Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
File: xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft (raw, json)
Hash identifier: kpAE0IHjymlmbxsGwWZlQuLDVduNF4eMTsJ8a/QUOQ0=
Subject key identifier: 11:33:21:EA:98:D6:65:63:73:10:EB:8C:A3:AD:07:01:7A:28:62:DE
Authority key identifier: C5:3F:0A:DA:EA:FB:40:C7:72:45:9E:93:93:54:F6:BE:45:3F:15:8F
Certificate issuer: /CN=c53f0adaeafb40c772459e939354f6be453f158f
Certificate serial: 019CEDB96735FF6A414C9A1EF4058B167F90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
Manifest number: 047C
Signing time: Sat 14 Mar 2026 19:01:16 +0000
Manifest this update: Sat 14 Mar 2026 19:01:16 +0000
Manifest next update: Sun 15 Mar 2026 19:01:16 +0000
Files and hashes: 1: je_dZ3uZwgn_oNlxsf8-FTUq220.roa (hash: ypEWzWUb+UjYyAsZX+8LRu9EB7C2RkmFTCbcPYB408Y=)
2: x33v7rF3QBlSIzExnIekzpn3DrI.roa (hash: g/UYMvAE3ypCM+rkZ1W9VYDV5Sdkmxjt7baXQZzeNL8=)
3: xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.crl (hash: gbkLPhNxQrjntf9I/rZ9MB7U2Ats+1wNQb8X0PRDJLI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 19:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ed:b9:67:35:ff:6a:41:4c:9a:1e:f4:05:8b:16:7f:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c53f0adaeafb40c772459e939354f6be453f158f
Validity
Not Before: Mar 14 19:01:16 2026 GMT
Not After : Mar 15 19:01:16 2026 GMT
Subject: CN=113321ea98d665637310eb8ca3ad07017a2862de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3b:94:ef:6d:ff:a9:77:b6:67:06:69:6a:67:
de:86:1e:fd:ac:68:a2:aa:f6:4c:2d:b8:12:c3:ee:
e9:f3:f9:a5:92:43:5c:8f:1a:1b:fe:a4:84:18:c2:
cc:64:77:48:5e:03:d1:f1:54:40:49:fb:22:58:4f:
dd:7b:c9:55:04:df:9a:5e:e7:c5:fb:b7:a6:b7:b5:
74:b2:36:c3:12:f2:7d:f4:df:1c:7a:27:25:91:62:
40:3c:f2:68:21:8d:a8:25:2a:32:99:c4:c4:f6:5d:
0f:76:29:de:4e:2a:4e:94:7d:45:ea:c3:a2:97:a0:
b9:88:26:f1:78:87:66:85:1f:ee:1e:7b:8c:f4:97:
ef:ad:7f:56:ba:24:27:e0:1e:73:5c:61:07:44:14:
34:d7:11:d3:d7:07:cd:69:8f:7b:d9:55:68:d5:74:
2e:c7:67:74:ea:12:bd:32:43:c7:45:ef:e7:5f:d0:
21:3a:54:5f:f8:40:45:96:84:e8:c1:54:76:71:89:
52:fd:54:a7:6d:4c:80:0c:5b:6c:42:33:c7:9a:1e:
38:d6:b2:c8:60:d0:86:c0:55:23:b1:61:5d:42:bc:
06:23:5b:24:24:57:c0:d8:e6:3d:4d:0f:32:c7:7d:
74:b8:98:6d:88:e5:bc:39:b5:7f:91:81:d3:2e:ce:
bf:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:33:21:EA:98:D6:65:63:73:10:EB:8C:A3:AD:07:01:7A:28:62:DE
X509v3 Authority Key Identifier:
keyid:C5:3F:0A:DA:EA:FB:40:C7:72:45:9E:93:93:54:F6:BE:45:3F:15:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/3804c2-0e44-4be3-9037-4617ca376083/1/xT8K2ur7QMdyRZ6Tk1T2vkU_FY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:78:61:1e:24:40:13:46:e6:08:a6:b7:42:bd:96:25:3d:26:
e5:20:df:6b:ce:0b:bf:9c:56:d8:2b:95:21:6b:d9:27:15:7a:
74:98:d0:89:16:57:d4:ca:cb:f0:9e:22:e7:d5:04:b0:b5:b7:
6e:56:46:40:15:41:6d:c0:e5:01:79:cf:9c:50:ee:b0:5f:ba:
87:1d:3c:66:57:1f:01:00:b6:15:32:47:a0:56:ed:39:87:d1:
d5:1e:de:65:7f:b5:31:84:f5:f3:c0:93:a3:43:13:04:8a:fe:
ef:ae:22:51:fb:9f:a7:88:99:a8:7f:2b:18:7f:67:f8:27:5c:
77:bf:a1:6f:05:75:7d:ae:88:02:e4:7d:db:f0:b5:32:f5:56:
07:e9:6b:1d:1d:16:70:10:80:9c:53:8b:2b:55:4d:34:e1:b4:
a3:5b:8e:c6:7d:bb:74:ca:7f:c2:8d:80:c8:80:fe:e0:3c:58:
50:73:bd:dc:60:c0:9e:ad:8f:86:2a:70:37:d0:ff:ca:b5:d2:
d6:a0:54:ef:45:84:39:13:20:ac:1c:22:6c:3e:96:ae:8d:ca:
51:3d:e8:5e:3b:1d:6b:55:90:19:8e:b6:4f:78:de:20:5f:84:
3f:1d:bb:95:71:82:71:80:56:bb:ae:85:73:fd:72:58:14:a0:
d7:2e:fe:b5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZztuWc1/2pBTJoe9AWLFn+QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1M2YwYWRhZWFmYjQwYzc3MjQ1OWU5MzkzNTRmNmJlNDUz
ZjE1OGYwHhcNMjYwMzE0MTkwMTE2WhcNMjYwMzE1MTkwMTE2WjAzMTEwLwYDVQQD
EygxMTMzMjFlYTk4ZDY2NTYzNzMxMGViOGNhM2FkMDcwMTdhMjg2MmRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTuU723/qXe2ZwZpamfehh79rGii
qvZMLbgSw+7p8/mlkkNcjxob/qSEGMLMZHdIXgPR8VRASfsiWE/de8lVBN+aXufF
+7emt7V0sjbDEvJ99N8ceiclkWJAPPJoIY2oJSoymcTE9l0PdineTipOlH1F6sOi
l6C5iCbxeIdmhR/uHnuM9JfvrX9WuiQn4B5zXGEHRBQ01xHT1wfNaY972VVo1XQu
x2d06hK9MkPHRe/nX9AhOlRf+EBFloTowVR2cYlS/VSnbUyADFtsQjPHmh441rLI
YNCGwFUjsWFdQrwGI1skJFfA2OY9TQ8yx310uJhtiOW8ObV/kYHTLs6/iwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBEzIeqY1mVjcxDrjKOtBwF6KGLeMB8GA1UdIwQY
MBaAFMU/Ctrq+0DHckWek5NU9r5FPxWPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFQ4SzJ1cjdRTWR5Ulo2VGsxVDJ2a1VfRlk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS8zODA0YzItMGU0NC00YmUzLTkwMzct
NDYxN2NhMzc2MDgzLzEveFQ4SzJ1cjdRTWR5Ulo2VGsxVDJ2a1VfRlk4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS8zODA0YzItMGU0NC00YmUzLTkwMzctNDYxN2NhMzc2MDgz
LzEveFQ4SzJ1cjdRTWR5Ulo2VGsxVDJ2a1VfRlk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh3hhHiRA
E0bmCKa3Qr2WJT0m5SDfa84Lv5xW2CuVIWvZJxV6dJjQiRZX1MrL8J4i59UEsLW3
blZGQBVBbcDlAXnPnFDusF+6hx08ZlcfAQC2FTJHoFbtOYfR1R7eZX+1MYT188CT
o0MTBIr+764iUfufp4iZqH8rGH9n+Cdcd7+hbwV1fa6IAuR92/C1MvVWB+lrHR0W
cBCAnFOLK1VNNOG0o1uOxn27dMp/wo2AyID+4DxYUHO93GDAnq2PhipwN9D/yrXS
1qBU70WEORMgrBwibD6Wro3KUT3oXjsda1WQGY62T3jeIF+EPx27lXGCcYBWu66F
c/1yWBSg1y7+tQ==
-----END CERTIFICATE-----
Generated at Sun Mar 15 02:25:38 2026 by rpki-client