Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
File: XbWMRb7iUfx1daY-W0kN7GEU5so.mft (raw, json)
Hash identifier: v74y0FhrqVIdwnOvpHxYzexAOozzEoD6d6BXhJPSNAs=
Subject key identifier: E9:C7:D2:6F:01:90:A9:DB:4B:00:7C:B4:3F:E9:25:11:7B:6C:F9:4C
Authority key identifier: 5D:B5:8C:45:BE:E2:51:FC:75:75:A6:3E:5B:49:0D:EC:61:14:E6:CA
Certificate issuer: /CN=5db58c45bee251fc7575a63e5b490dec6114e6ca
Certificate serial: 019D38D356447AE6A60107D7465A70791BAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
Manifest number: 163B
Signing time: Sun 29 Mar 2026 09:01:07 +0000
Manifest this update: Sun 29 Mar 2026 09:01:07 +0000
Manifest next update: Mon 30 Mar 2026 09:01:07 +0000
Files and hashes: 1: XbWMRb7iUfx1daY-W0kN7GEU5so.crl (hash: TsmcA9r9okg93GAMTSbSLa9XIzVqrD8J6up3iQYuGVc=)
2: vHsqeUq6iGnyRjByp03wnHq8Se0.roa (hash: VNscZtJ6p8ltvLlYgNm9TQqlID5TSbcVcko5K60GbLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:56:44:7a:e6:a6:01:07:d7:46:5a:70:79:1b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5db58c45bee251fc7575a63e5b490dec6114e6ca
Validity
Not Before: Mar 29 09:01:07 2026 GMT
Not After : Mar 30 09:01:07 2026 GMT
Subject: CN=e9c7d26f0190a9db4b007cb43fe925117b6cf94c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2c:ed:0a:d5:80:4e:ee:3e:b5:c3:90:5a:cf:
f1:94:b4:87:2e:84:3a:7a:28:e8:e9:71:77:5b:bf:
be:be:c6:5b:90:c5:39:b0:2c:5a:6f:e4:54:8f:53:
06:cd:64:6c:ee:fa:d5:3b:f1:16:97:79:f6:41:2a:
5c:66:bb:7a:e6:7c:16:f5:17:dd:60:b8:f8:91:22:
12:8a:5f:7f:ef:de:b6:a5:53:a1:a5:d7:f4:4d:98:
d1:1b:6a:64:5c:7e:0d:15:bc:90:dd:56:12:0b:e7:
25:d1:a5:b2:f5:d0:e6:4d:bd:cd:05:65:ba:4b:db:
af:5d:82:f6:8d:02:0d:29:54:96:67:2d:2d:ef:30:
9f:28:03:00:17:df:33:ee:c4:ee:58:f8:e6:93:5f:
e6:aa:1d:62:39:60:eb:ec:45:4f:36:d3:e7:5d:6f:
4d:d0:1f:09:f4:88:64:19:ba:f0:e5:3b:77:0d:dc:
4a:7e:c6:8e:9b:81:f2:ab:5d:3c:71:28:0f:ec:f3:
39:76:37:b3:4e:09:d9:33:0e:80:c1:50:00:be:81:
90:11:59:85:36:b6:da:2d:a5:32:37:27:87:b7:86:
5a:14:03:b6:1e:4a:9a:b3:f3:2e:6d:28:61:c4:5e:
58:be:9c:b0:df:f1:98:b0:cf:f4:7d:da:58:49:df:
ab:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:C7:D2:6F:01:90:A9:DB:4B:00:7C:B4:3F:E9:25:11:7B:6C:F9:4C
X509v3 Authority Key Identifier:
keyid:5D:B5:8C:45:BE:E2:51:FC:75:75:A6:3E:5B:49:0D:EC:61:14:E6:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XbWMRb7iUfx1daY-W0kN7GEU5so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/adf93d-98da-41cc-8a6d-9c2ad475a231/1/XbWMRb7iUfx1daY-W0kN7GEU5so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:a0:bd:fd:63:c0:c7:43:6f:2b:09:c9:fe:b8:1c:45:98:a0:
16:a6:38:92:22:2f:79:72:18:e7:7d:41:4f:f4:3a:a2:d3:af:
7b:e9:f9:2f:b3:67:f2:a4:bb:14:6a:a6:25:06:91:e4:c4:99:
00:01:db:a1:97:7a:4c:f0:87:8e:4c:c0:18:e7:73:6d:cd:4a:
49:d6:5c:c5:2e:84:dd:a8:56:67:13:91:11:4a:46:19:34:9e:
80:5f:cf:a6:c1:1f:46:54:15:d5:4f:a5:ea:a8:82:f6:75:bc:
58:c1:02:9b:9d:80:61:3e:0c:49:f6:10:2d:11:ef:a0:a7:c3:
bf:de:9c:ab:cf:87:57:44:32:25:bf:d0:f7:a3:18:c8:11:8c:
24:19:56:74:f3:4e:6f:11:62:8f:5a:1e:88:19:dd:e2:7a:cd:
07:09:1a:34:03:58:4e:33:d7:0b:70:50:5c:52:b1:57:5d:42:
cf:5b:59:68:d1:e1:37:18:76:c4:bb:03:9a:cf:5b:18:94:b0:
e8:3d:08:8d:f5:ca:06:05:53:31:3d:74:b7:64:ed:c6:2f:b9:
fb:2f:3a:90:c8:90:52:bf:de:d0:92:1d:c5:9a:20:90:eb:92:
ef:a9:87:4d:a8:dc:de:54:4c:f4:15:b9:2e:0f:c3:08:c6:d5:
6f:60:22:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0401ZEeuamAQfXRlpweRuqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYjU4YzQ1YmVlMjUxZmM3NTc1YTYzZTViNDkwZGVjNjEx
NGU2Y2EwHhcNMjYwMzI5MDkwMTA3WhcNMjYwMzMwMDkwMTA3WjAzMTEwLwYDVQQD
EyhlOWM3ZDI2ZjAxOTBhOWRiNGIwMDdjYjQzZmU5MjUxMTdiNmNmOTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyztCtWATu4+tcOQWs/xlLSHLoQ6
eijo6XF3W7++vsZbkMU5sCxab+RUj1MGzWRs7vrVO/EWl3n2QSpcZrt65nwW9Rfd
YLj4kSISil9/7962pVOhpdf0TZjRG2pkXH4NFbyQ3VYSC+cl0aWy9dDmTb3NBWW6
S9uvXYL2jQINKVSWZy0t7zCfKAMAF98z7sTuWPjmk1/mqh1iOWDr7EVPNtPnXW9N
0B8J9IhkGbrw5Tt3DdxKfsaOm4Hyq108cSgP7PM5djezTgnZMw6AwVAAvoGQEVmF
NrbaLaUyNyeHt4ZaFAO2Hkqas/MubShhxF5Yvpyw3/GYsM/0fdpYSd+rzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOnH0m8BkKnbSwB8tD/pJRF7bPlMMB8GA1UdIwQY
MBaAFF21jEW+4lH8dXWmPltJDexhFObKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGJXTVJiN2lVZngxZGFZLVcwa043R0VVNXNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9hZGY5M2QtOThkYS00MWNjLThhNmQt
OWMyYWQ0NzVhMjMxLzEvWGJXTVJiN2lVZngxZGFZLVcwa043R0VVNXNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9hZGY5M2QtOThkYS00MWNjLThhNmQtOWMyYWQ0NzVhMjMx
LzEvWGJXTVJiN2lVZngxZGFZLVcwa043R0VVNXNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjqC9/WPA
x0NvKwnJ/rgcRZigFqY4kiIveXIY531BT/Q6otOve+n5L7Nn8qS7FGqmJQaR5MSZ
AAHboZd6TPCHjkzAGOdzbc1KSdZcxS6E3ahWZxOREUpGGTSegF/PpsEfRlQV1U+l
6qiC9nW8WMECm52AYT4MSfYQLRHvoKfDv96cq8+HV0QyJb/Q96MYyBGMJBlWdPNO
bxFij1oeiBnd4nrNBwkaNANYTjPXC3BQXFKxV11Cz1tZaNHhNxh2xLsDms9bGJSw
6D0IjfXKBgVTMT10t2Ttxi+5+y86kMiQUr/e0JIdxZogkOuS76mHTajc3lRM9BW5
Lg/DCMbVb2Ai8g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:24:30 2026 by rpki-client