Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
File: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft (raw, json)
Hash identifier: F/SU8uz++rgW7wyAL4OJDJn5Vu9IGnfJIr4h9iZneN4=
Subject key identifier: 18:83:07:E2:9A:F9:1D:75:ED:3E:E8:0B:9F:19:F5:22:86:97:E5:73
Authority key identifier: 5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
Certificate issuer: /CN=5e803b66b306008fb172c2dfd522b5655057360d
Certificate serial: 019D273A8FC56822DE2CA96D5B38B778F1AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
Manifest number: 14A6
Signing time: Wed 25 Mar 2026 23:00:42 +0000
Manifest this update: Wed 25 Mar 2026 23:00:42 +0000
Manifest next update: Thu 26 Mar 2026 23:00:42 +0000
Files and hashes: 1: XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl (hash: zhWORrvUO564Y37maACIszOtZOuXWEyJn/3QKUj8tVk=)
2: fWRyoPqsq-qBSdxIWeERvOiM9FQ.roa (hash: xi+aWZFnVHDnRFBiu1WZojI31+OjhpCl/iLDjILOSEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:8f:c5:68:22:de:2c:a9:6d:5b:38:b7:78:f1:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e803b66b306008fb172c2dfd522b5655057360d
Validity
Not Before: Mar 25 23:00:42 2026 GMT
Not After : Mar 26 23:00:42 2026 GMT
Subject: CN=188307e29af91d75ed3ee80b9f19f5228697e573
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c2:17:33:ee:66:4a:ac:89:03:fc:8a:d1:5c:
d2:0f:7d:de:0f:6f:fb:d6:ae:2f:ee:d3:49:63:8d:
cc:53:db:b9:9e:f9:75:e8:ff:56:95:ed:41:06:6e:
f1:f5:4d:b5:9a:f9:31:cd:7d:c2:b7:d0:4e:0f:9b:
bc:6b:f3:1f:9b:ce:46:7d:12:c9:d3:bc:51:1c:ea:
1e:c4:fc:aa:db:81:31:a8:9f:39:18:1d:d0:48:07:
8c:0f:34:90:89:7d:e4:50:55:7e:8e:97:90:1d:4d:
fa:e1:63:84:63:54:ed:91:2d:ae:34:93:a8:f1:50:
37:d4:1e:fe:4d:2e:d9:1f:48:8f:78:aa:7c:94:9e:
68:a4:10:6f:b4:d0:d0:a3:56:57:c1:ae:c3:e4:5c:
9a:44:15:c3:8e:c7:d9:5d:98:1f:01:f2:93:33:82:
1b:f4:94:a3:27:88:01:3b:96:e0:04:07:b0:90:12:
4c:f2:2c:ae:42:a4:bb:ba:ab:c9:fe:d9:51:4f:2e:
66:d1:bb:31:42:db:1b:74:a2:f2:fb:21:01:31:a7:
eb:6e:8d:11:e0:f6:6b:50:31:1b:72:dd:ac:0e:b0:
7a:21:41:75:17:64:f4:df:d2:4e:11:e2:98:de:0f:
d1:39:0d:1b:b7:56:ac:fe:c5:cf:cd:05:0f:0a:9b:
7e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:83:07:E2:9A:F9:1D:75:ED:3E:E8:0B:9F:19:F5:22:86:97:E5:73
X509v3 Authority Key Identifier:
keyid:5E:80:3B:66:B3:06:00:8F:B1:72:C2:DF:D5:22:B5:65:50:57:36:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9d342c-7ce7-4c69-aece-938506a9f2a7/1/XoA7ZrMGAI-xcsLf1SK1ZVBXNg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:d1:ed:00:80:cf:21:1d:7d:f2:9c:1a:d8:d4:b7:1c:a7:31:
17:3c:2f:81:18:14:08:37:9d:a6:c9:04:b8:3a:f3:93:66:c5:
8e:77:21:18:33:f6:b0:91:d7:24:93:da:19:25:5c:94:e1:71:
9f:e2:d1:ff:84:f8:09:0b:b4:a0:2e:e4:af:96:5d:ba:09:4f:
54:28:70:69:56:fd:57:de:79:1d:72:54:5b:1d:81:83:82:d5:
9f:46:a7:df:2a:24:a2:83:e1:35:fd:b6:ae:a4:5b:d5:1d:af:
fd:06:a5:c1:7c:f4:41:d0:d0:86:3e:1b:ba:10:24:27:ec:f0:
14:e0:e2:8f:f1:9f:4d:2d:58:15:b8:2d:52:b5:83:24:30:7c:
58:34:0b:86:ff:31:36:54:41:51:88:87:35:7e:12:3a:27:76:
19:21:2c:1e:8a:8f:5f:ff:9a:a2:3b:b2:7f:41:f0:50:bf:9f:
32:a4:85:a3:2b:ab:1e:9a:2a:24:88:92:c4:3a:04:e4:59:df:
11:be:dc:1e:b6:c4:65:07:12:b2:a4:59:a4:51:4d:3b:21:07:
bc:65:c8:82:d6:f2:28:73:13:90:c1:17:8b:b0:b7:bc:08:ab:
8c:68:bb:4c:7d:65:3e:95:98:02:64:26:8c:a6:b5:fb:63:d1:
c4:14:ae:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOo/FaCLeLKltWzi3ePGuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlODAzYjY2YjMwNjAwOGZiMTcyYzJkZmQ1MjJiNTY1NTA1
NzM2MGQwHhcNMjYwMzI1MjMwMDQyWhcNMjYwMzI2MjMwMDQyWjAzMTEwLwYDVQQD
EygxODgzMDdlMjlhZjkxZDc1ZWQzZWU4MGI5ZjE5ZjUyMjg2OTdlNTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzsIXM+5mSqyJA/yK0VzSD33eD2/7
1q4v7tNJY43MU9u5nvl16P9Wle1BBm7x9U21mvkxzX3Ct9BOD5u8a/Mfm85GfRLJ
07xRHOoexPyq24ExqJ85GB3QSAeMDzSQiX3kUFV+jpeQHU364WOEY1TtkS2uNJOo
8VA31B7+TS7ZH0iPeKp8lJ5opBBvtNDQo1ZXwa7D5FyaRBXDjsfZXZgfAfKTM4Ib
9JSjJ4gBO5bgBAewkBJM8iyuQqS7uqvJ/tlRTy5m0bsxQtsbdKLy+yEBMafrbo0R
4PZrUDEbct2sDrB6IUF1F2T039JOEeKY3g/ROQ0bt1as/sXPzQUPCpt+GwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBiDB+Ka+R117T7oC58Z9SKGl+VzMB8GA1UdIwQY
MBaAFF6AO2azBgCPsXLC39UitWVQVzYNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWG9BN1pyTUdBSS14Y3NMZjFTSzFaVkJYTmcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy85ZDM0MmMtN2NlNy00YzY5LWFlY2Ut
OTM4NTA2YTlmMmE3LzEvWG9BN1pyTUdBSS14Y3NMZjFTSzFaVkJYTmcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy85ZDM0MmMtN2NlNy00YzY5LWFlY2UtOTM4NTA2YTlmMmE3
LzEvWG9BN1pyTUdBSS14Y3NMZjFTSzFaVkJYTmcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb9HtAIDP
IR198pwa2NS3HKcxFzwvgRgUCDedpskEuDrzk2bFjnchGDP2sJHXJJPaGSVclOFx
n+LR/4T4CQu0oC7kr5ZduglPVChwaVb9V955HXJUWx2Bg4LVn0an3yokooPhNf22
rqRb1R2v/QalwXz0QdDQhj4buhAkJ+zwFODij/GfTS1YFbgtUrWDJDB8WDQLhv8x
NlRBUYiHNX4SOid2GSEsHoqPX/+aojuyf0HwUL+fMqSFoyurHpoqJIiSxDoE5Fnf
Eb7cHrbEZQcSsqRZpFFNOyEHvGXIgtbyKHMTkMEXi7C3vAirjGi7TH1lPpWYAmQm
jKa1+2PRxBSudw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:59:22 2026 by rpki-client