Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
File: X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft (raw, json)
Hash identifier: b3u4RGZu1MJmsQmRPi6jWmDrm/wyshW87oSOMwybBvk=
Subject key identifier: D7:19:A7:9E:01:A8:5B:63:EF:77:5A:4C:65:17:23:B4:97:C2:9D:55
Authority key identifier: 5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67
Certificate issuer: /CN=5fdd1e8c2394d18e876c2d57016e7ed89805a667
Certificate serial: 019D29291054C12258CE839A42DFFC3BED2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
Manifest number: 1047
Signing time: Thu 26 Mar 2026 08:00:50 +0000
Manifest this update: Thu 26 Mar 2026 08:00:50 +0000
Manifest next update: Fri 27 Mar 2026 08:00:50 +0000
Files and hashes: 1: FHIyxMNqXpJ39wGwkA-4nrLvTkc.roa (hash: ly+kVhxO/3fVLln2oSG/sFbuci0ZnP8XN3ql69hgFNU=)
2: X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl (hash: cwZSEXDRE5PuwVCSyHwqboNnLXbYEfWtEw4UGRVVU50=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:10:54:c1:22:58:ce:83:9a:42:df:fc:3b:ed:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fdd1e8c2394d18e876c2d57016e7ed89805a667
Validity
Not Before: Mar 26 08:00:50 2026 GMT
Not After : Mar 27 08:00:50 2026 GMT
Subject: CN=d719a79e01a85b63ef775a4c651723b497c29d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:6c:78:8e:3b:bf:11:36:fb:b9:91:9f:da:21:
9e:cc:38:9c:d5:d1:bf:f4:14:2b:56:c4:d8:47:48:
4b:04:2b:a8:5d:ee:d8:b3:10:e1:d1:70:ab:17:f0:
62:f2:f6:95:d1:52:c5:88:29:05:32:f9:d5:9d:06:
97:2b:82:b1:2d:9a:59:d6:b8:4c:b1:57:24:4d:b0:
ca:93:d4:77:60:b9:a0:16:96:f0:79:34:68:9c:4d:
a3:00:3e:d6:b7:eb:d4:f4:2b:9f:6a:b6:a3:14:a2:
42:ee:85:f0:94:5e:14:d2:47:6b:0b:69:d0:d0:cc:
42:55:76:b5:1f:60:d5:53:eb:d9:bc:7a:f6:64:be:
38:48:4c:02:ad:7a:a3:55:c0:57:fc:2f:eb:e0:33:
1a:78:d8:ca:ea:cb:74:67:20:7f:9b:2f:c1:27:c8:
9e:01:00:0c:7e:a1:cd:8f:c8:01:02:bd:2c:fb:b6:
a3:97:f7:31:72:6f:22:7b:a6:d4:af:b6:c2:1b:b0:
d3:e7:4d:0a:3e:8a:f2:dc:c1:52:23:ab:75:ee:b8:
e8:c1:52:3a:9f:2b:99:3d:c9:13:d1:16:f7:d6:b6:
b3:7f:39:6a:33:db:e6:a6:ea:c6:4f:3f:7a:8c:be:
7a:f4:69:c1:66:76:39:a6:aa:17:73:cb:ab:46:24:
76:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:19:A7:9E:01:A8:5B:63:EF:77:5A:4C:65:17:23:B4:97:C2:9D:55
X509v3 Authority Key Identifier:
keyid:5F:DD:1E:8C:23:94:D1:8E:87:6C:2D:57:01:6E:7E:D8:98:05:A6:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X90ejCOU0Y6HbC1XAW5-2JgFpmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/a6d42c-cfd7-4ed5-9f83-5ae93ec8fb11/1/X90ejCOU0Y6HbC1XAW5-2JgFpmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:80:15:74:ff:90:a2:a2:5a:76:9d:d7:b9:48:21:02:71:16:
3b:a6:7b:34:0b:aa:c2:ff:16:04:d5:40:1e:fe:a6:cb:7b:3c:
b4:33:81:be:47:b2:48:29:45:05:95:1f:cd:16:22:0d:37:90:
c0:44:38:63:2a:eb:88:73:d0:a2:d0:17:30:7a:06:4c:85:6f:
fb:26:4b:cd:d3:aa:e8:2f:6d:b8:2a:29:9b:60:ae:99:55:3c:
c1:28:53:c9:3e:3b:01:5b:24:30:09:19:99:dd:be:9b:44:64:
d3:4a:c9:77:44:7a:c6:bd:0b:40:75:3c:71:03:fc:9c:70:63:
b1:6b:66:ca:98:c2:03:df:93:0b:21:93:f6:d8:28:fa:53:9e:
09:ac:63:05:6f:e3:f7:2e:c0:e0:97:59:08:87:7c:c9:37:2d:
c5:e4:23:0b:8f:77:dd:de:e2:9f:23:65:b0:f7:22:e6:8f:f9:
93:a1:f3:12:f8:4e:fa:e2:b4:72:29:94:17:c5:ee:75:33:d0:
9b:ff:39:a6:9e:04:01:55:fc:c5:69:84:bc:25:7f:c4:b4:e8:
d9:fc:c2:94:a5:da:6b:50:00:1e:60:c5:ce:70:a8:82:7d:70:
47:ca:36:44:b7:4b:b0:4b:6f:c2:d4:fe:67:60:1e:91:e1:17:
d2:8d:7e:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pKRBUwSJYzoOaQt/8O+0qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmZGQxZThjMjM5NGQxOGU4NzZjMmQ1NzAxNmU3ZWQ4OTgw
NWE2NjcwHhcNMjYwMzI2MDgwMDUwWhcNMjYwMzI3MDgwMDUwWjAzMTEwLwYDVQQD
EyhkNzE5YTc5ZTAxYTg1YjYzZWY3NzVhNGM2NTE3MjNiNDk3YzI5ZDU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWx4jju/ETb7uZGf2iGezDic1dG/
9BQrVsTYR0hLBCuoXe7YsxDh0XCrF/Bi8vaV0VLFiCkFMvnVnQaXK4KxLZpZ1rhM
sVckTbDKk9R3YLmgFpbweTRonE2jAD7Wt+vU9CufarajFKJC7oXwlF4U0kdrC2nQ
0MxCVXa1H2DVU+vZvHr2ZL44SEwCrXqjVcBX/C/r4DMaeNjK6st0ZyB/my/BJ8ie
AQAMfqHNj8gBAr0s+7ajl/cxcm8ie6bUr7bCG7DT500KPory3MFSI6t17rjowVI6
nyuZPckT0Rb31razfzlqM9vmpurGTz96jL569GnBZnY5pqoXc8urRiR2bwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNcZp54BqFtj73daTGUXI7SXwp1VMB8GA1UdIwQY
MBaAFF/dHowjlNGOh2wtVwFuftiYBaZnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDkwZWpDT1UwWTZIYkMxWEFXNS0ySmdGcG1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9hNmQ0MmMtY2ZkNy00ZWQ1LTlmODMt
NWFlOTNlYzhmYjExLzEvWDkwZWpDT1UwWTZIYkMxWEFXNS0ySmdGcG1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9hNmQ0MmMtY2ZkNy00ZWQ1LTlmODMtNWFlOTNlYzhmYjEx
LzEvWDkwZWpDT1UwWTZIYkMxWEFXNS0ySmdGcG1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqoAVdP+Q
oqJadp3XuUghAnEWO6Z7NAuqwv8WBNVAHv6my3s8tDOBvkeySClFBZUfzRYiDTeQ
wEQ4YyrriHPQotAXMHoGTIVv+yZLzdOq6C9tuCopm2CumVU8wShTyT47AVskMAkZ
md2+m0Rk00rJd0R6xr0LQHU8cQP8nHBjsWtmypjCA9+TCyGT9tgo+lOeCaxjBW/j
9y7A4JdZCId8yTctxeQjC4933d7inyNlsPci5o/5k6HzEvhO+uK0cimUF8XudTPQ
m/85pp4EAVX8xWmEvCV/xLTo2fzClKXaa1AAHmDFznCogn1wR8o2RLdLsEtvwtT+
Z2AekeEX0o1+nQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:09:50 2026 by rpki-client