Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
File: Xojs8KFK0YVzWdLOW9BCuflsfN0.mft (raw, json)
Hash identifier: hZuqPoEl5A37pjB/kJIOyLvqKln1nak/8XsAqGeX/T4=
Subject key identifier: 86:A6:25:15:14:8C:B5:B9:E9:D0:54:FA:C2:40:9F:35:30:BB:5A:0A
Authority key identifier: 5E:88:EC:F0:A1:4A:D1:85:73:59:D2:CE:5B:D0:42:B9:F9:6C:7C:DD
Certificate issuer: /CN=5e88ecf0a14ad1857359d2ce5bd042b9f96c7cdd
Certificate serial: 019D2772A37EB3BDB508E688B4EDD8FE5FD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
Manifest number: 0A05
Signing time: Thu 26 Mar 2026 00:01:57 +0000
Manifest this update: Thu 26 Mar 2026 00:01:57 +0000
Manifest next update: Fri 27 Mar 2026 00:01:57 +0000
Files and hashes: 1: 5hnYO6ztPLa-s4fykT38ED82F1s.roa (hash: oNF1AM5Hv8TzwevSKCEUvWBxoNLM1msTiU4uiTHoB08=)
2: Xojs8KFK0YVzWdLOW9BCuflsfN0.crl (hash: m7Ur3gioO4Vob1IIGgYBXEFmJVgEi3qGP1ejSd+TBbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:a3:7e:b3:bd:b5:08:e6:88:b4:ed:d8:fe:5f:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e88ecf0a14ad1857359d2ce5bd042b9f96c7cdd
Validity
Not Before: Mar 26 00:01:57 2026 GMT
Not After : Mar 27 00:01:57 2026 GMT
Subject: CN=86a62515148cb5b9e9d054fac2409f3530bb5a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:24:41:23:96:8f:1a:ae:76:04:af:6f:3c:73:
4d:90:df:28:2e:c2:57:5e:71:c9:3a:7f:c5:4c:78:
85:fc:a5:12:1e:4a:e0:6c:d7:cb:1c:9a:08:ea:52:
16:0c:31:04:79:25:ac:9f:b2:df:d3:08:62:c5:29:
e8:fb:0f:b3:79:0a:d6:1c:b8:12:f5:9f:ac:69:a0:
86:59:5d:49:ae:78:c3:01:3a:dd:fb:19:67:cd:b5:
6c:8f:07:24:24:09:95:0c:5b:e8:f8:5d:9a:f3:06:
aa:6b:62:88:a9:2e:a2:3f:47:8e:36:1b:d4:0c:8b:
a4:e0:67:61:f9:8e:e2:d0:ce:45:d3:7b:51:2e:90:
4c:0f:44:96:90:db:0d:b5:69:8b:0e:0c:eb:98:26:
12:58:c9:26:49:24:48:6c:ce:d7:b1:9d:18:e4:b4:
07:ec:ed:51:7c:d3:71:ef:e3:5d:92:b4:d4:c4:5a:
52:aa:eb:01:95:b6:65:7d:f6:7a:79:7e:12:31:d9:
76:ef:74:1b:7b:40:e1:f5:b5:20:5a:7d:9c:8c:f6:
bb:ee:5e:1e:df:88:b8:5c:03:44:6c:4c:48:69:d9:
98:24:80:8e:b3:a0:44:06:67:a9:a6:4c:84:fd:ae:
78:80:1c:4d:40:88:ff:08:0c:98:9c:11:fa:e9:1d:
8b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:A6:25:15:14:8C:B5:B9:E9:D0:54:FA:C2:40:9F:35:30:BB:5A:0A
X509v3 Authority Key Identifier:
keyid:5E:88:EC:F0:A1:4A:D1:85:73:59:D2:CE:5B:D0:42:B9:F9:6C:7C:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xojs8KFK0YVzWdLOW9BCuflsfN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/211b2e-4e3c-4482-a279-9f0f33532ea3/1/Xojs8KFK0YVzWdLOW9BCuflsfN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:ce:dd:71:53:85:fa:18:0c:56:a4:eb:eb:ed:e6:01:dd:19:
a2:fe:1a:70:eb:3d:3d:06:87:d0:66:f3:70:67:fc:83:ff:db:
da:86:60:f6:49:c8:7c:7f:de:7e:1a:cc:73:98:5e:51:5a:65:
f9:73:86:70:25:38:b9:52:4b:e4:f0:58:5e:6b:56:f0:09:dc:
f2:df:85:42:57:4e:50:ad:97:94:0b:a0:02:5d:c8:43:19:2a:
51:59:7f:48:83:dc:14:4a:76:10:b5:8f:85:67:d3:78:2e:c8:
81:ec:43:ad:09:88:b3:0e:e9:8c:40:09:b0:e9:f2:8d:d1:cc:
2c:bb:63:e1:e3:2a:d2:bd:09:55:50:ab:e4:cd:df:b6:6a:97:
4f:0d:55:19:56:eb:99:6a:da:12:d7:36:fa:f5:3c:92:6a:20:
ad:68:90:b3:f2:67:03:06:74:65:05:67:a9:fe:03:97:a7:bd:
fa:eb:e9:d5:09:0c:33:9b:39:37:ec:9d:73:2b:dd:46:b3:50:
bc:2d:b7:ea:a1:ed:73:67:48:5a:df:2c:23:c9:00:f9:42:dc:
be:0f:50:8f:3b:72:3d:0c:43:15:ab:bc:5a:b9:0f:49:80:f1:
69:4e:d5:3c:94:9a:87:72:20:35:10:98:52:f0:a0:b6:44:44:
e6:c3:0c:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ncqN+s721COaItO3Y/l/VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlODhlY2YwYTE0YWQxODU3MzU5ZDJjZTViZDA0MmI5Zjk2
YzdjZGQwHhcNMjYwMzI2MDAwMTU3WhcNMjYwMzI3MDAwMTU3WjAzMTEwLwYDVQQD
Eyg4NmE2MjUxNTE0OGNiNWI5ZTlkMDU0ZmFjMjQwOWYzNTMwYmI1YTBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyRBI5aPGq52BK9vPHNNkN8oLsJX
XnHJOn/FTHiF/KUSHkrgbNfLHJoI6lIWDDEEeSWsn7Lf0whixSno+w+zeQrWHLgS
9Z+saaCGWV1JrnjDATrd+xlnzbVsjwckJAmVDFvo+F2a8waqa2KIqS6iP0eONhvU
DIuk4Gdh+Y7i0M5F03tRLpBMD0SWkNsNtWmLDgzrmCYSWMkmSSRIbM7XsZ0Y5LQH
7O1RfNNx7+NdkrTUxFpSqusBlbZlffZ6eX4SMdl273Qbe0Dh9bUgWn2cjPa77l4e
34i4XANEbExIadmYJICOs6BEBmeppkyE/a54gBxNQIj/CAyYnBH66R2L7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIamJRUUjLW56dBU+sJAnzUwu1oKMB8GA1UdIwQY
MBaAFF6I7PChStGFc1nSzlvQQrn5bHzdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWG9qczhLRkswWVZ6V2RMT1c5QkN1ZmxzZk4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8yMTFiMmUtNGUzYy00NDgyLWEyNzkt
OWYwZjMzNTMyZWEzLzEvWG9qczhLRkswWVZ6V2RMT1c5QkN1ZmxzZk4wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8yMTFiMmUtNGUzYy00NDgyLWEyNzktOWYwZjMzNTMyZWEz
LzEvWG9qczhLRkswWVZ6V2RMT1c5QkN1ZmxzZk4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfs7dcVOF
+hgMVqTr6+3mAd0Zov4acOs9PQaH0GbzcGf8g//b2oZg9knIfH/efhrMc5heUVpl
+XOGcCU4uVJL5PBYXmtW8Anc8t+FQldOUK2XlAugAl3IQxkqUVl/SIPcFEp2ELWP
hWfTeC7IgexDrQmIsw7pjEAJsOnyjdHMLLtj4eMq0r0JVVCr5M3ftmqXTw1VGVbr
mWraEtc2+vU8kmogrWiQs/JnAwZ0ZQVnqf4Dl6e9+uvp1QkMM5s5N+ydcyvdRrNQ
vC236qHtc2dIWt8sI8kA+ULcvg9QjztyPQxDFau8WrkPSYDxaU7VPJSah3IgNRCY
UvCgtkRE5sMM7A==
-----END CERTIFICATE-----
Generated at Thu Mar 26 08:29:59 2026 by rpki-client