Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
File: XHbv8miEvwBiB9cis7AaRNK1YZk.mft (raw, json)
Hash identifier: k4BwsmNBbtnhlHNl5k6Cj+Zmh0/bThoIzfqPDYjfoos=
Subject key identifier: A9:7F:DC:37:60:42:DC:99:27:1B:2B:9E:1F:53:31:60:AF:DB:DB:71
Authority key identifier: 5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
Certificate issuer: /CN=5c76eff26884bf006207d722b3b01a44d2b56199
Certificate serial: 019D28BBD4233CF07E9E2DCC267A221562F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
Manifest number: 10BE
Signing time: Thu 26 Mar 2026 06:01:31 +0000
Manifest this update: Thu 26 Mar 2026 06:01:31 +0000
Manifest next update: Fri 27 Mar 2026 06:01:31 +0000
Files and hashes: 1: XHbv8miEvwBiB9cis7AaRNK1YZk.crl (hash: pAUJQ+zSRH3iTS8kqn+4PRqudEW/kv5wUVy4ckk8F94=)
2: _YZBO3azDWzDB7ElIM22F0xnwLk.roa (hash: 4qcIMPGCjL8+gfTaAVV6FW+AJO4ktZWbZTXBgVeKur0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:d4:23:3c:f0:7e:9e:2d:cc:26:7a:22:15:62:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c76eff26884bf006207d722b3b01a44d2b56199
Validity
Not Before: Mar 26 06:01:31 2026 GMT
Not After : Mar 27 06:01:31 2026 GMT
Subject: CN=a97fdc376042dc99271b2b9e1f533160afdbdb71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:cc:c5:68:87:f9:50:aa:96:9a:c1:ad:e5:7f:
51:21:65:72:ff:c8:be:16:09:a0:76:63:09:fa:e0:
b9:00:60:9c:17:b2:ac:31:85:64:bd:ca:ee:54:78:
7b:de:26:d5:a3:e7:7a:46:ec:6d:0a:a2:4c:af:d3:
b9:83:d6:02:af:4e:7d:53:75:e1:8f:f9:d3:1d:24:
5d:e0:18:12:d6:02:66:45:f2:4d:53:74:c4:ee:2e:
30:60:a6:1a:67:35:d1:d3:42:1f:da:61:88:c4:9e:
aa:ac:fc:c9:af:d4:fe:94:38:26:01:9a:d3:ec:b2:
8b:26:da:7a:cb:92:66:bd:de:ec:98:5d:2d:0d:cc:
5a:99:d1:ff:de:39:ee:e6:b5:64:98:aa:e0:c8:33:
fb:43:79:ba:7a:ec:fc:6d:a6:85:d2:cf:d1:ab:16:
b6:34:29:22:ce:ec:71:6a:7b:80:b3:4c:17:cc:af:
b6:ae:2b:15:a5:66:28:f0:42:ba:55:18:9d:ae:c7:
c6:45:53:d7:a2:65:c8:1c:18:3e:39:c6:68:d4:43:
ee:ed:f3:d6:59:58:a3:fa:37:82:62:ad:72:40:98:
78:ba:6a:38:7a:41:1a:c7:e6:de:5e:57:c3:e6:da:
b8:a3:4f:1a:46:84:c9:ba:4b:5a:a4:8a:f7:5b:ea:
dc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:7F:DC:37:60:42:DC:99:27:1B:2B:9E:1F:53:31:60:AF:DB:DB:71
X509v3 Authority Key Identifier:
keyid:5C:76:EF:F2:68:84:BF:00:62:07:D7:22:B3:B0:1A:44:D2:B5:61:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHbv8miEvwBiB9cis7AaRNK1YZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/862232-58d7-4c1d-b198-660411b9d167/1/XHbv8miEvwBiB9cis7AaRNK1YZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:1c:d5:9d:d6:b2:cb:c1:79:66:7c:45:56:e2:3e:11:8f:62:
f4:59:c6:ea:86:da:bd:7b:a5:19:d0:45:f8:5a:4c:70:7a:82:
28:b7:53:40:11:ef:a8:ae:af:d1:eb:e5:ce:f3:ba:e0:c7:6a:
94:bc:7e:06:f9:d9:2d:0a:5d:9c:8a:4c:20:2d:c9:db:79:0d:
58:81:33:8a:eb:7b:72:43:28:1f:be:30:b2:f0:70:52:ee:c8:
8f:0a:86:38:5f:76:ba:a5:52:82:78:8f:d4:91:6a:a3:cb:13:
41:e9:6c:8d:da:7f:29:6f:de:0f:70:e4:e0:1d:1a:84:a2:d4:
be:f7:47:e5:2d:5f:75:1e:86:ad:d7:27:7c:9b:b6:3a:ba:78:
27:78:76:31:fb:63:00:b2:23:87:24:82:74:6f:30:28:6f:0e:
b2:5a:a7:95:d0:7e:28:cb:ca:28:e1:4c:58:ba:66:36:9c:9d:
12:f9:ca:b7:db:be:9a:3c:dc:45:d8:81:04:5e:c6:a2:7a:83:
a5:a0:af:a1:af:47:ac:ae:4e:21:b3:79:df:45:56:5f:dd:5b:
e9:8c:97:22:55:81:c2:ff:3d:57:61:f9:c3:5e:22:f0:25:d3:
f4:9d:92:57:4a:a3:ad:35:80:e3:08:00:fd:fd:6d:7c:ef:3c:
ef:61:9d:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ou9QjPPB+ni3MJnoiFWLyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNzZlZmYyNjg4NGJmMDA2MjA3ZDcyMmIzYjAxYTQ0ZDJi
NTYxOTkwHhcNMjYwMzI2MDYwMTMxWhcNMjYwMzI3MDYwMTMxWjAzMTEwLwYDVQQD
EyhhOTdmZGMzNzYwNDJkYzk5MjcxYjJiOWUxZjUzMzE2MGFmZGJkYjcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlczFaIf5UKqWmsGt5X9RIWVy/8i+
FgmgdmMJ+uC5AGCcF7KsMYVkvcruVHh73ibVo+d6RuxtCqJMr9O5g9YCr059U3Xh
j/nTHSRd4BgS1gJmRfJNU3TE7i4wYKYaZzXR00If2mGIxJ6qrPzJr9T+lDgmAZrT
7LKLJtp6y5Jmvd7smF0tDcxamdH/3jnu5rVkmKrgyDP7Q3m6euz8baaF0s/Rqxa2
NCkizuxxanuAs0wXzK+2risVpWYo8EK6VRidrsfGRVPXomXIHBg+OcZo1EPu7fPW
WVij+jeCYq1yQJh4umo4ekEax+beXlfD5tq4o08aRoTJuktapIr3W+rcXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKl/3DdgQtyZJxsrnh9TMWCv29txMB8GA1UdIwQY
MBaAFFx27/JohL8AYgfXIrOwGkTStWGZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEhidjhtaUV2d0JpQjljaXM3QWFSTksxWVprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny84NjIyMzItNThkNy00YzFkLWIxOTgt
NjYwNDExYjlkMTY3LzEvWEhidjhtaUV2d0JpQjljaXM3QWFSTksxWVprLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny84NjIyMzItNThkNy00YzFkLWIxOTgtNjYwNDExYjlkMTY3
LzEvWEhidjhtaUV2d0JpQjljaXM3QWFSTksxWVprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPhzVnday
y8F5ZnxFVuI+EY9i9FnG6obavXulGdBF+FpMcHqCKLdTQBHvqK6v0evlzvO64Mdq
lLx+BvnZLQpdnIpMIC3J23kNWIEziut7ckMoH74wsvBwUu7IjwqGOF92uqVSgniP
1JFqo8sTQelsjdp/KW/eD3Dk4B0ahKLUvvdH5S1fdR6GrdcnfJu2Orp4J3h2Mftj
ALIjhySCdG8wKG8OslqnldB+KMvKKOFMWLpmNpydEvnKt9u+mjzcRdiBBF7GonqD
paCvoa9HrK5OIbN530VWX91b6YyXIlWBwv89V2H5w14i8CXT9J2SV0qjrTWA4wgA
/f1tfO8872Gd1g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:37:06 2026 by rpki-client