2D:2F:83:11:91:C7:E4:7B:D2:FB:C0
Authority key identifier: 5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
Certificate issuer: /CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Certificate serial: 019D85004BFD29AD4B69F85F96C97396C2B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
Manifest number: 1067
Signing time: Mon 13 Apr 2026 04:01:22 +0000
Manifest this update: Mon 13 Apr 2026 04:01:22 +0000
Manifest next update: Tue 14 Apr 2026 04:01:22 +0000
Files and hashes: 1: 2Nc5AsSnBWzCuxjbHnI5SDdmCKE.roa (hash: IY9E1+Z/A+D4/xzAfwUZ6RBDyrzbb4T4cIqPhChpPt8=)
2: XLOiFF-bTUZgWCrca3NUlp4InKk.crl (hash: YxRCRhYHN1iiIYT0LnjwZlzdZ4iZE9FSa740w4xCrPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 14 Apr 2026 04:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:85:00:4b:fd:29:ad:4b:69:f8:5f:96:c9:73:96:c2:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cb3a2145f9b4d4660582adc6b7354969e089ca9
Validity
Not Before: Apr 13 04:01:22 2026 GMT
Not After : Apr 14 04:01:22 2026 GMT
Subject: CN=8c6023c86b4317268c2d2f831191c7e47bd2fbc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e5:ea:09:2d:ca:3a:59:d0:06:b1:54:a9:2b:
5a:46:e6:5b:0a:9c:69:8c:d8:90:ee:c9:9c:d2:d6:
99:82:c6:bb:10:fa:88:33:81:77:05:0d:9a:f3:d7:
97:03:04:a0:e8:bf:c0:44:38:d5:c6:92:9f:10:fe:
70:62:b2:6e:6b:58:13:42:46:3e:31:ad:bf:11:19:
f7:36:63:f2:d0:e6:ce:73:ba:e9:7f:88:9f:6f:1f:
06:01:32:4f:5e:ca:92:cd:86:7e:3e:6a:ae:fb:f1:
84:df:ab:1e:8b:b2:df:25:13:0f:d3:38:5d:69:e7:
3a:c9:47:54:f8:1e:25:88:5c:d5:01:36:d9:1f:be:
29:8e:c0:c5:83:1d:c2:9c:f7:30:7b:e6:0e:56:88:
a2:1d:bb:5b:bd:59:10:8e:bd:36:5b:17:a1:c4:b0:
02:fa:f8:a2:38:4a:d0:92:da:39:21:1a:d2:72:ac:
cf:f2:ae:69:9f:cc:83:b8:10:31:22:d4:15:d1:a5:
04:9c:3a:d3:60:b8:a4:bf:7e:d1:ac:1f:03:2b:17:
95:31:f9:0b:42:67:a6:a6:c3:cc:14:59:57:45:95:
75:34:08:a5:ad:10:55:e4:6c:e2:ea:aa:eb:41:51:
ee:30:d7:fd:0e:4f:08:d8:c1:cb:9f:59:cb:41:da:
43:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:60:23:C8:6B:43:17:26:8C:2D:2F:83:11:91:C7:E4:7B:D2:FB:C0
X509v3 Authority Key Identifier:
keyid:5C:B3:A2:14:5F:9B:4D:46:60:58:2A:DC:6B:73:54:96:9E:08:9C:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XLOiFF-bTUZgWCrca3NUlp4InKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d0661c-cebb-4e22-b197-139800a8c75f/1/XLOiFF-bTUZgWCrca3NUlp4InKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:9c:88:28:9a:ad:e0:c5:e5:34:fb:ef:1c:33:e9:93:4e:6b:
ba:ae:be:d5:68:0f:8a:0a:ae:b1:c6:0d:6b:d6:76:50:38:64:
28:29:48:04:13:2a:b1:4a:19:ce:54:95:08:13:bb:be:dd:52:
fe:c9:43:34:33:ff:21:4a:ef:39:19:24:8e:f6:5d:79:d7:98:
69:9f:ab:4e:7c:ef:b0:1d:0f:2a:bb:76:80:bc:b1:b1:ad:a8:
fe:bf:59:08:ab:e8:12:8f:e3:ad:5a:e2:ec:7d:c6:80:0f:bf:
35:41:8b:bf:6b:59:f1:cb:68:5d:c6:80:aa:fc:97:ae:5e:c1:
7a:25:aa:f2:85:bb:c5:c7:91:cf:a2:0a:17:a6:37:41:ad:c0:
bb:ca:61:30:9c:b9:0a:a1:91:4a:75:26:fe:1f:2b:79:e6:72:
d5:cd:4c:20:75:58:20:93:56:5d:2b:9f:69:1b:19:8d:77:4f:
dd:1d:81:ee:24:d3:e3:0a:b3:3e:9d:9e:48:5d:aa:8c:dc:03:
8f:ed:62:a7:f8:f5:84:a1:bc:ed:9c:96:04:63:ab:43:75:47:
b3:0d:ea:f0:72:d9:e9:89:03:6e:34:90:36:34:4c:91:55:ea:
d3:e6:04:37:47:86:75:d6:8e:24:72:e1:f2:c9:c5:90:9b:89:
fa:80:ac:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2FAEv9Ka1LafhflslzlsK5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjYjNhMjE0NWY5YjRkNDY2MDU4MmFkYzZiNzM1NDk2OWUw
ODljYTkwHhcNMjYwNDEzMDQwMTIyWhcNMjYwNDE0MDQwMTIyWjAzMTEwLwYDVQQD
Eyg4YzYwMjNjODZiNDMxNzI2OGMyZDJmODMxMTkxYzdlNDdiZDJmYmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyuXqCS3KOlnQBrFUqStaRuZbCpxp
jNiQ7smc0taZgsa7EPqIM4F3BQ2a89eXAwSg6L/ARDjVxpKfEP5wYrJua1gTQkY+
Ma2/ERn3NmPy0ObOc7rpf4ifbx8GATJPXsqSzYZ+Pmqu+/GE36sei7LfJRMP0zhd
aec6yUdU+B4liFzVATbZH74pjsDFgx3CnPcwe+YOVoiiHbtbvVkQjr02WxehxLAC
+viiOErQkto5IRrScqzP8q5pn8yDuBAxItQV0aUEnDrTYLikv37RrB8DKxeVMfkL
QmempsPMFFlXRZV1NAilrRBV5Gzi6qrrQVHuMNf9Dk8I2MHLn1nLQdpDSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIxgI8hrQxcmjC0vgxGRx+R70vvAMB8GA1UdIwQY
MBaAFFyzohRfm01GYFgq3GtzVJaeCJypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9kMDY2MWMtY2ViYi00ZTIyLWIxOTct
MTM5ODAwYThjNzVmLzEvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Zi9kMDY2MWMtY2ViYi00ZTIyLWIxOTctMTM5ODAwYThjNzVm
LzEvWExPaUZGLWJUVVpnV0NyY2EzTlVscDRJbktrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFZyIKJqt
4MXlNPvvHDPpk05ruq6+1WgPigquscYNa9Z2UDhkKClIBBMqsUoZzlSVCBO7vt1S
/slDNDP/IUrvORkkjvZdedeYaZ+rTnzvsB0PKrt2gLyxsa2o/r9ZCKvoEo/jrVri
7H3GgA+/NUGLv2tZ8ctoXcaAqvyXrl7BeiWq8oW7xceRz6IKF6Y3Qa3Au8phMJy5
CqGRSnUm/h8reeZy1c1MIHVYIJNWXSufaRsZjXdP3R2B7iTT4wqzPp2eSF2qjNwD
j+1ip/j1hKG87ZyWBGOrQ3VHsw3q8HLZ6YkDbjSQNjRMkVXq0+YEN0eGddaOJHLh
8snFkJuJ+oCsmQ==
-----END CERTIFICATE-----
Generated at Mon Apr 13 10:43:18 2026 by rpki-client