Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: 0T80BjUu+rJfWcuCT1jxA6OvAUI5x9TZt7eG1ZNTQhE=
Subject key identifier: FC:56:52:3A:4A:72:EF:D6:7E:80:BA:2B:D8:5C:0C:A6:ED:98:36:B4
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 019D281656075CEE3A209C1B8B8570266BD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 1883
Signing time: Thu 26 Mar 2026 03:00:45 +0000
Manifest this update: Thu 26 Mar 2026 03:00:45 +0000
Manifest next update: Fri 27 Mar 2026 03:00:45 +0000
Files and hashes: 1: sesfpS4vflQUJ0zHNMlqdR_eVFI.roa (hash: EeKCakHwf9lALKZ5zNCtLbT5f2osgE69W3ufAPv/OQY=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: hJW3lxaMmHpFDi5qaUnV/BjR0whWGu8jBx3rbY9Ge0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:56:07:5c:ee:3a:20:9c:1b:8b:85:70:26:6b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Mar 26 03:00:45 2026 GMT
Not After : Mar 27 03:00:45 2026 GMT
Subject: CN=fc56523a4a72efd67e80ba2bd85c0ca6ed9836b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a0:30:85:6a:dc:a3:1e:68:11:6a:b8:f4:1f:
3b:37:68:67:d3:d0:a6:dc:54:4a:07:c9:0a:d0:c1:
b5:e3:9c:41:27:e3:86:4c:d7:7f:84:39:3d:b3:01:
29:ed:18:93:59:7e:1e:bd:e4:c9:c1:dd:8c:c3:75:
0b:5a:c6:41:d3:c8:29:f5:db:7d:ba:07:cb:af:26:
ec:8a:b7:6f:d1:61:61:6a:82:38:f7:a7:e2:1a:e2:
d6:4f:bf:00:02:95:af:27:a9:1a:c6:31:6c:42:12:
ad:d3:01:c3:23:09:8d:22:11:ab:a8:e1:1f:da:d4:
85:d3:1b:39:10:66:62:08:68:11:a2:90:7b:2d:35:
fc:c3:3b:f9:a7:4a:ee:b0:71:5d:36:1b:1a:dd:a7:
47:f9:fa:18:67:c8:e0:e4:b1:ab:6a:c8:60:87:fc:
72:ab:ac:4e:ec:e7:17:6e:48:49:a4:4e:7c:40:d7:
7e:7b:4e:ca:7a:cf:d4:23:b1:56:fe:af:a3:13:6c:
e8:aa:91:0b:ff:fc:f2:e1:89:26:e8:d2:fd:0a:6a:
ac:84:81:c1:2c:0b:fe:92:70:3c:bc:49:4a:65:0e:
4c:0c:b1:67:d3:f9:88:0c:80:a7:4e:97:ef:99:14:
6f:44:7f:bc:f8:bc:fd:a0:9a:6c:e2:47:2a:7b:94:
9f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:56:52:3A:4A:72:EF:D6:7E:80:BA:2B:D8:5C:0C:A6:ED:98:36:B4
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:4b:e4:02:02:93:fb:0f:1c:0a:5d:ae:55:cd:27:41:d8:2c:
5e:40:71:fd:78:42:e5:d8:9a:63:8a:4e:00:d6:ae:fd:61:b0:
13:7e:81:0b:f0:31:e6:a7:53:87:42:55:7f:92:9f:44:67:cd:
ea:ac:1b:d6:13:dd:12:10:fd:90:47:ba:37:30:b1:b2:75:ee:
fc:44:92:d7:ae:00:9b:28:78:ea:06:a8:33:23:28:f0:26:59:
b5:a8:3c:d5:1a:01:45:1d:36:5f:52:25:b6:0b:a0:bb:43:9f:
16:df:ba:c3:10:c7:c0:7a:c4:66:c9:2d:84:31:9d:09:8e:64:
18:a4:c3:42:2a:4d:8d:fb:bf:b8:ba:86:6a:b9:de:d3:21:6c:
a7:2a:17:cc:dd:cf:86:99:67:5a:27:a4:f1:ac:38:44:2d:9d:
15:a1:3c:2b:cf:0c:d8:57:16:4d:00:48:f5:a8:57:47:e9:85:
df:8e:97:6e:26:ea:ec:bc:67:fc:d9:54:3d:dd:88:31:43:e7:
c3:0d:a4:75:cb:24:be:8a:84:2a:97:3e:51:0f:97:a5:e6:04:
13:88:3f:ab:74:8c:2e:2d:59:66:0c:62:2c:0d:cf:74:ea:f1:
b3:e4:02:c7:87:d9:e2:e6:fb:a9:f8:4a:ad:84:de:0e:0d:da:
9c:62:4a:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oFlYHXO46IJwbi4VwJmvWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0MTJiYjNkYTY1Y2FhYjUyNDg1MWVmODZjZTliYWE2MjA3
NGUxZWQwHhcNMjYwMzI2MDMwMDQ1WhcNMjYwMzI3MDMwMDQ1WjAzMTEwLwYDVQQD
EyhmYzU2NTIzYTRhNzJlZmQ2N2U4MGJhMmJkODVjMGNhNmVkOTgzNmI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqAwhWrcox5oEWq49B87N2hn09Cm
3FRKB8kK0MG145xBJ+OGTNd/hDk9swEp7RiTWX4eveTJwd2Mw3ULWsZB08gp9dt9
ugfLrybsirdv0WFhaoI496fiGuLWT78AApWvJ6kaxjFsQhKt0wHDIwmNIhGrqOEf
2tSF0xs5EGZiCGgRopB7LTX8wzv5p0rusHFdNhsa3adH+foYZ8jg5LGrashgh/xy
q6xO7OcXbkhJpE58QNd+e07Kes/UI7FW/q+jE2zoqpEL//zy4Ykm6NL9CmqshIHB
LAv+knA8vElKZQ5MDLFn0/mIDICnTpfvmRRvRH+8+Lz9oJps4kcqe5SfBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPxWUjpKcu/WfoC6K9hcDKbtmDa0MB8GA1UdIwQY
MBaAFMQSuz2mXKq1JIUe+GzpuqYgdOHtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEJLN1BhWmNxclVraFI3NGJPbTZwaUIwNGUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jNzg3MWMtNTFkOS00NjNkLWFjYjgt
OWI5MzJlY2QyZWNjLzEveEJLN1BhWmNxclVraFI3NGJPbTZwaUIwNGUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9jNzg3MWMtNTFkOS00NjNkLWFjYjgtOWI5MzJlY2QyZWNj
LzEveEJLN1BhWmNxclVraFI3NGJPbTZwaUIwNGUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0UvkAgKT
+w8cCl2uVc0nQdgsXkBx/XhC5diaY4pOANau/WGwE36BC/Ax5qdTh0JVf5KfRGfN
6qwb1hPdEhD9kEe6NzCxsnXu/ESS164Amyh46gaoMyMo8CZZtag81RoBRR02X1Il
tgugu0OfFt+6wxDHwHrEZskthDGdCY5kGKTDQipNjfu/uLqGarne0yFspyoXzN3P
hplnWiek8aw4RC2dFaE8K88M2FcWTQBI9ahXR+mF346Xbibq7Lxn/NlUPd2IMUPn
ww2kdcskvoqEKpc+UQ+XpeYEE4g/q3SMLi1ZZgxiLA3PdOrxs+QCx4fZ4ub7qfhK
rYTeDg3anGJK0g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:21:20 2026 by rpki-client