Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
File: xHC41L-HFAS8pTx3gVME7y6k4co.mft (raw, json)
Hash identifier: wVA2UdCnbt36fIzyK+obrV3gl6IAeknwtgx1ewN2f2Q=
Subject key identifier: F0:A4:A2:5E:4B:8F:1D:1F:A9:C5:89:5B:AF:AC:2F:98:FA:F7:B1:D9
Authority key identifier: C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
Certificate issuer: /CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Certificate serial: 019DFBE020BC033884926C7442FE07B94684
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
Manifest number: 02DA
Signing time: Wed 06 May 2026 06:01:02 +0000
Manifest this update: Wed 06 May 2026 06:01:02 +0000
Manifest next update: Thu 07 May 2026 06:01:02 +0000
Files and hashes: 1: DnR3n06izuqiF0c6QLmB63bhByA.roa (hash: wXx/mCp3Tb5hj1tTLAH162/y2WEyBpkE4oI2Qluv1II=)
2: xHC41L-HFAS8pTx3gVME7y6k4co.crl (hash: x+FUpYTpV2ehBbYEJrYDYWQwBYK2F64lpzyyIdB6ivE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 May 2026 06:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fb:e0:20:bc:03:38:84:92:6c:74:42:fe:07:b9:46:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c470b8d4bf871404bca53c77815304ef2ea4e1ca
Validity
Not Before: May 6 06:01:02 2026 GMT
Not After : May 7 06:01:02 2026 GMT
Subject: CN=f0a4a25e4b8f1d1fa9c5895bafac2f98faf7b1d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ac:04:1b:88:d0:33:f7:37:05:1c:af:87:02:
06:7b:ad:a9:f6:68:ea:a0:7c:46:c4:e5:c1:1d:bc:
ce:98:47:29:f3:66:08:14:77:c5:1f:f9:f6:35:1a:
2a:47:1f:47:45:97:81:19:f4:a5:61:4f:a4:6f:f9:
e1:91:c2:e9:2f:7b:e6:1c:af:e5:f4:b0:96:48:51:
ac:2c:31:8c:b1:0a:e5:d3:20:07:b0:05:4b:fa:e7:
21:09:e0:d5:55:0a:83:ac:17:ab:16:49:3b:86:16:
58:68:73:f1:ef:5c:7a:5f:59:e3:74:5b:dd:5c:b7:
03:d8:df:1d:12:79:c8:f8:d8:20:95:ab:21:50:d4:
0a:ac:0d:86:36:8a:fa:55:f3:63:fb:51:61:38:2f:
11:4e:e7:d7:3d:7a:a2:c6:15:a8:65:e4:6d:4b:d8:
9e:64:fa:62:e4:60:31:9d:2d:49:55:08:ab:85:f4:
59:25:94:05:b3:03:86:52:f0:aa:be:9c:fe:e8:8d:
3d:c2:19:ba:e1:2e:ff:3c:be:c4:dd:2e:76:38:9c:
39:27:ee:fa:1c:70:2e:2e:6a:3f:bc:39:8c:ab:a7:
e3:ef:5c:08:4b:6a:58:c5:ae:79:ec:29:f6:67:31:
a9:9b:44:1d:9a:1f:fc:5f:63:31:07:44:d8:23:3d:
b0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A4:A2:5E:4B:8F:1D:1F:A9:C5:89:5B:AF:AC:2F:98:FA:F7:B1:D9
X509v3 Authority Key Identifier:
keyid:C4:70:B8:D4:BF:87:14:04:BC:A5:3C:77:81:53:04:EF:2E:A4:E1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xHC41L-HFAS8pTx3gVME7y6k4co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a4ba8f-5e61-4dcc-ba0b-f624ed5f46fe/1/xHC41L-HFAS8pTx3gVME7y6k4co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:a5:79:b9:88:03:19:03:d2:fa:17:24:93:1f:ae:49:65:89:
b5:d0:57:13:69:7d:49:b7:03:18:72:82:67:01:65:c7:09:d3:
f0:2b:dd:e2:49:2c:51:56:d2:f3:f9:0f:82:68:ac:04:70:80:
97:ed:db:87:16:e8:fd:cc:6a:3f:5c:f1:6c:42:11:90:f7:33:
f5:98:e6:91:47:cd:dd:b2:f7:b7:86:d7:65:05:e1:90:4b:37:
64:cd:a0:b1:fd:1b:bd:2a:ca:48:a0:fc:74:1e:d7:11:fb:83:
42:c0:51:bb:76:08:3d:4b:26:76:cd:e3:b4:61:b9:b0:cb:89:
32:26:9d:33:cb:38:6f:11:ca:47:74:64:2f:53:84:5e:25:42:
fc:91:a3:ea:7b:3c:e3:a5:61:a8:04:5c:3c:0d:80:2e:e5:5c:
e2:68:70:33:82:34:d1:d4:29:e0:af:81:ea:51:5e:65:fc:55:
02:8c:1b:8f:90:ce:8b:24:c4:7a:cd:70:6e:65:b0:7d:51:63:
97:a0:c4:31:b3:2f:da:8e:bc:6f:24:46:6d:d6:31:a5:71:98:
7f:87:cb:c0:2b:ee:ba:d2:41:dc:04:29:18:7f:fa:78:26:94:
b5:f0:91:b7:93:98:54:ea:f2:8f:fa:f4:88:cd:e0:ca:07:2f:
48:b3:bd:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ374CC8AziEkmx0Qv4HuUaEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0NzBiOGQ0YmY4NzE0MDRiY2E1M2M3NzgxNTMwNGVmMmVh
NGUxY2EwHhcNMjYwNTA2MDYwMTAyWhcNMjYwNTA3MDYwMTAyWjAzMTEwLwYDVQQD
EyhmMGE0YTI1ZTRiOGYxZDFmYTljNTg5NWJhZmFjMmY5OGZhZjdiMWQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKwEG4jQM/c3BRyvhwIGe62p9mjq
oHxGxOXBHbzOmEcp82YIFHfFH/n2NRoqRx9HRZeBGfSlYU+kb/nhkcLpL3vmHK/l
9LCWSFGsLDGMsQrl0yAHsAVL+uchCeDVVQqDrBerFkk7hhZYaHPx71x6X1njdFvd
XLcD2N8dEnnI+NgglashUNQKrA2GNor6VfNj+1FhOC8RTufXPXqixhWoZeRtS9ie
ZPpi5GAxnS1JVQirhfRZJZQFswOGUvCqvpz+6I09whm64S7/PL7E3S52OJw5J+76
HHAuLmo/vDmMq6fj71wIS2pYxa557Cn2ZzGpm0Qdmh/8X2MxB0TYIz2wjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPCkol5Ljx0fqcWJW6+sL5j697HZMB8GA1UdIwQY
MBaAFMRwuNS/hxQEvKU8d4FTBO8upOHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEhDNDFMLUhGQVM4cFR4M2dWTUU3eTZrNGNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9hNGJhOGYtNWU2MS00ZGNjLWJhMGIt
ZjYyNGVkNWY0NmZlLzEveEhDNDFMLUhGQVM4cFR4M2dWTUU3eTZrNGNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNi9hNGJhOGYtNWU2MS00ZGNjLWJhMGItZjYyNGVkNWY0NmZl
LzEveEhDNDFMLUhGQVM4cFR4M2dWTUU3eTZrNGNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH6V5uYgD
GQPS+hckkx+uSWWJtdBXE2l9SbcDGHKCZwFlxwnT8Cvd4kksUVbS8/kPgmisBHCA
l+3bhxbo/cxqP1zxbEIRkPcz9ZjmkUfN3bL3t4bXZQXhkEs3ZM2gsf0bvSrKSKD8
dB7XEfuDQsBRu3YIPUsmds3jtGG5sMuJMiadM8s4bxHKR3RkL1OEXiVC/JGj6ns8
46VhqARcPA2ALuVc4mhwM4I00dQp4K+B6lFeZfxVAowbj5DOiyTEes1wbmWwfVFj
l6DEMbMv2o68byRGbdYxpXGYf4fLwCvuutJB3AQpGH/6eCaUtfCRt5OYVOryj/r0
iM3gygcvSLO91A==
-----END CERTIFICATE-----
Generated at Wed May 6 10:03:28 2026 by rpki-client