Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
File: XYO1pn2S_6hHbJMhqnv21KINPas.mft (raw, json)
Hash identifier: EEr5DhnPjBstqVI+lKrShbW5gbmOlnXxgNoycowEbVI=
Subject key identifier: F8:B7:3C:FB:94:87:3B:89:E9:C4:4A:65:3E:58:97:2A:50:7B:EC:8F
Authority key identifier: 5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
Certificate issuer: /CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Certificate serial: 019D27A8790C49F9B34700BF51DE9AC580E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
Manifest number: 1281
Signing time: Thu 26 Mar 2026 01:00:45 +0000
Manifest this update: Thu 26 Mar 2026 01:00:45 +0000
Manifest next update: Fri 27 Mar 2026 01:00:45 +0000
Files and hashes: 1: XYO1pn2S_6hHbJMhqnv21KINPas.crl (hash: 3EdsuE0r9mMdILgRrpfq6ZUN3xuCadn5kGVSrupe6Qs=)
2: yqeabqkOB5fG5PtO7nwnhSFJt98.roa (hash: qildy36/K9jS6v0WoAJhzWi2T0378O5DKM8NUUD22gI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:79:0c:49:f9:b3:47:00:bf:51:de:9a:c5:80:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d83b5a67d92ffa8476c9321aa7bf6d4a20d3dab
Validity
Not Before: Mar 26 01:00:45 2026 GMT
Not After : Mar 27 01:00:45 2026 GMT
Subject: CN=f8b73cfb94873b89e9c44a653e58972a507bec8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:40:ef:2a:06:86:2b:ac:32:57:d7:9f:12:5b:
27:be:f3:c4:8a:6b:b5:b9:db:63:32:fa:b4:17:29:
ff:b1:18:23:09:74:4b:22:43:c2:4c:40:6f:37:d5:
16:b1:7a:ca:c2:30:d6:2c:f6:57:b5:8f:74:15:66:
c7:b0:b7:ab:6b:d1:f3:1a:57:4d:8b:1b:4b:37:92:
88:23:38:da:e2:42:e5:27:e7:4b:48:79:8b:2d:ea:
11:90:86:ad:21:db:ba:7c:3a:30:79:f9:2f:cf:9c:
18:96:91:d3:e6:e0:92:87:4a:66:33:19:e9:3c:15:
f0:c1:20:19:54:c5:87:da:bc:56:a0:ef:2a:93:a4:
ff:5d:c4:e3:49:29:09:6a:00:5e:26:2d:4b:b7:15:
cf:b1:38:c7:37:cf:fa:41:7c:27:b1:dc:ca:71:03:
af:41:bb:c5:58:03:86:eb:68:c2:5f:0b:dc:ad:fe:
27:84:4f:50:8f:72:bf:85:77:46:c4:d7:29:35:88:
5b:7b:f7:fc:9b:e0:b2:4d:34:51:cb:cf:33:7c:71:
35:a3:3d:a2:95:de:2e:44:63:b1:cd:5e:4e:6f:d7:
a7:12:c6:27:a0:5a:7f:23:fc:a6:1a:fb:ea:79:b4:
ad:b7:55:d8:b4:f2:0b:a3:2a:02:0f:c0:13:39:36:
97:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:B7:3C:FB:94:87:3B:89:E9:C4:4A:65:3E:58:97:2A:50:7B:EC:8F
X509v3 Authority Key Identifier:
keyid:5D:83:B5:A6:7D:92:FF:A8:47:6C:93:21:AA:7B:F6:D4:A2:0D:3D:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYO1pn2S_6hHbJMhqnv21KINPas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/57b891-a912-4c6a-8e3b-d41fcdf57598/1/XYO1pn2S_6hHbJMhqnv21KINPas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:9f:61:04:1c:40:d5:82:73:39:85:1b:94:e7:58:3d:a5:94:
76:b9:0e:51:f2:16:b9:7b:64:be:72:53:c5:cb:b7:d8:1b:48:
19:b3:66:d2:5f:d6:7c:2f:c8:ab:0c:9f:a6:dc:d7:e0:43:f5:
8f:c3:62:3e:b6:a5:96:e3:37:72:72:29:3d:72:79:2d:cc:05:
6c:a0:ba:23:1c:f6:8a:db:31:c1:35:c8:10:48:b8:3d:a6:5f:
09:cf:69:1a:20:51:8f:68:cf:af:63:52:08:b2:49:c8:0c:46:
0d:ec:b0:4d:1d:4a:70:a4:6e:f2:c0:89:8d:e4:6e:44:f6:d6:
92:eb:2b:d2:8f:e5:21:09:2f:f3:7e:0a:30:9f:00:13:0f:6a:
37:e4:c2:db:6e:8d:da:0e:74:c9:17:e4:12:22:96:91:37:d9:
63:9f:6e:bd:ac:bb:20:5a:64:8a:e8:58:ba:99:d3:f0:c5:d2:
5b:bf:41:f5:11:2e:30:c0:af:cf:d9:3f:18:f8:dc:28:9a:81:
62:f7:31:83:1e:e4:e2:79:34:57:8d:28:cf:66:2d:a9:92:0e:
22:ce:87:d9:63:cf:a5:a0:37:39:d6:79:3a:63:bc:70:75:25:
24:94:9a:42:d1:35:92:09:93:b8:24:ad:9a:ac:e2:fb:e1:0c:
01:96:f6:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nqHkMSfmzRwC/Ud6axYDjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkODNiNWE2N2Q5MmZmYTg0NzZjOTMyMWFhN2JmNmQ0YTIw
ZDNkYWIwHhcNMjYwMzI2MDEwMDQ1WhcNMjYwMzI3MDEwMDQ1WjAzMTEwLwYDVQQD
EyhmOGI3M2NmYjk0ODczYjg5ZTljNDRhNjUzZTU4OTcyYTUwN2JlYzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEDvKgaGK6wyV9efElsnvvPEimu1
udtjMvq0Fyn/sRgjCXRLIkPCTEBvN9UWsXrKwjDWLPZXtY90FWbHsLera9HzGldN
ixtLN5KIIzja4kLlJ+dLSHmLLeoRkIatIdu6fDowefkvz5wYlpHT5uCSh0pmMxnp
PBXwwSAZVMWH2rxWoO8qk6T/XcTjSSkJagBeJi1LtxXPsTjHN8/6QXwnsdzKcQOv
QbvFWAOG62jCXwvcrf4nhE9Qj3K/hXdGxNcpNYhbe/f8m+CyTTRRy88zfHE1oz2i
ld4uRGOxzV5Ob9enEsYnoFp/I/ymGvvqebStt1XYtPILoyoCD8ATOTaXLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPi3PPuUhzuJ6cRKZT5YlypQe+yPMB8GA1UdIwQY
MBaAFF2DtaZ9kv+oR2yTIap79tSiDT2rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFlPMXBuMlNfNmhIYkpNaHFudjIxS0lOUGFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81N2I4OTEtYTkxMi00YzZhLThlM2It
ZDQxZmNkZjU3NTk4LzEvWFlPMXBuMlNfNmhIYkpNaHFudjIxS0lOUGFzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi81N2I4OTEtYTkxMi00YzZhLThlM2ItZDQxZmNkZjU3NTk4
LzEvWFlPMXBuMlNfNmhIYkpNaHFudjIxS0lOUGFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFZ9hBBxA
1YJzOYUblOdYPaWUdrkOUfIWuXtkvnJTxcu32BtIGbNm0l/WfC/IqwyfptzX4EP1
j8NiPralluM3cnIpPXJ5LcwFbKC6Ixz2itsxwTXIEEi4PaZfCc9pGiBRj2jPr2NS
CLJJyAxGDeywTR1KcKRu8sCJjeRuRPbWkusr0o/lIQkv834KMJ8AEw9qN+TC226N
2g50yRfkEiKWkTfZY59uvay7IFpkiuhYupnT8MXSW79B9REuMMCvz9k/GPjcKJqB
Yvcxgx7k4nk0V40oz2YtqZIOIs6H2WPPpaA3OdZ5OmO8cHUlJJSaQtE1kgmTuCSt
mqzi++EMAZb2eQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:08:19 2026 by rpki-client