Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
File: xdXOafzPDGu44rJmfh44-5QPPSY.mft (raw, json)
Hash identifier: 95WzSOhzxOydC2MnqQxk2GhrOMP7zORmyx4GhnaE7MQ=
Subject key identifier: CC:E8:26:A0:59:FB:92:4F:EC:BD:A2:27:42:80:FF:E9:A0:E5:28:90
Authority key identifier: C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
Certificate issuer: /CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Certificate serial: 019D33087F8A4359148A87B161D9499C6CAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
Manifest number: 0CF8
Signing time: Sat 28 Mar 2026 06:01:28 +0000
Manifest this update: Sat 28 Mar 2026 06:01:28 +0000
Manifest next update: Sun 29 Mar 2026 06:01:28 +0000
Files and hashes: 1: 1-pMzy3XW1_dYsnUwH5bbwkr_jQA.roa (hash: bK9K2skyngCiWtdJ+6ql0BuVrZBCPHHAO74b5mBhnYY=)
2: xdXOafzPDGu44rJmfh44-5QPPSY.crl (hash: /Mdw6gn3GBHFJG3qCN+mkOLCSj8u/H+De9M2BG8lsic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:08:7f:8a:43:59:14:8a:87:b1:61:d9:49:9c:6c:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5d5ce69fccf0c6bb8e2b2667e1e38fb940f3d26
Validity
Not Before: Mar 28 06:01:28 2026 GMT
Not After : Mar 29 06:01:28 2026 GMT
Subject: CN=cce826a059fb924fecbda2274280ffe9a0e52890
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e0:d6:81:f7:a4:e1:37:b1:db:49:95:2e:fd:
b1:87:4c:2c:50:a6:dc:7e:77:6e:3f:95:02:2c:80:
8d:e8:79:c7:4a:25:ed:56:30:47:fb:54:42:77:4b:
9a:bf:45:6f:96:b8:e0:b9:0f:4c:43:6d:aa:27:21:
ab:96:fb:46:67:b5:ae:21:e0:ee:bc:23:3a:df:1b:
3e:2a:7f:27:1d:55:b7:bd:59:e3:10:84:a3:56:24:
45:64:04:44:b8:32:df:32:8f:28:70:e5:46:26:b9:
96:fc:3b:ad:73:56:4d:9f:77:fd:78:c9:8a:25:ef:
8e:53:81:0f:b5:15:68:86:74:77:7d:b9:16:e1:78:
57:44:18:84:93:59:0b:73:4b:07:4a:5c:6e:8c:20:
46:68:c2:da:09:0a:ef:f1:72:42:26:0b:a4:bc:37:
be:35:cc:8d:e0:ab:1a:88:60:76:51:2d:af:37:1e:
0b:37:bf:24:47:36:08:85:80:7b:14:b9:73:bd:60:
5a:7e:73:7c:9d:0b:c1:cf:f4:8f:22:a2:79:23:31:
04:60:b9:e6:21:75:6d:54:81:f4:da:05:ac:da:fc:
9a:b6:84:c2:b1:a4:31:a7:fb:18:5e:81:16:54:ca:
ea:68:2f:f5:30:c6:fd:26:10:2c:b8:f8:ee:17:d3:
60:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:E8:26:A0:59:FB:92:4F:EC:BD:A2:27:42:80:FF:E9:A0:E5:28:90
X509v3 Authority Key Identifier:
keyid:C5:D5:CE:69:FC:CF:0C:6B:B8:E2:B2:66:7E:1E:38:FB:94:0F:3D:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xdXOafzPDGu44rJmfh44-5QPPSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a282cd-ee30-49c3-9c9e-471db7eb719e/1/xdXOafzPDGu44rJmfh44-5QPPSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:37:04:c2:63:27:8e:f1:f5:31:ef:c0:5e:d6:23:0d:82:0b:
4a:f1:6e:2a:e9:b5:42:38:16:85:53:39:15:df:08:45:a0:3c:
b2:05:7d:a7:e8:28:33:84:21:40:90:fa:4f:8c:fc:cc:8d:49:
ee:8d:03:3d:b8:7a:79:8a:cd:b8:d9:8a:9c:56:8d:99:f2:b9:
14:59:fa:95:2b:f7:c9:6d:4d:1f:ef:78:7e:65:4d:5b:2e:2f:
ea:e8:b3:84:b5:0f:eb:af:9e:22:0e:fe:c8:7a:fa:54:94:c4:
b6:b5:28:f6:42:4b:ad:05:89:f4:5d:c9:86:3d:fe:69:d4:d7:
5f:c3:ac:a6:39:16:81:ef:3e:14:a1:4a:f5:a2:ef:4a:a9:25:
35:b0:60:1c:66:42:d0:91:05:9d:75:4a:64:46:63:6b:98:3c:
96:e3:7e:54:43:d7:49:56:6d:12:34:65:b7:d9:fb:33:97:42:
a0:c7:a2:38:d4:5f:7c:3f:9a:bb:7e:eb:d2:a8:81:a5:df:37:
7a:04:f5:eb:43:3a:a7:3f:77:4b:75:c5:5c:e1:25:d8:15:38:
fe:08:92:50:94:eb:26:5a:54:b5:cd:82:3f:78:1e:c4:81:5a:
6d:cc:45:96:b0:43:03:ab:11:90:7a:58:84:99:18:b5:29:3c:
30:88:b5:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0zCH+KQ1kUioexYdlJnGyrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1ZDVjZTY5ZmNjZjBjNmJiOGUyYjI2NjdlMWUzOGZiOTQw
ZjNkMjYwHhcNMjYwMzI4MDYwMTI4WhcNMjYwMzI5MDYwMTI4WjAzMTEwLwYDVQQD
EyhjY2U4MjZhMDU5ZmI5MjRmZWNiZGEyMjc0MjgwZmZlOWEwZTUyODkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweDWgfek4Tex20mVLv2xh0wsUKbc
fnduP5UCLICN6HnHSiXtVjBH+1RCd0uav0VvlrjguQ9MQ22qJyGrlvtGZ7WuIeDu
vCM63xs+Kn8nHVW3vVnjEISjViRFZAREuDLfMo8ocOVGJrmW/Dutc1ZNn3f9eMmK
Je+OU4EPtRVohnR3fbkW4XhXRBiEk1kLc0sHSlxujCBGaMLaCQrv8XJCJgukvDe+
NcyN4KsaiGB2US2vNx4LN78kRzYIhYB7FLlzvWBafnN8nQvBz/SPIqJ5IzEEYLnm
IXVtVIH02gWs2vyatoTCsaQxp/sYXoEWVMrqaC/1MMb9JhAsuPjuF9NgcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMzoJqBZ+5JP7L2iJ0KA/+mg5SiQMB8GA1UdIwQY
MBaAFMXVzmn8zwxruOKyZn4eOPuUDz0mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hMjgyY2QtZWUzMC00OWMzLTljOWUt
NDcxZGI3ZWI3MTllLzEveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9hMjgyY2QtZWUzMC00OWMzLTljOWUtNDcxZGI3ZWI3MTll
LzEveGRYT2FmelBER3U0NHJKbWZoNDQtNVFQUFNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXTcEwmMn
jvH1Me/AXtYjDYILSvFuKum1QjgWhVM5Fd8IRaA8sgV9p+goM4QhQJD6T4z8zI1J
7o0DPbh6eYrNuNmKnFaNmfK5FFn6lSv3yW1NH+94fmVNWy4v6uizhLUP66+eIg7+
yHr6VJTEtrUo9kJLrQWJ9F3Jhj3+adTXX8OspjkWge8+FKFK9aLvSqklNbBgHGZC
0JEFnXVKZEZja5g8luN+VEPXSVZtEjRlt9n7M5dCoMeiONRffD+au37r0qiBpd83
egT160M6pz93S3XFXOEl2BU4/giSUJTrJlpUtc2CP3gexIFabcxFlrBDA6sRkHpY
hJkYtSk8MIi1KA==
-----END CERTIFICATE-----
Generated at Sat Mar 28 10:34:05 2026 by rpki-client