Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
File: xcgmUInL3eamxXnNd2tfgMD4rdQ.mft (raw, json)
Hash identifier: bJ1FR+t89j2tY0q4NpphUwItTX2tbdt7LY2iQBr4JM8=
Subject key identifier: 37:0F:22:39:88:9C:29:7F:9D:B9:C6:EA:5F:14:61:3D:5C:80:4D:C0
Authority key identifier: C5:C8:26:50:89:CB:DD:E6:A6:C5:79:CD:77:6B:5F:80:C0:F8:AD:D4
Certificate issuer: /CN=c5c8265089cbdde6a6c579cd776b5f80c0f8add4
Certificate serial: 019D29615A1CC6F4478192F3B22F1908DD72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
Manifest number: 039F
Signing time: Thu 26 Mar 2026 09:02:19 +0000
Manifest this update: Thu 26 Mar 2026 09:02:19 +0000
Manifest next update: Fri 27 Mar 2026 09:02:19 +0000
Files and hashes: 1: m7FhPhHs11a2vSve5xnlsfFohsw.roa (hash: hMpM0IenW1hqeUpQGO4ux70XpFaz54EzPiQ0jMGVOds=)
2: xcgmUInL3eamxXnNd2tfgMD4rdQ.crl (hash: u3abmeBmh0PhI2GK9lnwKedvPFM0bkXl2kyR1QHHRbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:5a:1c:c6:f4:47:81:92:f3:b2:2f:19:08:dd:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5c8265089cbdde6a6c579cd776b5f80c0f8add4
Validity
Not Before: Mar 26 09:02:19 2026 GMT
Not After : Mar 27 09:02:19 2026 GMT
Subject: CN=370f2239889c297f9db9c6ea5f14613d5c804dc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:3e:43:2c:65:b8:22:2a:d1:cb:57:92:e7:1e:
df:1b:d7:51:80:c9:d4:f5:ad:17:8a:a8:0e:bb:15:
6e:ba:16:99:3d:8c:72:a9:a3:b8:05:a2:c3:6a:15:
7a:9c:c5:cd:85:91:5e:15:6b:19:43:f7:bc:47:99:
6c:cb:b7:b1:55:3f:cb:84:cd:54:69:1d:12:08:d1:
4a:03:00:42:aa:f1:b9:9f:fc:81:b5:9a:83:cd:36:
a1:4d:32:60:bc:90:1e:f6:c3:48:c1:dc:fa:01:7d:
a6:f5:82:45:b5:53:55:a1:8c:69:83:42:56:b7:83:
7e:f5:a1:cc:2d:be:6a:b4:e1:52:bb:19:eb:d1:f6:
67:fd:a0:be:f7:e8:b7:8e:a2:14:58:01:e3:93:cd:
15:dd:3d:91:a7:55:a6:7c:15:35:88:32:54:f0:37:
7c:87:f8:24:43:05:4a:cb:d1:b3:e1:38:95:c0:7f:
b2:86:a9:77:db:05:b3:0c:2a:fe:8c:3a:5c:8e:48:
87:1e:29:2b:fe:a4:77:7e:b3:f5:ae:ed:42:07:a2:
8a:2a:d2:7e:cc:7d:a0:bf:93:e4:05:7c:82:bd:af:
bc:6a:21:80:a4:d9:07:a0:06:31:e3:21:0e:00:97:
70:54:27:8c:bd:c3:7c:15:98:52:cd:8f:2d:1a:f9:
67:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:0F:22:39:88:9C:29:7F:9D:B9:C6:EA:5F:14:61:3D:5C:80:4D:C0
X509v3 Authority Key Identifier:
keyid:C5:C8:26:50:89:CB:DD:E6:A6:C5:79:CD:77:6B:5F:80:C0:F8:AD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xcgmUInL3eamxXnNd2tfgMD4rdQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/48c7ec-0c75-41c4-85aa-438820fba254/1/xcgmUInL3eamxXnNd2tfgMD4rdQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:a9:26:f6:ec:54:c3:ff:2e:ad:83:15:82:27:d7:83:f4:c8:
8d:76:05:73:76:b7:0d:94:a8:8b:bd:8c:17:6e:3b:11:ff:ba:
d7:48:73:7b:d2:5f:f3:c8:bf:3a:bc:e1:b8:53:2e:40:a2:35:
ce:a8:f7:96:a8:15:cb:86:22:e2:3d:56:65:f9:8a:80:4c:b8:
d1:5a:91:86:cd:be:81:41:0b:9c:a9:d9:14:7d:54:53:59:24:
91:80:80:cf:e9:c7:1d:e6:b7:83:f6:a7:ec:15:02:4d:9a:cc:
38:fe:11:39:d5:01:7e:80:fa:0c:70:11:73:c6:71:a0:5d:b7:
f2:fa:54:fe:94:9c:40:d9:58:ed:c8:93:d8:c3:9a:e8:b2:fd:
c4:35:25:a1:3f:8d:28:11:a6:e8:f2:8a:a1:18:d9:c0:2e:a6:
23:c6:c1:de:c3:3c:26:69:52:7d:50:44:44:44:99:4e:03:de:
8d:d8:c9:78:d0:f8:d2:b6:86:5f:49:ef:07:8f:ed:8a:e8:fb:
35:1d:13:47:f5:99:fb:3d:7d:85:54:32:b7:a1:b9:5d:79:dd:
14:89:09:1f:33:e3:a4:57:cd:d4:ce:fd:6e:0f:a3:c4:4c:f2:
fd:6d:3d:ff:c0:ae:25:d2:16:63:90:29:7c:37:1c:15:bd:7e:
ce:f6:9b:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pYVocxvRHgZLzsi8ZCN1yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1YzgyNjUwODljYmRkZTZhNmM1NzljZDc3NmI1ZjgwYzBm
OGFkZDQwHhcNMjYwMzI2MDkwMjE5WhcNMjYwMzI3MDkwMjE5WjAzMTEwLwYDVQQD
EygzNzBmMjIzOTg4OWMyOTdmOWRiOWM2ZWE1ZjE0NjEzZDVjODA0ZGMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7z5DLGW4IirRy1eS5x7fG9dRgMnU
9a0XiqgOuxVuuhaZPYxyqaO4BaLDahV6nMXNhZFeFWsZQ/e8R5lsy7exVT/LhM1U
aR0SCNFKAwBCqvG5n/yBtZqDzTahTTJgvJAe9sNIwdz6AX2m9YJFtVNVoYxpg0JW
t4N+9aHMLb5qtOFSuxnr0fZn/aC+9+i3jqIUWAHjk80V3T2Rp1WmfBU1iDJU8Dd8
h/gkQwVKy9Gz4TiVwH+yhql32wWzDCr+jDpcjkiHHikr/qR3frP1ru1CB6KKKtJ+
zH2gv5PkBXyCva+8aiGApNkHoAYx4yEOAJdwVCeMvcN8FZhSzY8tGvlnRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDcPIjmInCl/nbnG6l8UYT1cgE3AMB8GA1UdIwQY
MBaAFMXIJlCJy93mpsV5zXdrX4DA+K3UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGNnbVVJbkwzZWFteFhuTmQydGZnTUQ0cmRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi80OGM3ZWMtMGM3NS00MWM0LTg1YWEt
NDM4ODIwZmJhMjU0LzEveGNnbVVJbkwzZWFteFhuTmQydGZnTUQ0cmRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZi80OGM3ZWMtMGM3NS00MWM0LTg1YWEtNDM4ODIwZmJhMjU0
LzEveGNnbVVJbkwzZWFteFhuTmQydGZnTUQ0cmRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkakm9uxU
w/8urYMVgifXg/TIjXYFc3a3DZSoi72MF247Ef+610hze9Jf88i/OrzhuFMuQKI1
zqj3lqgVy4Yi4j1WZfmKgEy40VqRhs2+gUELnKnZFH1UU1kkkYCAz+nHHea3g/an
7BUCTZrMOP4ROdUBfoD6DHARc8ZxoF238vpU/pScQNlY7ciT2MOa6LL9xDUloT+N
KBGm6PKKoRjZwC6mI8bB3sM8JmlSfVBERESZTgPejdjJeND40raGX0nvB4/tiuj7
NR0TR/WZ+z19hVQyt6G5XXndFIkJHzPjpFfN1M79bg+jxEzy/W09/8CuJdIWY5Ap
fDccFb1+zvabDg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:29:40 2026 by rpki-client