Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
File: XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft (raw, json)
Hash identifier: Mtl1OmLJ7JQ6hGfGDFe5t5UUnlbxXiyUJ6HNPKBiVRE=
Subject key identifier: F8:9A:76:47:AA:6B:D1:6E:58:4A:4E:1D:7B:12:4B:88:1F:79:81:D3
Authority key identifier: 5E:D6:77:2B:90:21:2E:57:72:49:F7:35:6C:21:8E:D1:06:8B:67:76
Certificate issuer: /CN=5ed6772b90212e577249f7356c218ed1068b6776
Certificate serial: 019D2704AE57E47BD41D38528D6EA7A17BF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
Manifest number: 1884
Signing time: Wed 25 Mar 2026 22:01:51 +0000
Manifest this update: Wed 25 Mar 2026 22:01:51 +0000
Manifest next update: Thu 26 Mar 2026 22:01:51 +0000
Files and hashes: 1: XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl (hash: 2EJuwOLBzU2+3h2XBmoQwO8dVC3FA3dJ9fX6KLHHlCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:ae:57:e4:7b:d4:1d:38:52:8d:6e:a7:a1:7b:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ed6772b90212e577249f7356c218ed1068b6776
Validity
Not Before: Mar 25 22:01:51 2026 GMT
Not After : Mar 26 22:01:51 2026 GMT
Subject: CN=f89a7647aa6bd16e584a4e1d7b124b881f7981d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:14:51:82:d1:90:35:18:47:af:35:3e:70:91:
8a:f7:6f:1e:46:13:96:a1:f3:d9:d1:f7:22:d1:63:
00:7d:4e:fb:8e:2c:5a:65:3d:ee:1a:78:bb:4d:00:
fb:50:e8:1f:a6:85:e9:29:e6:82:f7:44:ca:59:e7:
38:9b:86:f8:91:22:c9:44:0a:c0:ce:3d:0e:1c:c6:
8f:d0:35:f1:00:c8:1e:51:59:ba:33:49:5e:c7:1b:
e5:a1:eb:bf:35:5c:96:63:bc:34:18:39:9d:f8:14:
e2:e9:14:af:80:b5:7b:8d:ab:53:90:6b:08:62:6b:
b5:d0:16:53:d7:d7:f5:6c:22:fb:bd:bd:e9:8f:30:
cc:6e:08:e2:63:c2:a7:9e:c4:c5:84:1f:07:fd:78:
cf:12:20:9b:47:5e:2e:5f:5c:4e:1a:fb:d0:29:15:
0f:79:9c:01:bb:cb:0c:83:8f:42:b9:6f:12:e3:a6:
98:89:eb:25:c4:c4:04:80:08:f2:c5:01:fb:5c:01:
2f:42:f9:3a:8d:6a:ee:c1:27:3e:e5:f3:6f:d4:21:
23:5d:dd:1d:19:b4:e5:dd:0c:e0:1a:82:c2:3e:dc:
aa:16:eb:39:26:a9:28:d5:77:47:aa:ee:5f:45:6c:
fa:f5:d7:b5:0e:91:7a:2b:bb:66:8e:86:21:c3:ed:
f4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:9A:76:47:AA:6B:D1:6E:58:4A:4E:1D:7B:12:4B:88:1F:79:81:D3
X509v3 Authority Key Identifier:
keyid:5E:D6:77:2B:90:21:2E:57:72:49:F7:35:6C:21:8E:D1:06:8B:67:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/f5ee76-eeae-436c-8843-862106853860/1/XtZ3K5AhLldySfc1bCGO0QaLZ3Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:87:4f:75:6c:e1:0a:f9:9a:a7:8c:97:98:f5:2d:eb:57:4f:
f3:64:53:32:e1:f2:d9:bc:c3:57:f1:9c:30:4a:f4:77:8a:e7:
58:21:42:af:fa:4f:b5:cc:d2:2f:c0:6d:77:40:82:50:a1:df:
61:ac:d0:61:1e:e5:66:e8:04:ab:d1:eb:65:a7:04:4c:1e:79:
29:de:73:d5:2f:29:9e:f7:eb:fe:3a:10:82:e7:58:87:2e:5c:
e3:23:1e:5d:48:2a:ee:68:b0:14:b1:04:e3:35:b4:b1:6a:77:
46:43:4b:74:35:6d:d1:0e:f0:3a:af:ec:91:85:57:cc:af:8f:
f5:d3:fd:ab:16:b0:5e:3b:e4:46:51:22:49:4b:9c:9b:b2:48:
41:0b:68:e8:9e:dd:42:5e:f2:a2:cc:12:eb:1c:7a:da:1d:a3:
8c:f1:fe:7b:b9:b3:8b:a2:cb:9e:9e:f1:71:e1:7e:04:c8:79:
cf:cc:25:fe:0f:22:97:48:71:de:c9:df:86:de:14:2b:d8:b8:
7b:ce:79:ab:ac:50:0d:49:d6:fa:18:14:68:03:3f:55:56:6c:
ff:fd:1d:7b:67:4d:f0:fd:74:83:1f:2c:91:32:18:f1:65:bc:
2e:c7:2c:cd:99:5c:82:42:f7:8a:37:b9:b3:d3:9e:91:0a:e8:
c9:41:00:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBK5X5HvUHThSjW6noXv3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZDY3NzJiOTAyMTJlNTc3MjQ5ZjczNTZjMjE4ZWQxMDY4
YjY3NzYwHhcNMjYwMzI1MjIwMTUxWhcNMjYwMzI2MjIwMTUxWjAzMTEwLwYDVQQD
EyhmODlhNzY0N2FhNmJkMTZlNTg0YTRlMWQ3YjEyNGI4ODFmNzk4MWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBRRgtGQNRhHrzU+cJGK928eRhOW
ofPZ0fci0WMAfU77jixaZT3uGni7TQD7UOgfpoXpKeaC90TKWec4m4b4kSLJRArA
zj0OHMaP0DXxAMgeUVm6M0lexxvloeu/NVyWY7w0GDmd+BTi6RSvgLV7jatTkGsI
Ymu10BZT19f1bCL7vb3pjzDMbgjiY8KnnsTFhB8H/XjPEiCbR14uX1xOGvvQKRUP
eZwBu8sMg49CuW8S46aYieslxMQEgAjyxQH7XAEvQvk6jWruwSc+5fNv1CEjXd0d
GbTl3QzgGoLCPtyqFus5Jqko1XdHqu5fRWz69de1DpF6K7tmjoYhw+30ywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPiadkeqa9FuWEpOHXsSS4gfeYHTMB8GA1UdIwQY
MBaAFF7WdyuQIS5Xckn3NWwhjtEGi2d2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9mNWVlNzYtZWVhZS00MzZjLTg4NDMt
ODYyMTA2ODUzODYwLzEvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy9mNWVlNzYtZWVhZS00MzZjLTg4NDMtODYyMTA2ODUzODYw
LzEvWHRaM0s1QWhMbGR5U2ZjMWJDR08wUWFMWjNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApIdPdWzh
Cvmap4yXmPUt61dP82RTMuHy2bzDV/GcMEr0d4rnWCFCr/pPtczSL8Btd0CCUKHf
YazQYR7lZugEq9HrZacETB55Kd5z1S8pnvfr/joQgudYhy5c4yMeXUgq7miwFLEE
4zW0sWp3RkNLdDVt0Q7wOq/skYVXzK+P9dP9qxawXjvkRlEiSUucm7JIQQto6J7d
Ql7yoswS6xx62h2jjPH+e7mzi6LLnp7xceF+BMh5z8wl/g8il0hx3snfht4UK9i4
e855q6xQDUnW+hgUaAM/VVZs//0de2dN8P10gx8skTIY8WW8LscszZlcgkL3ije5
s9OekQroyUEAyg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:07 2026 by rpki-client